APPS Blogs

Oracle E-Business Suite 12.2.6 Now Available

Steven Chan - Thu, 2016-09-15 10:40
We are pleased to announce that Oracle E-Business Suite Release 12.2.6 is now available.


Instructions for downloading and applying this latest release update pack (RUP) for the EBS 12.2 codeline can be found here:

What Does Release 12.2.6 Include?

As a consolidated suite-wide patchset, this RUP includes new features, statutory and regulatory updates, and enhancements for stability, performance, and security.

Release 12.2.6 is cumulative. That means that as well as providing new updates for this release, it also includes updates that were originally made available as one-off patches for earlier 12.2 releases.

For a complete list of new features, refer to:

Common Questions and Answers About Upgrading

  • Q: Is there a direct upgrade path from Release 11i to Release 12.2.6?
    A: No. Release 11i customers must first upgrade to Release 12.2 before applying 12.2.6.
  • Q: Is there a direct upgrade path from EBS 12.0 to 12.2.6?
    A: No. Release 12.0 customers must first upgrade to Release 12.2 before applying 12.2.6.
  • Q: Is there a direct upgrade path from EBS 12.2 to 12.2.6?
  • A: Yes. Release 12.2 customers can apply 12.2.6 directly to their environments. EBS 12.2.6 is an online patch, so it can be applied while an existing Release 12.2 system is running.
Additional References Related Articles
Categories: APPS Blogs

EBS 12.2 August 2016 Technology Stack RPC Now Available

Steven Chan - Tue, 2016-09-13 14:26

The latest cumulative set of updates to the E-Business Suite 12.2 technology stack foundation utilities is now available in a new August 2016 Recommended Patch Collection (RPC):

Oracle strongly recommends that all E-Business Suite 12.2 users apply this set of updates.

What issues are fixed in this patch?

This cumulative Recommended Patch Collection contains important fixes for issues with the Oracle EBS Application Object Library (FND) libraries that handle password hashing and resets, Forms-related interactions, key flexfields, descriptive flexfields, and more.  Specific issues fixed include:18071903 - Post Mixed Case Pswrd  on Db and Clone on Hashed Apps Can't Change Applsys Pswrd

  • 18083491 - Password Reset for Existing User Is Not Working
  • 18137744 - FNDCPASS Not Changing Password on Cloned Ebs R12.2.3
  • 18383570 - FNDCPASS Not Changing Password After Upgrade to 12.2.3
  • 19259764 - Error when Opening Forms in IE8 on Multi-Node Ebs 12.2.3
  • 19891697 - Performance Problems with Results Set Cache
  • 19899452 - Getting Accounts Payable Descriptive Flexfield Error - Maximum Value Size for Segment Is Truncated
  • 20537212 - Values in Item Codes Are Not Visible when Applying Key Flexfield Security Rules
  • 20814982 - Defaulting Descriptive Flexfield Segment Behavior Is Different from 11I
  • 21612876 - Cross Validation  Performance Issues
  • 22550312 - Over 2300 Contexts Defined Causes FNDFFVGN Signal 11
  • 23115501 - App-Fnd-01023 "The Following Required Field Does Not Have a Value"
  • 23586683 - CCID Not Saved when Account Segments Are Changed Using the Accounting Flexfield

Related Articles


Categories: APPS Blogs

Offloading EBS 12.2 Reporting Using Active Data Guard 12.1.0.2

Steven Chan - Mon, 2016-09-12 13:15

Oracle Active Data Guard 12.1.0.2 is now certified with Oracle E-Business Suite 12.2.  This certification supports the ability to offload some production reporting from your production EBS 12.2 environment to an Active Data Guard instance. For example, you can use Oracle Discoverer and Concurrent Manager to run selected reports against an Oracle Active Data Guard physical standby database instance. 

Detailed steps for setting up Active Data Guard 12.1.0.2 with Oracle E-Business Suite 12.2 are provided in the following My Oracle Support Note:

Active Data Guard ADG 12.1.0.2 + EBS

In addition to Discoverer and Concurrent Manager, you may have other reporting tools that you would like to use with the Oracle Active Data Guard database instance.  In general, you should be able to use the reporting tool if it does not require write access to the Active Data Guard instance. 

Pending Certifications

This certification covers non-RAC instances only.  Updates for environments that use Real Application Clusters are still pending.

