Cross Validation Rules & Security Rules

Similar Messages

• Security rule whether be checked when journal import

  Hi All,
  Thanks for your attention, I have got an issue about security rule.
  When I used gl_interface to import journals into EBS system, I think the security rules will not be checked, it only check cross-validation, but I found sometimes security rule is checked for some responsibilities when journal import, why this happened, and is there any profile or setup to control it?
  Thanks for your help.
  Best Regards
  Spark

  Hi Spark,
  It looks like Journal Import doesn't check for Security rules, but it checks for cross validation rules upon dynamic insertion. Sorry for the misled earlier. You can check the metalink note, Journal Import - FAQ [ID 107059.1]. Here are the comments for the note,
  A04. Does the Journal Import process check for Cross-Validation or Security
  Rules violations?
  Journal Import does not check security rules. Transactions that come
  from Oracle subledgers (AR, AP, etc.) already have the CCID (Code
  Combination ID) in the GL_INTERFACE table. These have been validated
  in the feeder system.
  You can also populate the accounting segments directly into the
  gl_interface table and let Journal Import populate the
  code_combination_id. If dynamic insertion is enabled, and this is a
  new combination, then the import program will check for cross
  validation rule violations.
  Thanks,
  Kiran

• Security Rule API

  Hi,
  Is there a PL/SQL Equivalent for the Oracle Report user exit
  SRW.USER_EXIT('FND FLEXIDVAL
  CODE="GL#"
  APPL_SHORT_NAME="SQLGL"
  DATA=":SEGMENT4"
  NUM=":CP_COA_ID"
  DISPLAY="4"
  IDISPLAY="4"
  SHOWDEPSEG="N"
  VALUE=":SEGMENT4"
  SECURITY=":CF_CC_SECURE" ');
  to find out if the current user has access to SEGMENT4. I would like to create a DATABASE PACKAGE that retrieves all the SEGMENT4's that satisfies the security rules for the person logged in.
  Best Regards
  Ramdas

  Hi Spark,
  It looks like Journal Import doesn't check for Security rules, but it checks for cross validation rules upon dynamic insertion. Sorry for the misled earlier. You can check the metalink note, Journal Import - FAQ [ID 107059.1]. Here are the comments for the note,
  A04. Does the Journal Import process check for Cross-Validation or Security
  Rules violations?
  Journal Import does not check security rules. Transactions that come
  from Oracle subledgers (AR, AP, etc.) already have the CCID (Code
  Combination ID) in the GL_INTERFACE table. These have been validated
  in the feeder system.
  You can also populate the accounting segments directly into the
  gl_interface table and let Journal Import populate the
  code_combination_id. If dynamic insertion is enabled, and this is a
  new combination, then the import program will check for cross
  validation rule violations.
  Thanks,
  Kiran

• Cross validation & Security rules

  Hi,
  In a typical business scenarios which are the code combinations recommended for
  i)Cross Validation rule
  ii)Security rule
  to have better control?
  Thanks

  Hello.
  It depends on your needs. Suppose you have 2 (01, and 02)companies sharing the same Chart Of Accounts. In order to avoid entering journals from company 01 into company 02 you should create a security rule to reject all code combinations starting by 01 when a Responsibility from company 02 is being used.
  Cross validation rules are used to avoid the creation of code combinations that you may think as inappropriate within the company itself. For example, to use the Cost Center segment when the Account segment is not a cost or a revenue.
  Octavio

• Cross Validation Rules

  I accidentally defined a cross validation rule (CVR) wrongly. My intention was to ensure that cost centre values other than 999 couldn’t be combined with balance sheet accounts.
  It appears to work initially, except that it prevents me from posting to any non-balance sheet accounts codes, because in the journal entry window the only cost centre segment value that I see is 999, and in the account code segment, the only values that I see are balance sheet account codes.
  I need to see other cost centre values and account code values so as to post to P&L account codes, but they are not showing in the journal entry window. I have tried many times to disable the CVR but it hasn’t help. I tried to change the CVR and saved it but it hasn’t help either.
  Can someone let me know how to remove this annoying cross validation rule altogether so that I will be back to where I started?

  hi colin,
  obviously it is not the CVR problem, coz CVRs will not effect the LOVs. check the security for the responsibility you are using.
  thanks,

• Cross-Validation Rules: How to re-validate segments all ready enabled?

