What are the three benefits of Oracle Fusion Applications using a Lightweight Directory Access
Protocol (LDAP) system?
A.
enforces the principle of least privilege
B.
segregates duties to be more rigorously enforced
C.
allows principles of assured revocation to be more rigorously enforced
D.
extends the database concept of a grant to applications
E.
uniquely identifies a single person
Explanation:
Oracle Fusion Applications applies the following standard security principles:
* Least privilege (A)
Oracle Fusion Applications roles carry only required privileges. Application roles define duties that
entitle access to only the functions and data necessary for performing the defined tasks of that duty.
* Segregation of duties (B)
Oracle Fusion Applications checks duty roles for segregation of duties policy violations measured
against content and the risks defined in the Oracle Application Access Controls Governor (AACG) and
against content according to best available security guidelines. User and role provisioning respects
the segregation of duties policies.
* Containment and no write down
* Transparency
* Assured revocation (C)
Revoking one security policy revokes all implementations of that policy across all tools in production.
* Defense in depth
E: The process Retrieve Latest LDAP Changes sends to Oracle Fusion HCM among other items:
Oracle Fusion Applications Security Guide 11g