Oracle's Revenue Recognition rules prohibit us from discussing certification and release dates, but you're welcome to monitor or subscribe to this blog. I'll post updates here as soon as soon as they're available.

Related Articles

Categories: APPS Blogs

PeopleSoft Data Mover Security

The Data Mover allows for total manipulation of data within PeopleSoft. You can use it to transfer data among PeopleSoft databases, regardless of operating system and database vendor. To state that Data Mover scripts need to be carefully secured is an understatement – the security of Data Mover scripts and activities must be HIGHLY secured.

When performing a PeopleSoft security audit Integrigy carefully reviews Data Mover scripts and activities. If you want to look today at your environment, locate where Data Mover scripts are being stored. The location should be secured to only those with privileges to use Data Mover. Ideally, a source code control tool should be used to store and secure Data Mover scripts.

If you have questions, please contact us at info@integrigy.com

Michael A. Miller, CISSP-ISSMP, CCSP

References

PeopleSoft Security Quick Reference

Auditing, Oracle PeopleSoft
Categories: APPS Blogs, Security Blogs

New OA Framework 12.2.5 Update 6 Now Available

Steven Chan - Wed, 2016-09-07 16:27

Web-based content in Oracle E-Business Suite 12 runs on the Oracle Application Framework (OAF or "OA Framework") user interface libraries and infrastructure.  Since the release of Oracle E-Business Suite 12.2 in 2013, we have released several cumulative updates to Oracle Application Framework to fix performance, security, and stability issues. 

These updates are provided in cumulative Release Update Packs, and cumulative Bundle Patches that can be applied on top of the Release Update Pack. "Cumulative" means that the latest RUP or Bundle Patch contains everything released earlier.

The latest OAF update for EBS 12.2.5 is now available:

Screenshot EBS 12.2.5 OAF Bundle Patch 6

Where is the documentation for this update?

Instructions for installing this OAF Release Update Pack are here:

Who should apply this patch?

All EBS 12.2.5 users should apply this patch.  Future OAF patches for EBS 12.2.5 will require this patch as a prerequisite. 

What's new in this update?

This bundle patch is cumulative: it includes all fixes released in previous EBS 12.2.5 bundle patches.

This latest bundle patch includes new fixes for the following critical issues:

  • The table header content overlapped with the records present at the immediate row when there is a specific personalization on the page.
  • In environments with Multi-Org Access Control (MOAC) enabled, the List of Values (LOV) search returns empty results with a newly added search query filter while creating a personalized view.
  • On specific JTT Interop pages, the LOV search window opens up only on double click if the LOV is dependent on the Partial Page Refresh (PPR) enabled field.

This Bundle Patch requires the R12.ATG_PF.C.Delta.5 Release Update Pack as a mandatory prerequisite.

Related Articles

Categories: APPS Blogs

New SHA-256 Certificate Now Available for WebADI and Report Manager

Steven Chan - Tue, 2016-09-06 13:53

WebADI and Report Manager need a digital certificate to integrate with Microsoft Office.  This digital certificate is used to sign the Visual Basic for Applications (VBA) code.

A new SHA-256 digital certificate is now available for EBS 12.1 and 12.2.  This replaces the previous certificate that expired in August 2016. 

There are four different updates available -- you should pick the patch that corresponds to your EBS version:

Known Issues

Office 2007 does not recognize documents that have been digitally signed using SHA-256 certificates. In such cases adding the documents storage location to 'Trusted Locations' can be used to avoid this issue. Further information is available through the Microsoft document:

References

Categories: APPS Blogs

PeopleSoft Process Scheduler Security

When performing a PeopleSoft security audit Integrigy carefully reviews batch processing activity generated through the Process Scheduler. Of particular focus is who has access to administer the Process Scheduler and reviewing batch jobs to identify where jobs are being run with super user privileges.

To look today at your environment for who has access to manage the Process Scheduler, the following can be used:

SELECT A.ROLEUSER, A.ROLENAME, A.DYNAMIC_SW
FROM SYSADM.PSROLEUSER A
WHERE UPPER(A.ROLENAME) = 'PROCESSSCHEDULERADMIN';

If you have questions, please contact us at info@integrigy.com

Michael A. Miller, CISSP-ISSMP, CCSP

References

PeopleSoft Security Quick Reference

Auditing, Oracle PeopleSoft
Categories: APPS Blogs, Security Blogs

Oracle OpenWorld 2016 My Cloud ERP Sessions

David Haimes - Fri, 2016-09-02 09:33
  • oow-logo-2015

    OpenWorld is this month, so time to start planning your agenda.  I’ll be presenting at a few different sessions this year with a focus on Financials Cloud (Part of the ERP Cloud) and E-Business Suite.