  Is it possible to call one of the APIs to re-validate the code combinations againts the Cross-Validation Rules? If the enabled flag is set to 'Y' then the CVR is ignored. I am aware of the Cross-Validation Rules Report which is helpful, but I need to go a step further. I'm looking to loop through the gl.gl_code_combinations tables, re-validate the combinations that are enabled, if CVR fails then determine if there are any amounts that need to be moved prior to disabling the combination.
  I have a routine that:
  1. creates temp table of all enabled combinations
  2. loops through gl_code_combinations
  3. deletes record from gl_code_combinations, do not commit
  4. calls API fnd_flex_keyval.validate_segs
  5. updates status of temp table
  6. rollback deleted record
  7. repeat 2 - 7 until done
  8. query gl_balances using temp table combintions that have failed.
  I'm a little nervous to run such a routine, because of the delete.
  Does anyone have any ideas or suggestions?
  Thanks,
  Jamie
  Edited by: jmdavis on Dec 15, 2008 6:17 PM
  Edited by: jmdavis on Dec 15, 2008 6:18 PM

  Use where clause for that UDA's in attribute that refer to other attributes data source. the where clause may required use Lookupcodes, these lookup codes may have to be configure in the source attribute values table column.
  Edited by: user11979254 on May 13, 2010 2:49 AM

• Cross Validation Rules logic back to front.

  Hi All,
  We have a cross validation rule to: "Cost/Profit Centre must be 0000 for this Balance Sheet natural account."
  It is setup to Include: 0000.000000.0000.000.00.000.0000.00.0000 - ZZZZ.ZZZZZZ.ZZZZ.ZZZ.ZZ.ZZZ.ZZZZ.ZZ.ZZZZ
  and Exclude: 7281.302623.0001.000.00.000.0000.00.0000 - 7281.303419.ZZZZ.ZZZ.ZZ.ZZZ.ZZZZ.ZZ.ZZZZ.
  This rule allows us to control which accounts can post to cost centres and which cannot. So using these rules, any accounts in the range 302623 till 303419 cannot accept postings to a 0000 cost centre. So if we try to use 7281.303410.1234, we will get the message pop up and tell us we cannot use this combination, and that it must be 7281.303410.0000.
  Now, we want to change this rule so we can start to accept postings by cost centre to account 303410. So that in future, postings to 7281.303410.1234 will be accepted and will not throw up the warning message.
  Seeing our setup above though isn't 7281.303410.0000 already EXCLUDED from the rule?
  To actually exclude it from the rule we have had to create a new exclusion: -
  EXCLUDE: 7281.303623.0001 - 7281.303409.ZZZZ
  EXCLUDE: 7281.303411.0001 - 7281.303419.ZZZZ
  So now our combination 7281.303410.1234 exists between these two exclude ranges. Only this way it works. But it seems back to front logic.
  Can you please advise if our understanding is correct or not?

  Perfect! This is how you define cross validation rules. It's not back to front but from R11.0.3, Oracle standard is to use the cross validation rules like this.
  - Kiran

• Filter data by cross validation rules

  Hi all,
  Is there any way to build report that filter out data by cross validation rules ?
  For e.g:
  Acc. Flex -> Company.CC.Natural.Future.
  The cross validation rules are excluding CC -> 01 and 05.
  So all the combination_id that contains CC 01 and 05 will be filter out.
  TIA,
  Fendy

  Perfect! This is how you define cross validation rules. It's not back to front but from R11.0.3, Oracle standard is to use the cross validation rules like this.
  - Kiran

• Create GL cross-validation rules API?

  Hi,
    Could anyone please let me know if there is an API to create/update GL cross-validation rule?
  Thanks,
  Veer

  Please check this link, will assist you
  Re: WebADI API - Upload successful - Records not loaded in database
  thanks

• CROSS VALIDATION RULE과 CCID생성간의 관계

  제품: FIN_GL
  작성날짜 : 2006-05-15
  CROSS VALIDATION RULE과 CCID생성간의 관계
  ==================================
  Explanation
  Note : 124611.1 의 내용을 참조하시면,
  Cross Validation Rule과 CCID생성간의 관계에 대해서
  쉽게 이해하실 수 있을 것입니다.
  고객님께서 문의주신 Case에 대해서는
  해당 Note의 "Scenario 2" 부분이 해당되겠습니다.
  Scenario 2:
  Dynamic Insert on
  GL-account already created
  Cross-Validation Rule created
  즉, GL Account는 이미 생성되어 있고, 그 후에 Cross Validation Rule이 생성되었을 경우,
  결과는 아래와 같습니다.
  When you create a Cross-Validation Rule after the GL Account
  Code Combination has already been created and enabled, then
  this Cross-Validation Rule will not work. A journal entry with
  this Account Code Combination, even if it is exluded in your
  Cross-Validation Rule, will still be accepted.
  다시 말씀드려, Cross Validation Rule은 이미 생성된 Code조합에 대해서는
  영향을 주지 않습니다. 또한, Cross Validation Rule에 exclude되었다 하더라도
  이미 생성된 Code조합에 대해서는 Journal이 정상적으로 생성된다는 내용입니다.
  Note : 124611.1에 다른 유형에 대해서도 설명이 나와 있습니다.

