Oracle Fusion 26C · Risk & Compliance · Segregation of Duties

Oracle Segregation of Duties 26C Release Intelligence

10 feature changes for Oracle Segregation of Duties in 26C (July 2026) — covering process logic, accounting rules, integration payloads, security policies and reporting outputs. 6 High/Critical items require prioritised regression validation; 3 Medium items should be sampled.

Analyze Segregation of Duties Impact See Segregation of Duties in 26A →
6 High/Critical
3 Medium
1 Low
14 pages
10 APIs
26C Segregation of Duties Command Center
JUL 2026
Total Features
10
High Severity
6
Affected Pages
14
Affected APIs
10
High/Critical6
Medium3
Low1
RELEASE OVERVIEW

What Changed in Oracle Segregation of Duties 26C

Oracle Fusion 26C (July 2026) delivers 10 feature changes for Oracle Segregation of Duties — covering process logic, accounting rules, integration payloads, security policies and reporting outputs. 6 are High or Critical severity and require prioritised regression validation before production cutover. Below: every individual change with affected components, recommended test cases and business impact.

10
Total Changes
6
High / Critical
14
Pages Affected
10
APIs Affected
FEATURE-BY-FEATURE BREAKDOWN

All 10 Segregation of Duties 26C Changes

Each card shows the change type, severity, affected pages and APIs, recommended test cases and business impact rationale.

Redwood SoD Violation Dashboard

High
Type: UI / Security Opt-in: Opt-in

New Redwood-based dashboard for SoD conflict visualization and remediation tracking

Affected pages
Security Console, Access Certification, Role Comparison
Affected APIs
Security Console REST APIs
ESS jobs
Import User and Role Application Security Data
Configuration
Role Hierarchy Configurations
Business processes
User Access Review, SoD Monitoring
Data objects
Users, Roles, Privileges, Duty Roles
RECOMMENDED TEST CASES

Validate role conflict visibility, approve/reject remediation actions

WHY IT MATTERS

Improves visibility of critical access conflicts and audit readiness

AI-assisted Role Risk Analysis

High
Type: AI / Security / Process Opt-in: Opt-in

Embedded AI recommends risky role combinations and remediation actions

Affected pages
Security Console, AI Recommendations Panel
Affected APIs
Role Management REST APIs
ESS jobs
Retrieve Latest LDAP Changes
Configuration
AI Profile Options, Security Policies
Business processes
Role Design and Approval
Data objects
Roles, Data Access Sets, Privileges
RECOMMENDED TEST CASES

Test AI recommendations, false positive handling, role assignment approval

WHY IT MATTERS

Helps reduce excessive privilege assignments

Preventive SoD Controls During Role Assignment

Critical
Type: Process / Validation Opt-in: Enabled by Default

Real-time SoD conflict validation before role provisioning

Affected pages
Assign Roles, User Management
Affected APIs
HCM Users REST API
ESS jobs
Send Pending LDAP Requests
Configuration
Security Approval Rules
Business processes
User Provisioning, Role Assignment
Data objects
Users, Role Assignments
RECOMMENDED TEST CASES

Assign conflicting AP/GL roles and validate blocking logic

WHY IT MATTERS

Prevents unauthorized combinations before production access

Expanded Cross-Module Conflict Matrix

High
Type: Data / Compliance Opt-in: Opt-in

Oracle delivered additional SoD conflict definitions across ERP, SCM, and HCM

Affected pages
Risk Analysis Dashboard
Affected APIs
Risk Management Cloud APIs
ESS jobs
Import Risk Definitions
Configuration
Risk Library Definitions
Business processes
Cross-functional Access Governance
Data objects
Role Relationships, Business Units
RECOMMENDED TEST CASES

Validate AP vs Procurement conflicts, GL vs Cash Mgmt conflicts

WHY IT MATTERS

Strengthens enterprise-wide compliance coverage

Enhanced Access Certification Workflow

Medium
Type: Workflow / UI Opt-in: Opt-in

Multi-level approval workflow with delegated certification support

Affected pages
Access Certification Work Area
Affected APIs
Access Governance APIs
ESS jobs
Run Access Certification Campaign
Configuration
Approval Management Extensions
Business processes
Quarterly User Access Review
Data objects
Users, Managers, Approval Groups
RECOMMENDED TEST CASES

Execute certification approvals and delegation scenarios

WHY IT MATTERS

Supports SOX and internal audit requirements

SoD Audit Report Enhancements

Medium
Type: Reporting / Analytics Opt-in: Enabled by Default

Additional audit attributes and downloadable Excel/PDF outputs

Affected pages
Audit Reports, Security Reports
Affected APIs
OTBI / BI Publisher APIs
ESS jobs
Generate Audit Reports
Configuration
BI Publisher Templates
Business processes
Audit Reporting
Data objects
Audit Logs, User Access History
RECOMMENDED TEST CASES