    I’m busy preparing for the first two sessions, hope to see you there.  Check out the content catalog for more details and to add them to your agenda.

    How Oracle E-Business Suite Customers Have Achieved Modern Reporting in the Cloud [CON7313]
    David Haimes, Senior Director, Financial Applciations Development, Oracle
    Sara Mannur, Financial Systems Analyst, Niagara Bottling
    This session discusses how to leverage powerful modern reporting tools with no disruption to your existing Oracle E-Business Suite implementation. You will learn the steps required to start using the cloud service. Customers who have implemented Oracle Fusion Accounting Hub Reporting Cloud Service share their implementation experiences and the business benefits they have realized.
    Conference Session
    Tuesday, Sep 20, 12:15 p.m. – 1:00 p.m. | Moscone West—3016
    Oracle ERP Cloud UX Extensibility: From Mystery to Magic [CON7312]
    David Haimes, Senior Director, Financial Applciations Development, Oracle
    Tim Dubois, Senior Director, Applications User Experience, Oracle
    The user experience (UX) design strategy of Oracle Enterprise Resource Planning Cloud (Oracle ERP Cloud)—including financials and product portfolio management—is about simplicity, mobility, and extensibility. Extensibility and admin personalization of Oracle ERP Cloud experiences include a range of tools, from a simplified approach for rebranding the applications, to match your company culture and image to page-level admin personalization and extension, to building your own simplified cloud application in platform as a service using the UX Rapid Development Kit (RDK). In this session, learn about RDK code samples, wireframing tools, and design patterns. Get a view into the RDK roadmap and where Oracle is going next. .
    Conference Session
    Thursday, Sep 22, 1:15 p.m. – 2:00 p.m. | Moscone West—3001
    Meet the Experts: Oracle Financials Cloud [MTE7784]
    Do not miss this opportunity to meet with Oracle Financials Cloud experts—the people who design and build the applications. In this session, you can have discussions regarding the Oracle Applications Cloud strategy and your specific business and IT strategy. The experts are available to discuss the value of the latest releases and share insights into the best path for your enterprise, so come ready with your questions.
    Meet the Experts Session
    Wednesday, Sep 21, 3:00 p.m. – 3:45 p.m. | Moscone West—3001A

Categories: APPS Blogs

PeopleSoft User Security

When performing a PeopleSoft security audit, reconciling users should be one of the first tasks. This includes default accounts created through the installation of PeopleSoft as well as user accounts associated with staff, vendors and customers.

The following are several of the topics that Integrigy investigates during our PeopleSoft security configuration assessments - take a look today at your settings:

  • Default accounts - PeopleSoft default application user accounts with superuser privileges where possible should be removed or have their password changed. Carefully consult your documentation but this is a key task.

Default Oracle PeopleSoft Users

BELHR

JCADMIN1

PSJPN

CAN

NLDHR

PSPOR

CFR

PS

TIME

CNHR

PSCFR

UKHR

ESP

PSDUT

UKNI

FRA

PSESP

USA

FRHR

PSFRA

HSHR

GER

PSGER

WEBGUEST

GRHR

PSINE

WEBMODEL

 

  • Stale users – users that have not logged on in months or years should be identified and removed. Use the following SQL to locate stale users:
SELECT * FROM SYSADM.PSPTLOGINAUDIT;

To manage accounts, the following navigation can assist. As it cannot be mentioned enough, BEFORE you disable or delete any user TEST in non-production first.

User management:

  1. Select PeopleTools, Security, User Profiles, User Profiles
  2. Select user to disable or delete
  3. If disabling, check Account Locked Out check box


 

If you have questions, please contact us at info@integrigy.com

Michael A. Miller, CISSP-ISSMP, CCSP

References

PeopleSoft Security Quick Reference

Auditing, Oracle PeopleSoft
Categories: APPS Blogs, Security Blogs

E-Business Suite Technology Sessions at OpenWorld 2016

Steven Chan - Fri, 2016-08-26 14:15

OpenWorld logoPreparations for Oracle OpenWorld have been underway for some time, and the session catalog with detailed schedules is now available. 

