I discussed about Resource Type, Resource, Policies and OIA vs Global Users, In this post I am going to cover Business Structure (aka Business Unit – BU) in Oracle Identity Analytics (OIA)
Users in an Organization can be categories in departments/sub-department, In OIA department/sub-department are represented by Business Structure (aka Business Unit)
1. Business Structure can have departments with many levels of Hierarchy (Business Structure as member of another Business Structure).
2. To create Business Structure in OIA, login to OIA console -> Identity Warehouse -> Business Structures ->
3. All Operations in OIA (like Identity Certification & Identity Auditing) are performed based on a Business Structure (More on Identity Certification and Identity Auditing in OIA later).
4. Business Structures in OIA are stored in table BUSINESSUNITS (under OIA schema – default name rbacxservice)
5. Business Structures may have managers assigned who will be in charge of reviewing access to user in that business structure. (Manager information is stored in column BUSINESSUNITMANAGERS of table BUSINESSUNITS)
Note: In OIA You can create User Entitlement Certification for an Organization and Manager of that Organization can then review access privileges of users in that Organization.
7. Apart from manager assigned to Business Structure (or Business Unit), a Business Structure can have Administrator (stored in column BUSINESSUNITADMINISTRATOR of table BUSINESSUNITS)
Note: In OIA You can create Business Structure Rule (that can define which user belongs to which Business Structure) and any change in rule for particular Business Structure can be notified to Business Structure Administrator.
9. Association between Global Users and Business Structure is stored in table BU_GLOBALUSERS (in rbacxservice schema of OIA)
10. Apart from Global Users, Business Structure can have association with Roles and Policies (More on ROLES in OIA later)
a). Association between a Role and Business Structure (or Business Unit) is stored in table BU_ROLES
b). Association between a Policy and Business Structure (or Business Unit) is stored in table BU_POLICIES
11. To associate a Global User in OIA with Business Structure
a) Select Identity Warehouse -> Users -> search and select User -> select tab Business Unit and then add Business Unit
or
b) Select Identity Warehouse -> Business Structures -> search and select Business Structure -> select tab Users and then add Users
or
c) You can run Business Structure Rule to associate Users to Business Structure Rule that you define in Rule.
12. To associate a Role in OIA with Business Structure
a) Select Identity Warehouse -> Roles -> search and select Role. Select tab Business Structure tab and then add Business Structure
or
b) Select Identity Warehouse -> Business Structures -> search and select Business Structure -> select tab Roles and then add Role
12. Users can also be associated to Business Structure using Business Structure rule (where you can defined rule like if User’s attribute department is finance then assign them to finance Business Structure. When this Business Rule is executed then all users with attribute department with value finance are assigned to Business Structure Finance)
13. Business Structures can be loaded in to OIA in bulk using CSV file. More here on importing Business Structures using Import/Export in OIA
Related Posts for OIA
- #Oracle Identity Analytics ( #OIA ) : earlier Sun Role Manager : Documentation
- Install Oracle Identity Analytics (OIA) 11gR1 PS1 (11.1.1.5)
- OIA (Identity Analytics) deployment failed on WebLogic Server Error 1 : java.lang.NoClass DefFoundError: org/apache/ log4j/Category
- Oracle Identity Analytics (OIA) Architecture
- OIA (Identity Analytics) RBACX – Startup on WebLogic Server Error 2 : java.lang. NoClassDef FoundError javax/xml/ namespace/QName
- OIA Startup Error : Failed to import bean definition security-acls-context.xml
- How to find Oracle Identity Analytics (OIA – RBACX) version
- Oracle Identity Analytics (OIA) : Global Users vs OIA Users : 1Z0-545 Security Models in OIA
- OIM-OIA Integration : Update Process Form (Parent & Child) in OIM : OIAParentAttribute, AccountName, Entitlement, ITResource
- OIA – Resource (or Endpoints) and Resource Types (or namespaces)
- Policies in OIA and association with Role, Resource Type, Resource
- Business Structure (Business Unit) in OIA : Basics you must know
- Accounts, Account Type, and Orphan Accounts in OIA
- OIM to OIA sync : Import Users Job failed : OIA_STAGING_ACCOUNTS & OIM_PKG_OIA_INTEGRATION
Oracle WebLogic Administrator [USD 399]- 03rd Dec, 2011
Good hands-on exercises (installation, patching, cloning), very experienced trainer worth every penny 
11 users commented in " Business Structure (Business Unit) in OIA : Basics you must know "
Follow-up comment rss or Leave a TrackbackHi Atul,
Is there any way Business Structure Rule in OIA (11.1.1.5.4) can automate periodic and global user assigned to my required Business Unit like Finance?
Another is..
Business Structure have Glibal Users assigned to them and Global users can be assigned to one or more Business Structure…It is possible to done automatic?
Bikas,
Good requirement, I’ll check this now as I would need same for my customer. I am going to drop a mail to you from my personal mail ID and share phone number so if you are interested then lets catch up on phone .
Thanks Autil for your reply…let me know if it is possible and how it will be done? Procedure or steps ..
If you got a procedure plz drop a mail or let me know by comment.
I wil call you weekend(sat or sun) to share this topic..
Hi Atul,
Do you have got any updation about Business Structure Rule automation periodic…??
Thanks
Bikas
@ Bikas,
Look at Events Listeners in OIA , this should solve your problem
http://docs.oracle.com/cd/E24179_01/doc.1111/e23369/oiaconfiguration.htm#CHDFGADG
My updation will come from OIM.I am not updated user attributes from OIA user attributes.User attributes is updated from OIM and will import to OIA.When import user updated attributes that time event listeners not working.Only OIA user attributes changed then event listeners fired otherwise nothing.
Please see is there any configuration Business structure Rule will run periodically not one time run i.e Business structre Rule run every 3 mint. interval.
I am not getting your cell no.Please provide me again.
Hi Atul,
Event listeners will work only if OIA user attributes changed.But I am changed user attributes from OIM site not OIA Site.By the by in OIA “Run Business Structure Membership Rules” one time not periodic means example every 3 mint. interval.
Plz update me..
@ Bikas,
If you want OIA identity warehouse to be updated on update in OIM then you do that via Worflow . Share what information you want automatically updated in OIA then I’ll share name of Workflow that you can schedule to run on regular basis (depending on timestamp)
Mail me your phone number and timezone and we can catch up as we may have common OIA use cases.
Hi Atul,
I an unable to get your email id.Please send your email id.My email id is “mandal_vikas@in.com”.Time zone India Mumbai GMT+5:30.
I want Business Structure Rule will rum regular basis so that when new user has come in OIA Warehouse.Then Business structure Rule will automatically assigned that user to respective BU Unit like BU Finance Dept.How Business Structure Rule will run regular Basis?
Is it mandatory Business Structure Rule will run only manual basis.
Plz update me..
atul [at] onlineAppsDBA.com
Hi Atul,
Thanks. I will catch you soon.
Leave A Reply