Oracle is pushing a major security patch in one week that will impact Identity. Has the SailPoint connector been modified and updated to accommodate these changes? 1. Oracle Critical Patch Update (April 2026)

Primary driver of the May security push

• Oracle Critical Patch Update Advisory – April 2026

  • Official Oracle advisory with patch details and affected products

  • Confirms 481 security patches across Oracle products and guidance to apply updates promptly [oracle.com]

2. Oracle Fusion / ERP Cloud Identity (IAM) Upgrade

This is the most relevant change for ERP/EPM + SailPoint integrations

Core documentation

• Identity Upgrade Overview (Fusion Applications → OCI IAM)

  • Explains the mandatory migration to OCI Identity and Access Management

  • Covers:

    • Authentication changes (SSO, MFA)

    • Required pre-upgrade actions

    • Risk of SSO breakage if not configured properly [docs.oracle.com]

• Identity Upgrade Checklist

  • Step-by-step actions for:

    • Security admins

    • Identity admins

  • Includes validation and post-upgrade checks

• Fusion Applications IAM Upgrade – What’s New / Considerations

  • Highlights:

    • Migration of identity services into OCI IAM

    • Enhanced:

      • MFA

      • SSO policies

      • Sign-on controls

      • audit/logging

• Fusion Identity Migration Center (landing page)

  • Oracle hub for all identity upgrade resources

3. New Monthly Security Patching Model (Starting May 2026)

Major operational change affecting integrations and connectors

• Oracle Blog – Monthly Critical Security Patch Updates (CSPUs)

  • Announces:

    • Start date: May 28, 2026

    • Monthly cadence for high-priority vulnerabilities

  • Explains:

    • CSPUs (monthly, targeted fixes) vs CPUs (quarterly, cumulative)

    • Automatic patching for Oracle-managed cloud environments [docs.oracle.com]