This year, the Oracle E-Business Suite Applications Technology Group (ATG) will participate in 29 sessions including Meet the Experts round-table discussions and customer panels, demo booths, and several Special Interest Group meetings as guest speakers. Please join us to hear the latest news and connect with senior ATG development staff.

For detailed and up-to-date information, please refer to the following FOCUS ON documents:

Meeting the Experts

OpenWorld is an excellent opportunity to meet directly with Oracle E-Business Suite tools and technology experts. You can have discussions regarding the Oracle E-Business Suite strategy, your specific business and IT strategy, key planning considerations to upgrade to the latest release of Oracle E-Business Suite and more.

There are several ways of meeting with EBS Development staff:

General sessions: collar the speaker of your choice after his or her presentation.

Meet The Experts round-tables: Our most senior staff host round-table discussions where you can ask your questions. Space is limited and preregistration is recommended.

Private meetings:  If you have confidential or in-depth questions about your implementation that cannot be discussed in front of other customers, a private meeting is your best option.  Contact your Oracle account manager to set up a private meeting in a reserved room in the Moscone On-site Customer Visit Center. 

Time is of the essence

Many of this blog's experts, including me, will be attending OpenWorld this year.  If you'd like to meet with us privately, please contact your Oracle account manager to arrange that as soon as possible.  My calendar, in particular, is already starting to fill up.  It is often completely full by the time OpenWorld starts.

See you there!

Categories: APPS Blogs

PeopleSoft Jolt Security

Jolt along with Tuxedo supports PeopleSoft web requests. Specifically, Jolt is the layer between the application server and the web server. It is also described as a Java-enabled version of Tuxedo.

When performing a PeopleSoft security audit, Integrigy reviews in detail the PeopleSoft Jot security settings to ensure they are set per best practice recommendations.  To do this yourself, use the table below to review your settings. These settings should also be regularly reviewed to ensure against configuration drift.

Field

Description

Recommended Value

Disconnect Timeout

Seconds to wait before disconnecting Oracle Jolt connection. Zero (0) means no limit.

0

Send Timeout

Maximum number of seconds servlet allowed to send a request.

50

Receive Timeout

Maximum number of seconds servlet will wait for a response.

600

 

If you have questions, please contact us at info@integrigy.com

Michael A. Miller, CISSP-ISSMP, CCSP

References

PeopleSoft Database Security

PeopleSoft Security Quick Reference

Auditing, Oracle PeopleSoft
Categories: APPS Blogs, Security Blogs

10 Oracle documents every Apps DBA must read before Upgrade to Oracle EBS 12.2

Online Apps DBA - Fri, 2016-08-19 09:22

 Are you an Oracle Apps DBA looking for Upgrading Oracle E-Business to version 12.2 ? If you confused where to start and what documents to read before you Upgrade to Oracle E-Business Suite 12.2 then you are at right place. This post covers 10 important Oracle documents that every Apps DBA must read before doing Oracle EBS […]

The post 10 Oracle documents every Apps DBA must read before Upgrade to Oracle EBS 12.2 appeared first on Oracle Trainings for Apps & Fusion DBA.

Categories: APPS Blogs

Approvals 1.5 for E-Business Suite Now Available

Steven Chan - Wed, 2016-08-17 16:52
Approvals for EBS mobile screenshotA new version of the E-Business Suite Approvals mobile app is now available for iOS and Android.

Approvals for EBS 1.5 is part of a coordinated release of 18 E-Business Suite mobile apps.  These apps are designed to work with EBS 12.1.3 and 12.2 and are available for iOS and Android. 

This is our sixth set of updates to this family of EBS smartphone apps (a.k.a. "Release 6"). For details about the entire set of EBS mobile apps, see:

What's New?

Updates to our Approvals for EBS 1.5 app include:

  • New approval types for:
    • Human Resources (person status change)
    • Projects (projects, budgets)
    • Service Contracts
  • Ability to customize seeded metadata
  • Enhancement to Quoting approvals to support customization
  • Mobile Foundation
    • Ability to open links to external websites within the app on Android
    • Updated look and feel, including native look and feel for action sheets on iOS
    • Ability to easily clear user credentials on the Sign-In page
    • Use of Oracle Mobile Application Framework (MAF) 2.3.1

Some of these new features require EBS server-side patches.  See the documentation above for details.

