IAM in Service Catalog
|Customers||UW Academic Personnel (faculty)|
|Application Use||UW Tableau – manage access to group part of access management plan for Faculty Dashboard|
|Membership (Business Definition)|
Academic Track Types are a data element in Workday, and are part of the Academic Track Hierarchy, which is associated with the Academic Appointment data structure.
Academic Track Types to include:
|System of Record||Workday|
|Subject Area||Human Resources|
|Home Group||uw_affiliation (same as most affiliation groups)|
uw_affiliation_faculty-voting (created & membership managed by IAM process)
Customer's group: uw_ap_tableau_facultydashboard (created & Administered by Acad Personnel)
Which consists of uw_affiliation_faculty-voting and uw_ap_tableau_facultydashboard-viewers (created & Administered by Acad Personnel)
UW Voting Faculty
|Lifecycle Policy (Creation)|
Created Members added via Workday process updates
|Lifecycle Policy (Deletion)|
Deleted Members deleted by Workday process updates
Group uw_ap_tableau_facultydashboard has its membership derived from the subgroups uw_affiliation_faculty-voting plus uw_ap_tableau_facultydashboard-viewers
will have its membership controlled via the groupmaker process certificate.
Direct membership of the academicfaculty-track voting group will include UW NetIDs of all current Academic Appointments academic appointments in select Academic Track Types to include:
uw_ap_tableau_facultydashboard-viewers will be used to manage exceptions, other people who need access, but aren’t faculty. This is manually managed by OPB/EOAA members.
|Membership (Grace Period)|
iam-support (uw_affiliation_faculty-voting); acadpers (uw_ap_tableau_facultydashboard & uw_ap_tableau_facultydashboard-viewers)
Members of the UW Voting Faculty are updated nightly from the ODS. For more information go to https://www.washington.edu/faculty/secfac/voting-faculty This group is updated nightly from the ODS. It is available for appropriate business purposes in support of the UW mission. All users are responsible for enforcing the defined access control policy and may not share employee group memberships with unauthorized parties without first obtaining authorization to do so. All users are expected to know and follow the rules related to ethical and appropriate use of UW computing and networking resources. Please contact firstname.lastname@example.org for questions about using this group.
|Application Settings (Exchange)|
|Application Settings (Google)|
|Data CustodianCourtney Drake, Data Architect and Business Systems Analyst, Office Planning and Budgeting||Margaret Stuart (email@example.com), Assistant Vice Provost for Academic Personnel|
Restricted – same confidentiality impact factors as similar employee affiliation groups (e.g. uw_affiliation_staff-employee). See Classification for Institutional Employee Groups
|Access Control Policy||Data custodians grant permission to view the group memberships to all UW employees as well as processes acting on behalf of UW employees. Non-employee access (including students, affiliates, and other third parties) and other exceptions to this policy may be authorized by the custodians on a case-by-case basis, based on establishing a business need and/or an appropriate data sharing agreement.|
|Membership Viewer Control|
and for this specific business need/integration for Tableau (Application UW NetID: a_tableau)
|Sender Control||N/A (not supported yet except via Exchange and Google settings)|
Defined as a SQL query on views in the edwpub.s.uw.edu SQL Server, ODS database based on the following SQL call:
AcadTrackType_GroupMaker + TegeaGWSGroupUpdater (adds members)
AcadTrackType_GroupMaker + TegeaGWSGroupUpdater (removes members)
AcadTrackType_GroupMaker + TegeaGWSGroupUpdater are monitored.
|Data Quality Standards|
Same as other groups provisioned from HR data in ODS.
See AcadTrackType_GroupMaker + TegeaGWSGroupUpdater
Internal groups documentation can be found here:
(link to UW Affiliation Groups page, once process created & entry on page added)
|Communication Plan||Email Courtney Drake & Matt Portwood (re: Tableau access) when available (REQ2853803).|
|Request Fulfillment||Access requests to view the membership will be fulfilled through UW Connect, including custodian approval records.|
|Incident Management||TegeaGWSGroupUpdater and staleFileMonitor errors are emailed into UW Connect.|