Applications
How to restrict single session per user in Oracle E-Business Suite release 12
If you’re facing the problem that one user credential is used by whole department or team, you could decide to implement an “Single Session per User” restriction that one user credential can not be used simultaneously. In Oracle E-Business Suite release 11i, a patch was required (#3861070). This patch installed the oracle.apps.icx.security.session.created event and the event subscription to enable a single login per user . Thanks to this patch, if a specific user logs in to the application and a previous, valid session is still active, the previous session(s) are immediately invalidated by the event. Please notice that, for evident reasons, the event will not fire for the following users:
- Sysadmin
- Guest
- Anonymous
In Oracle E-Business Suite release 12, there is no need to apply any patch as the files required are already present in the filesytem. The instructions are below:
- Load the event with the command: java oracle.apps.fnd.wf.WFXLoad -u <apps_un> <apps_pw> <apps_dbserver.+fqdn>:<db_port>:<SID> thin US \ $FND_TOP/patch/115/xml/US/icxevte.wfx
- Load the event subscription: java oracle.apps.fnd.wf.WFXLoad -u <apps_un> <apps_pw> <apps_dbserver.+fqdn>:<db_port>:<SID> thin US \ $FND_TOP/patch/115/xml/US/icxevts.wfx
Details are available on Metalink note #304209.1 (login required).
Discussion
One comment for “How to restrict single session per user in Oracle E-Business Suite release 12”
Post a comment
You can enable/disable the business event through the System Administrator > Business Events screen (SYSADMIN user only) by searching for the word ’security’. It will pull up the oracle.apps.icx.security.session.created event. Click on the Update icon and enable/disable. You then need to close all browsers for the change to take affect.