Validate report completeness and export formats

WHY IT MATTERS

Improves audit evidence collection

Redwood Security Console Navigation

Low
Type: UI Opt-in: Enabled by Default

Updated Redwood navigation for security administration tasks

Affected pages
Security Console
Affected APIs
None
ESS jobs
None
Configuration
Navigation Personalization
Business processes
Security Administration
Data objects
Security Metadata
RECOMMENDED TEST CASES

Validate menu access and navigation paths

WHY IT MATTERS

Reduces administration effort and improves usability

Enhanced Privilege Inheritance Analysis

High
Type: Security / Data Opt-in: Opt-in

Improved visibility into inherited privileges from abstract and duty roles

Affected pages
Role Hierarchy Viewer
Affected APIs
Role Hierarchy REST APIs
ESS jobs
Sync Security Metadata
Configuration
Role Templates
Business processes
Role Design and Governance
Data objects
Privileges, Duty Roles, Abstract Roles
RECOMMENDED TEST CASES

Validate inherited privilege tracing

WHY IT MATTERS

Helps identify hidden access risks

Automated SoD Conflict Remediation Requests

Medium
Type: Workflow / Automation Opt-in: Opt-in

Users can submit remediation requests directly from violation dashboard

Affected pages
SoD Dashboard, BPM Worklist
Affected APIs
BPM Task APIs
ESS jobs
Refresh Workflow Tasks
Configuration
BPM Approval Rules
Business processes
SoD Exception Management
Data objects
Violation Records, Workflow Tasks
RECOMMENDED TEST CASES

Create remediation request and validate approvals

WHY IT MATTERS

Accelerates compliance issue resolution

Integration with Oracle Access Governance

High
Type: Integration / Security Opt-in: Opt-in

Improved synchronization between Fusion Security Console and Oracle Access Governance

Affected pages
Oracle Access Governance Console
Affected APIs
Oracle Access Governance APIs
ESS jobs
Sync Access Governance Data
Configuration
Identity Synchronization Setup
Business processes
Identity Governance
Data objects
Users, Roles, Policies
RECOMMENDED TEST CASES

Validate user-role sync and certification updates

WHY IT MATTERS

Centralizes enterprise access governance

AFFECTED COMPONENTS · DEDUPED

Components Touched by Segregation of Duties 26C

Unique pages, APIs, ESS jobs, configurations and business processes across all 10 26C changes.

Affected Pages

14
AI Recommendations Panel Access Certification Access Certification Work Area Assign Roles Audit Reports BPM Worklist Oracle Access Governance Console Risk Analysis Dashboard Role Comparison Role Hierarchy Viewer Security Console Security Reports SoD Dashboard User Management

Affected APIs

10
Access Governance APIs BPM Task APIs HCM Users REST API None OTBI / BI Publisher APIs Oracle Access Governance APIs Risk Management Cloud APIs Role Hierarchy REST APIs Role Management REST APIs Security Console REST APIs

ESS Jobs

10
Generate Audit Reports Import Risk Definitions Import User and Role Application Security Data None Refresh Workflow Tasks Retrieve Latest LDAP Changes Run Access Certification Campaign Send Pending LDAP Requests Sync Access Governance Data Sync Security Metadata

Configuration Objects

11
AI Profile Options Approval Management Extensions BI Publisher Templates BPM Approval Rules Identity Synchronization Setup Navigation Personalization Risk Library Definitions Role Hierarchy Configurations Role Templates Security Approval Rules Security Policies

Business Processes

12
Audit Reporting Cross-functional Access Governance Identity Governance Quarterly User Access Review Role Assignment Role Design and Approval Role Design and Governance Security Administration SoD Exception Management SoD Monitoring User Access Review User Provisioning

Data Objects

17
Abstract Roles Approval Groups Audit Logs Business Units Data Access Sets Duty Roles Managers Policies Privileges Role Assignments Role Relationships Roles Security Metadata User Access History Users
+ 2 more
RELATED

More Oracle 26C & Release Intelligence

26C HUB

Back to Oracle 26C Release Hub

All 86 modules · 634 feature changes.
PREVIOUS · 26A

Oracle 26A Release Hub

Feb 2026 release — 918 changes, 70 modules.
PREVIOUS · 26B

Oracle 26B Release Hub

May 2026 release — 175 changes, 17 modules.
PLATFORM

Oracle Release Intelligence

Tenant-specific impact reports for every Oracle release.
CALENDAR

Oracle Release Calendar 2026

26A · 26B · 26C · 26D + CPU + CSPU schedule.
PRODUCT

Oracle Fusion Testing Tool

AI test automation for Oracle 26A/B/C/D + Redwood UI.

Oracle Segregation of Duties 26C FAQ

What changed in Oracle Segregation of Duties 26C?

Oracle Fusion Segregation of Duties 26C delivered 10 feature changes — 6 High/Critical severity, 3 Medium, 1 Low. Changes spanned UI updates, AI/automation enhancements, integration improvements and compliance updates. See the full breakdown above.

How many High-severity items are in Segregation of Duties 26C?

