Roles make it easier to assign access levels to users and to audit those assignments on an ongoing basis. Rather than assigning access levels to users directly, access levels are assigned to a role. Roles are assigned to users, and a user’s access level is determined by the roles assigned to that user.

The following are the default role categories presented by Oracle Identity Manager:

 

Role Category	Roles	Notes
Role Category: Default		If a role category is not specified at the time of creating the role, then the role is assigned to this category by default.The default role categories cannot be localized.
Role Category: OIM Roles	Role: ALL USERSRole: AdministratorsRole: OPERATORSRole: SELF OPERATORS Role: SYSTEM ADMINISTRATORS	All the predefined roles in Oracle Identity Manager are assigned to this category. These are roles that exist in Oracle Identity Manager by default and are primarily used for managing permissions.