Related Articles

Categories: APPS Blogs

PeopleSoft Web Portal Security

When performing a PeopleSoft security audit, Integrigy reviews in detail the PeopleSoft Web Portal security settings to ensure they are set per best practice recommendations.  To do this yourself, use the table below to review your settings.

These settings should also be regularly reviewed to ensure against configuration drift.

Field

Description

Recommended Value

Allow Public Access

User sign on bypassed when direct link to a page are used – PUBLIC user access.

NULL/Disabled

Days to Autofill User ID

Convenience for users. Caches user Id for x days.

7

View File Time to Live

Number of seconds to wait after sending a file attachment to a user's browser before removing that file from the web server.

Default is 0. Set to 0 (zero) for public area/kiosk

PIA use HTTP Same Server

Use the HTTP protocol instead of HTTPS for requests that are issued by the portal for content hosted on same server.

N

Allow Unregistered Content

Whether both registered and unregistered content is served. Turning this option off will prevent explicitly registered content references from being displayed in the portal.

Y

SSL Secured Access Only

Forces use of SSL. Prevents users from using non-SSL protocols to access any link within this website or application.

Y

Secure Cookie with SSL

Prevents single signon token from traveling over an insecure network. If selected the system sets the secure attribute of the single signon cookie (PS_TOKEN) to True.

Y

Inactivity Warning

Number of seconds that the portal waits before warning users that browser sessions will expire. 

1080

HTTP Session Inactivity

Number of seconds of inactivity after which the HTTP session times out for authenticated users. 

1200

Inactivity Logout

Number of seconds of the inactivity timeout interval that applies to PeopleSoft applications to which a user is signed in. 

1200

Show Connection Information

Generates system information page when a user presses Ctrl+J. Shows:

browser, OS, PeopleTools release, application release, service pack, page definition name, component definition name, menu definition name, user ID, database name, database type, and application server address

Off/Null

Show Trace Link at Signon

Displays URL link at sign-in for setting trace parameters.

FALSE

 

If you have questions, please contact us at info@integrigy.com

Michael A. Miller, CISSP-ISSMP, CCSP

References

PeopleSoft Database Security

PeopleSoft Security Quick Reference

Categories: APPS Blogs, Security Blogs

PeopleSoft Encryption

Protection of sensitive data while at-rest, in-motion or in-use all need to be addressed as part of a holistic security strategy. This includes both Personally Identifiable Information (PII) as well as sensitive PeopleSoft system configurations.

When performing a PeopleSoft security audit, Integrigy reviews the use and implementation of encryption within all components of the PeopleSoft technology stack. This includes the following, all which are critical. Review yours today and contact Integrigy with any questions.

  • Implementation of Oracle Advanced Security Option (ASO) for Transparent Data Encryption (TDE), Oracle Wallets and encryption key management for database encryption
  • Configuration of SQL-NET encryption between database server, application and web servers
  • PeopleSoft Pluggable Encryption Technology (PET)
  • PeopleSoft client and web services connections. Specifically, we look to ensure that both internal and external network traffic is encrypted using TLS not SSL to encrypt network traffic. TLS is the successor to SSL and is considered more secure.
  • Encryption of Tuxedo configurations using the PSADMIN utility
  • Encryption of PeopleSoft web server configurations by generating or implementing a new PSCipher key to encrypt values in the web server configuration files.
  • Encryption of the Template file. The Template file is used to share configurations among multiple environments (Test, Dev Prod etc...) and passwords stored in the file MUST be encrypted and should not be stored in clear text.

If you have questions, please contact us at info@integrigy.com

Michael A. Miller, CISSP-ISSMP, CCSP

References

PeopleSoft Database Security

PeopleSoft Security Quick Reference

Encryption, Oracle PeopleSoft
Categories: APPS Blogs, Security Blogs

New OA Framework 12.2.5 Update 5 Now Available

Steven Chan - Fri, 2016-08-05 14:10

Web-based content in Oracle E-Business Suite 12 runs on the Oracle Application Framework (OAF or "OA Framework") user interface libraries and infrastructure.   Since the release of Oracle E-Business Suite 12.2 in 2013, we have released several cumulative updates to Oracle Application Framework to fix performance, security, and stability issues. 