6 items in Oracle Fusion Segregation of Duties 26C are classified as High or Critical severity. These require dedicated regression testing before production rollout.

What pages and APIs are affected?

Affected components include 14 unique pages, 10 APIs, 10 ESS jobs, and 11 configuration objects across the 10 feature changes. See "Affected Components" section above.

When does Oracle 26C release for Segregation of Duties?

Oracle Fusion 26C is the Q3 2026 quarterly update, scheduled for July 2026. Segregation of Duties is among the impacted modules in this release with 10 feature changes.

How does SyntraFlow automate Segregation of Duties 26C regression?

SyntraFlow Release Intelligence maps each 26C Segregation of Duties feature against your live tenant configuration, identifies the ones that actually apply, and auto-composes a regression test pack covering only the relevant pages, APIs and business processes.

Segregation of Duties (SoD) Across Oracle Releases

Module Change History

Track how Oracle Segregation of Duties (SoD) evolved across the last 5 quarterly releases — same module, different release scope.

Jul 2025
25C
Segregation of Duties (SoD)
Explore →
Oct 2025
25D
Segregation of Duties (SoD)
Explore →
Feb 2026
26A
Segregation of Duties (SoD)
Explore →
May 2026
26B
Not impacted
Jul 2026 · current
26C
Segregation of Duties (SoD)
You are here
How SyntraFlow Tests Segregation of Duties (SoD) Natively

Built-in for Oracle, not bolted on

SyntraFlow runs Segregation of Duties (SoD) testing through purpose-built native modules — DataVault auto-generates test data, AI heals Redwood selectors, Process Mining maps real flows, Release Intelligence narrows scope per Oracle release.

BUILT FOR THIS MODULE

SoD Testing

Pre-built SoD ruleset, violation detection and certification.
BUILT FOR THIS MODULE

Role-Based Testing

Tests role design and entitlement assignment.
NATIVE PLATFORM

Oracle Fusion Testing Tool

AI test automation built for every Oracle Fusion module — Redwood UI, AI agents, quarterly patches.
NATIVE PLATFORM

SyntraFlow DataVault

Auto-generates valid Oracle test data — supplier hierarchies, employee assignments, GL combinations.
NATIVE PLATFORM

Config Discovery

Scans your live tenant and maps every configuration, role, security policy and customisation.
NATIVE PLATFORM

AI-Powered Oracle Testing

Self-healing Redwood selectors, AI agent validation, generative test data.
NATIVE PLATFORM

Release Intelligence Platform

Tenant-specific impact reports for every Oracle quarterly release, CPU and CSPU.
More on Segregation of Duties (SoD) & Oracle Testing

From the Blog

FROM THE BLOG

CVE-2026-21992: Oracle IAM Emergency Patch
FROM THE BLOG

Oracle January 2026 CPU Patching Guide
FROM THE BLOG

What Is Regression Testing?
FROM THE BLOG

UAT Testing for Oracle Fusion Cloud
FROM THE BLOG

Oracle Fusion Patch Testing Checklist

Validate Oracle Segregation of Duties 26C Against Your Tenant

SyntraFlow Release Intelligence maps every 26C advisory against your live Segregation of Duties configuration and auto-composes a regression test pack with SOX / GDPR audit evidence. Used by US, UK and EU enterprise Oracle teams.

Request Assessment Analyze Segregation of Duties 26C Impact
Release Intelligence Separately-licensed SyntraFlow module

How SyntraFlow Release Intelligence Works

Release Intelligence is a SyntraFlow module that is licensed and priced separately from the core SyntraFlow test automation platform. It pinpoints exactly what each Oracle Fusion quarterly release or critical patch will affect in your tenant — and produces the test scenarios needed to validate it. The workflow runs in five connected steps:

  1. Connects to your Oracle Fusion environment. A secure read-only connection to your live Oracle Fusion tenant ingests setup data, security model, and live transactions — no manual exports, no spreadsheets.
  2. Scans your complete configuration with Config Intelligence. Config Intelligence snapshots every setup object (FSM tasks, profile options, BPM rules, descriptive flexfields, security policies) and compares it against the incoming release.
  3. Reads master & transaction data via DataVault. DataVault profiles your real master data and live transactions so impact analysis is grounded in what your business actually runs — not generic Oracle samples.
  4. Produces a detail-level Impact Map. Cross-references the release notes against your configuration and data to highlight which features, flows, integrations, and reports are at risk — down to the line-level setting or seeded role that changed. See Release Impact Analysis.
  5. Generates test scenarios & remediation report. Outputs ready-to-execute test cases targeting each impacted area, plus a remediation report with the exact steps to update your setup or data so the patch goes live with minimum disruption. Run them with Patch Testing Automation.

Licensing note: Release Intelligence is a standalone SyntraFlow module available as its own subscription, or as an add-on to the SyntraFlow test automation platform. Pricing is separate from the core platform — contact us for module pricing and bundling options.

Related Reading