Oracle Access Governance is a cloud native identity governance and administration service that provides access reviews and identity analytics to define and govern access privileges. It provides visibility and prescriptive recommendations to help reviewers make informed decisions about access privileges to reduce risk across the organization. Please refer to the Oracle Access Governance web page for more details and a product tour.
The move to the cloud, a distributed workforce, and expanding compliance regulations have caused organizations to struggle to balance access entitlement complexities across cloud and on-premises environments.
Oracle Access Governance is available with Oracle Universal Credits. For more details, see the price list.
You create an Oracle Access Governance instance in the Oracle Cloud Infrastructure (OCI) Console.
For details, please refer to the product documentation.
You can manage an Oracle Access Governance instance in the OCI Console, as mentioned in the product documentation.
The Oracle Access Governance instance will be available through the OCI Console. Navigate to the Access Governance page, select the desired service instance, then click the Oracle Access Governance URL.
Today, Oracle Access Governance supports Oracle Cloud Infrastructure Identity and Access Management as its identity provider for user login and authorization.
To log in using an external identity provider, configure OCI Identity and Access Management to use that external identity provider for federated authentication.
Please refer to the product documentation on how to set up federation with an external identity provider.
Yes, identity data must be loaded from the identity management system (Oracle Identity Governance) into Oracle Access Governance. Once the data is loaded, you can review user access profiles and build access review campaigns.
With this release, Oracle Access Governance can be integrated with Oracle Identity Governance to synchronize identity data. Going forward, we will continue to add other identity management systems.
Please refer to the product documentation on how to integrate with identity management systems.
Users can access Oracle Access Governance when those users or their accounts exist in OCI Identity and Access Management.
Please refer to the product documentation on how to manage and onboard users in OCI Identity and Access Management.
Users can access the Oracle Access Governance console when their accounts exist in Oracle Cloud Infrastructure Identity and Access Management. Oracle Identity Governance users can be onboarded in OCI Identity and Access Management by following one of these approaches.
Please refer to the product documentation on how to manage and onboard users in Oracle Cloud Infrastructure Identity and Access Management.
In this first release, Oracle Access Governance supports on-demand access reviews. Access reviewers can review user permissions and roles in a single dashboard view. Oracle Access Governance will highlight risky entitlements and recommend remediation to help reviewers make informed decisions to revoke or accept each user’s access. In an upcoming release, Oracle Access Governance will also support event or risk-based micro-certifications, such as job role or organizational changes, for continuous access reviews.
Yes, for each decision made in an access review campaign, the following information is stored for auditing or compliance purposes:
Oracle Access Governance provides AI/ML–driven insights, such as peer group analysis, outlier detection, and action-oriented recommendations, enabling reviewers to take suggested actions for the access review tasks.
Oracle Access Governance provides an intuitive and easy-to-understand user interface to perform the following tasks:
Oracle Access Governance provides a simplified self-service experience for an individual or business user to
Oracle Access Governance provides intelligent reporting for access review campaigns using detailed graphs and charts.
It also provides a detailed report in CSV format to track access review decisions for access fulfillment.
Yes, Oracle Access Governance provides workflows for access reviews out of the box.
As an Oracle Identity Governance user, you can use Oracle Access Governance to perform access reviews and continue using Oracle Identity Governance for identity lifecycle management, permission management, access requests, and user provisioning.
Yes, the service is based on an API-first model.
REST APIs can be used to perform administrative and self-service tasks.
Oracle Access Governance supports one SKU for pricing:
The license metric for Oracle Access Governance is user per month, which is calculated on a per hour basis. That is, the number of active users in Oracle Access Governance are calculated on an hourly basis for prorated billing. These prorated hourly bills are added for that month to generate the monthly bill.
A “User” is an active identity in Oracle Access Governance. This individual is present in the hosted service during the billing period, regardless of whether this individual is actively accessing the hosted service at any given time.
The number of licenses can be determined by the number of users or identities in an active state whose access privileges can be reviewed in Oracle Access Governance.
Please refer to the price list.
Please refer to the cost estimator.
Go to My Oracle Support, and create a service request.
No. Support is included in the subscription fee.
Oracle Access Governance is a cloud native service. Oracle will patch and upgrade the service.
Please refer to the SLA documentation (PDF).