These updates are provided in cumulative Release Update Packs, and cumulative Bundle Patches that can be applied on top of the Release Update Pack. "Cumulative" means that the latest RUP or Bundle Patch contains everything released earlier.

The latest OAF update for EBS 12.2.5 is now available:

EBS 12.2.5 Bundle Patch 5 download patch

Where is the documentation for this update?

Instructions for installing this OAF Release Update Pack are here:

Who should apply this patch?

All EBS 12.2.5 users should apply this patch.  Future OAF patches for EBS 12.2.5 will require this patch as a prerequisite. 

What's new in this update?

This bundle patch is cumulative: it includes all fixes released in previous EBS 12.2.5 bundle patches.

This latest bundle patch includes new fixes for the following critical issues:

    • The getIndexedChild API throws an exception when all the subtabs are hidden in the subtab layout.
    • Adding new rows to the scroll mode table with more than 30 records leads to UI distortion and table becomes empty.    
    • The value in Table cells with style OraTableCellNumber and OraTableTotalNumber is left aligned.
    • The inline error message at the table cell is not wrapped in 12.2 code lines and consequently, the table columns are expanded to the length of error messages if the error messages are long.
    • Mechanism to render table header tag from Row wise rendering(Row Bean) is not available in OAF
    This Bundle Patch requires the R12.ATG_PF.C.Delta.5 Release Update Pack as a mandatory prerequisite.

    Related Articles


    Categories: APPS Blogs

    EBS 12.2 DB Migration Using 12cR1 Transportable Tablespaces Now Certified

    Steven Chan - Thu, 2016-08-04 11:49
    Database migration across platforms of different "endian" (byte ordering) formats using the Transportable Tablespaces (TTS) process is now certified for Oracle E-Business Suite Release 12.2 (12.2.3 or higher) with Oracle Database 12c Release 1 (12.1.0).

    This certification requires that the source database be 11gR2 (11.2.0.4) or 12cR1 (12.1.0.2) and the target database be 12cR1 (12.1.0.2). This 12.2/12cR1 database migration process utilizes the 'full transportable export/import' feature of 12c to greatly speed up the migration while also offering the optional use of incremental backup.

    This migration process requires a patch delivered by the EBS Platform Engineering team which is now generally available on MOS for use by EBS customers.

    The "endian-ness" of platforms can be checked by querying the view V$TRANSPORTABLE_PLATFORM using sqlplus (connected as sysdba):
    SQL> select platform_name, endian_format from v$transportable_platform;

    Here's a list of relevant platforms certified for the EBS R12 with 12cR1 on the database tier:

     Big Endian
     Little Endian
     Oracle Solaris on SPARC
     Linux x86-64
     HP-UX Itanium
     Windows x64
     IBM AIX on Power Systems
     Oracle Solaris on x86-64
     IBM: Linux on System z

    The use of Transportable Tablespaces may greatly speed up the migration of the data portion of the database - it does not affect metadata which must still be migrated using export/import. Smaller databases (less than 1TB) may see little gain from the use of Transportable Tablespaces, and other techniques like export/import will be simpler and likely faster.

    For smaller databases, we highly recommend that users initially perform a test migration with export/import on their database with the 'metrics=y' parameter to find out the relative size of data vs metadata in their database and to have a basis to compare any gains in timing. Generally speaking, the larger the relative size of data (as compared to metadata), the more likely it would be that TTS is suitable as a migration process to reduce downtime.

    Database migration between platforms of the same endian format should use the 'Transportable Database' process or Rapid Clone if migrating between the same platform.

    References

    Related Articles

    Categories: APPS Blogs

    Fifth Recommended Patch Collection for EBS 12.1.3 Now Available

    Steven Chan - Tue, 2016-08-02 16:55
    We are pleased to announce the availability of the fifth consolidated patch collection for Oracle E-Business Suite Release 12.1.3.  This patchset combines important patches for Release 12.1.3 into a single integrated and regression-tested patchset:

    EBS 12.1.3 RPC 5 screenshot download

    Reasons to Apply RPC5

    Oracle E-Business Suite Release 12.1.3 has been available for a while, and over its lifetime has been significantly enhanced in numerous ways. These enhancements and fixes are provided as individual patches, product family Release Update Packs (RUP), and product-specific Recommended Patch Collections (RPC).

