Oracle E-Business Suite is delivered with JavaServer Pages (JSPs) and servlets. Most customers use only a subset of these provided resources. The Allowed Resources feature allows you to reduce your attack surface by disabling resources that are not used in your environment. You can allow or deny resources at the family, product, or resource level.
With Oracle E-Business Suite Release 12.2.7, we introduced the Management by Product Hierarchy user interface (UI). With Oracle E-Business Suite Release 12.2.9, a new UI, Management by Resource, is available and allows you to easily deny or allow individual resources. The Management by Resource UI allows you to evaluate your data using six predefined filter criteria displayed as tiles:
- Allowed – But Never Accessed
- Allowed – Sorted by Last Access Date
- Allowed – Sorted by Access Count
- Allowed Resources
- Denied Resources
- All Resources
Refer to the documentation for more information on how to to deploy and configure the Allowed Resources feature.
Where Can I Learn More?
- Read more about the Allowed Resources feature in the Oracle E-Business Suite Security Guide Release 12.2.
- Watch the online course about Allowed Resources available in Oracle E-Business Suite Release 12.1 and 12.2 Transfer of Information (TOI) Online Training (Note 807319.1).
- Watch the Webinar: Secure Oracle E-Business Suite Using Features, Configuration and Certifications
References
- FAQ: Oracle E-Business Suite Security (Note 2063486.1)
- Oracle E-Business Suite Security Guide Release 12.2
Related Articles