Create Application Policies Using Fusion Middleware Control

All Publisher permissions are provided and you cannot create new permissions. Permission grants are controlled in the Fusion Middleware Control Application Policies page.

Create Application Policies

The permission grants are defined in an application policy. An application role, user, or group, is then mapped to an application policy. This process makes the application role, user, or group a Grantee of the application policy.

There're two methods for creating a new application policy:

  • Create New — Creates an application policy and adds permissions to it.

  • Copy Existing — Creates an application policy by copying an existing application policy. You can name the copy, remove existing permissions, or add new permissions as required.

Create a New Application Policy

  1. Log in to Fusion Middleware Control, navigate to Security, and select Application Policies to display the Application Policies page.

    For information, see Access Oracle Enterprise Manager Fusion Middleware Control.

  2. Choose obi from Application Stripe list. Click the search icon next to Principal Name.

    You can view the Publisher policies. The Principal column displays the name of the policy Grantee.

  3. Click Create to display the Create Application Grant page.

  4. To add permissions to the policy being created, click Add in the Permissions area to display the Add Permission dialog.

    1. Complete the Search section, and click the search icon next to the Resource Name field.

      All permissions located in the obi application stripe are displayed. For information about the Publisher permissions, see Default Application Roles and Permissions.

    2. Select the desired Publisher permissions, and click Continue. Selecting non-Publisher permissions has no effect in the policy.

    3. If required, customize the permission and click Select.

    The Permissions section display the selected permissions.

  5. To add an application role, user, or group to the policy being created, click Add in the Grantee section..

    In the Add Principal dialog, do the following:

    • Complete the Search section, and click the search icon next to the Display Name field.

    • Select the required principals from the Searched Principals list.

    • Click OK.

  6. Click OK to return to the Application Policies page. You can view the Principal (Grantee) and Permissions of the new policy in the table.

Create an Application Policy Based on an Existing Policy

  1. Log in to Fusion Middleware Control, navigate to Security, and select Application Policies to display the Application Policies page.
  2. Choose obi from Application Stripe list. Click the search icon next to Principal Name.

    You can view the Publisher application policies. The Principal column displays the name of the policy Grantee.

  3. Select an existing policy from the table.
  4. Click Create Like to display the Create Application Grant Like page. The Permissions table displays the names of the permissions granted by the policy selected.
  5. To remove any items, select it and click Delete.
  6. To add application role, user, or group to the policy, click Add in the Grantee area to display the Add Principal dialog.

    • Complete the Search area and click the blue search icon next to the Display Name field.

    • Select from the Searched Principals list.

    • Click OK.

The Application Policies page displays the Principal and Permissions of the policy.