    For example, there are Recommended Patch Collections for Financials products such as General Ledger and Payables. On the technology side, there are patchsets such as the OA Framework 12.1.3.1 Consolidated Update Patch.

    Identifying and applying all the individual patches, RUPs, and RPCs you need can be time-consuming. Complicating matters further, patchsets across multiple product families are generally not tested together.

    Patches included in Oracle E-Business Suite Release 12.1.3+ RPC5 are also available individually, and may contain conditions and prerequisites relevant to their application. RPC5 includes all the recommended patches, along with their dependencies. Applying this patch in a single downtime patching window saves effort and time, rather than applying each recommended patch individually.

    What's Included in RPC5?

    The EBS 12.1.3+ RPC5 patchset includes the latest recommended patches and their dependencies for the following Oracle E-Business Suite products and product families:

    • Applications Technology (ATG)
    • Oracle Customer Relationship Management (CRM)
    • Oracle Financials (FIN)
    • Oracle Human Resource Management System (HRMS)
    • Oracle Procurement (PRC)
    • Oracle Projects (PJ)
    • Oracle Supply Chain Management (SCM)
    • Oracle Value Chain Planning (VCP)
    • Oracle Business Intelligence (BIS)

    Is it necessary to apply this RPC if I only use a subset of Oracle E-Business Suite products?

    Applying this RPC is recommended even if you are using only a subset of Oracle E-Business Suite products. The patching utility 'adpatch' takes care of the files to be applied and generates them based on the product installation status.

    I have already applied a few Family Packs included in this RPC. What happens when I apply this RPC?

    Applying this RPC on top of already applied individual Family Packs will not harm your system because the patching utility 'adpatch' skips the files already applied on the system. You can apply the latest available RPC on your system.

    A patch I need isn't included in this RPC. Why not?

    This RPC combines recommended patches that were released after Release 12.1.3 into a single, integrated and regression-tested patch to help ensure a successful installation. If you don't find the patch in the RPC, it is likely that the patch was released after the patch list for the specific RPC was frozen or the patch was not marked "recommended" at the time the list was generated.

    Should I only install the latest RPC? Do I have to install all prior RPCs? Should I install later individual product family RPCs?

    To keep your system up-to-date with the most current Oracle E-Business Suite recommended patches, you should only apply the latest available RPC (which supersedes any prior release suitewide RPC) and thereafter either install individual product-level recommended patches as required or install the next suitewide level RPC when it becomes available.

    Related Articles
    Categories: APPS Blogs

    Oracle Buys NetSuite

    OracleApps Epicenter - Mon, 2016-08-01 11:26
    Oracle set the ball rolling with Netsuite acquisition. Oracle OpenWorld Keynote—Cloud Innovation, Mike Hurd (Oracle CEO) predicted that by year 2025 - "Two software-as-a-service (SaaS) suite providers will have 80 percent of the cloud enterprise application market. I volunteer us to be one of them Everything came full circle with NetSuite last week, when Oracle […]
    Categories: APPS Blogs

    PeopleSoft PUBLIC User Security

    PeopleSoft Public users are not required to authenticate (sign on). These are generic accounts created for specific purposes, for example informational pages and/or company directories. Public users are also not subject to timeouts (session inactivity). Because no authentication is required, no sensitive data should be accessible to these users. It also goes without saying, that if you don’t need Public accounts, don’t use them.

    When performing a PeopleSoft security audit, Integrigy identifies Public users and analyzes their authorization privileges. To do this yourself, use the SQL below to list your public users and then query the application or database to look at their authorization privileges.

    --List the public users
    SELECT O.OPRID, O.OPRDEFNDESC, O.ACCTLOCK, O.LASTPSWDCHANGE, O.FAILEDLOGINS,O.ENCRYPTED, O.EMPLID
    FROM SYSADM.PSWEBPROFILE P, SYSADM.PSOPRDEFN O
    WHERE P.BYPASSSIGNON = 'Y'
    AND P.DEFAULTUSERID = O.OPRID;

    If you have questions, please contact us at info@integrigy.com

    Michael A. Miller, CISSP-ISSMP, CCSP

    References

    PeopleSoft Security Quick Reference

    Auditing, Oracle PeopleSoft
    Categories: APPS Blogs, Security Blogs

    Pages

    Subscribe to Oracle FAQ aggregator - APPS Blogs