• Extend Cross Validation Rule functionality

  Hi,
  Does anyone know if it is possible to leverage Cross Validation rule functionality to check combinations against external data sources?
  I am sure I have seen this before, but do not know how it was implemented techincally.
  When users entered an invalid combination of two segments, maintained outside the EBS, an error message was generated and they could not continue posting the journal. The reason from maintaining the data outside EBS was due to the nature and volume of the relationship being defined.
  Any help appreciated.
  Kind Regards
  Heath

  Cross-Validation rules only affect new account combinations that are created after you define or enable the rules. If you have existing combinations that violate your rules, your cross-validation rules will not be enforced. You will need to disable all existing combinations that violate your rules before your cross-validation rules can take effect.
  Check if the combination 101.399.1323.5240.000.0000.00000.000 was already created before you created your CV rules.
  Thanks,
  Anil

• Disable security rules in discoverer report

  I have a discoverer report on GL with security rules applied, it displays data based on the responsibility thro which we have logged in. Users dont want this functionality, they want all the data to be displayed in a single reponsibility, which implies that the security rule be disabled for this report. The report doesnt have any custom folders and also I couldnt find anywhere the GL_SECURITY_PKG being called to implement security rules. Can anyone help me in disabling the security rules.

  Hi,
  Where did you look for the security rule? in the underlying objects or in the discoverer?
  First thing you should do to see whether this rule is applied is from within the discoverer take the SQL (from the view-> sql inspector) and start analyzing the views in the from clause, i am sure that you'll find one of them that holds this rule.
  If you are using oracle BA then for sure you'll find it in the "Journal Lines" folder (based on view : GLFG_JOURNAL_LINES)
  Your request is not that simple as "Disable the security rule".
  If you are using Oracle views then you cannot disable it without changing those views and you will have to verify you are not changing any of the views that the application uses.
  If you will create a new responsibility for "Cross Set Of Books" then you can exclude it from the rule by changing the security rule from :
  Gl_Security_Pkg.Validate_Access(Journal_Line.Set_Of_Books_Id,Journal_Line.Code_Combination_Id) = 'TRUE'
  To something like:
  decode(fnd_global.RESP_ID,<your new resp_id>,'TRUE',Gl_Security_Pkg.Validate_Access(Journal_Line.Set_Of_Books_Id,Journal_Line.Code_Combination_Id)) = 'TRUE'
  If it is a specific request they have then you can create a new view and use the GL tables to avoid the usage of the GL security rule.
  Tamir

• Standard Oracle report for the "security rules define/assign"

  Dear all:
  Is there any Standard Oracle report to show the :"Application --> Setup : Financials : Flexfields : Key : Security " flexfield "security rules define/assign" ?
  Regards
  Terry
  Edited by: Terry Chen on 2010/5/4 上午 2:27

  yes i believe there is one report in sysadmin or gl which shows this.

• KFF Security Rules question

  Hi,
  I developed a custom page which has an Accounting KFF. I then defined security rules to exclude certain accounts for a particular responsibility and assigned the rule to the responsibility.
  When I am testing I see that the account is still shown in the KFF LOV and the users are able to select the account.
  Can someone point out what am I missing.
  We are on 11.5.10 RUP4.
  Any pointers are greatly appreciated.
  Thanks
  Srinivas

  Any help on this is greatly appreciated...
  Thanks a lot in advance.
  Srinivas

• Business Rules Security based on work flow

  Hello,
  How can we enable security on Business Rules, based on the workflow,
  for example,
  we have Business rule, that is attached to one input form, which opens a window for entering run time prompts for entering
  new asset details, and after entering he saves and the planning unit is promoted to next level,
  but on the input form, the Business rule is still visible, where by he can enter the the details though the planning unit is promoted,
  Is there any way that makes the Business rule access disables/hides as the planning unit is promoted?
  Thanks,
  murali.

  There is currently no out-of-the-box integration between workflow and business rule security.
  This thread may help with some alternatives:
  Workflow Problem
  - Jake