IAM
Space shortcuts

Log in to ASTRA
Manage UW Groups
Manage UW NetID Resources
Manage UW CA Certs
Manage InCommon CA Certs
Register/Update Shibboleth SP

IAM in Service Catalog

Access Management
Authentication
Directory Services
UW NetID
UW Directory
Microsoft Infrastructure

Page Tree

Child pages
  • UW groups for access to Legacy HR reports
Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 4 Next »

ANALYSIS
Customers

Alin Hunter, UW-IT – for access to various Legacy HR/P Archive reports that are hosted in the BI Portal; also for communications to individuals in the related Workday security roles.

Application Use

See Customers above.

Membership (Business Definition)

Group memberships based on assignable security roles in Workday.

See https://isc.uw.edu/admin-corner/security-roles/assignable-roles/

See https://isc.uw.edu/support-resources/how-to-get-workday-help/named-support-contacts/

Business ProcessWorkday security role management
System of RecordWorkday
Subject AreaTBD???
Human Resources
Master Data
Business DomainTBD???
HR – Staffing
Master Data – Services & Resources – Facilities – access permissions and restrictions
Master Data – Safety & Security – Safety programs, security auditing and controls, police, crime prevention
DESIGN
TypeTBD. Group/role or permission? Need to understand options BI Portal has for referencing groups.
Home GroupTBD. Choose a home group that aligns with the UW Group Naming Plan and the business domain of the related institutional data.
Group IDs
Assignable RoleTBD - Workday Role IDGroup IDArea
Academic PartnerAcademic_Partner
All
Costing Allocations CoordinatorCosting_Allocations_Coordinator
All
HCM Initiate 2HCM_Initiate_2
All
HR PartnerHR_Partner
All
VO-STAFF-COMP-COST

All
Academic Personnel Office PartnerAcademic_Personnel_Office_Partner
Central
HR Office PartnerHR_Office_Partner
Central

Labor Office Partner?

Labor Relations / Union Office Partner

Labor_Relations_Union_Office_Partner
Central

Leave Office Partner?

ISC – Absence Office Partner



ISC
ISC – Benefits Office Partner

ISC
ISC – Compensation Office Partner

ISC
ISC – Payroll Office Partner

ISC

Retirement Office Partner?

ISC – Retiree Office Partner



ISC
Auditor?


Display Name

TBD. Need to check if Workday has a user-friendly display name for each Workday security role.

Lifecycle Policy (Creation)

TBD. Only create group for approved uses for Legacy HR/P Archive reports.

Lifecycle Policy (Deletion)

Groups wouldn't be deleted until custodians approve their deletion.

Membership (Direct)

TBD. Direct membership of each group would include the UW NetIDs of individuals assigned to the specific Workday security role.

Membership (Exceptions)

No exceptions for additions or deletions. All updates will be mastered in Workday.

Membership (Grace Period)

None

Membership (Opt-in)N/A
Membership (Opt-out)N/A
Contact Person

TBD. A contact appropriate for Workday security role support, e.g. "ischelp".

Description

TBD. Define descriptions that help potential customers understand fit for purpose and use, including lifecycle policy, membership policy, data quality standards, appropriate use guidelines, access control policy, ownership, and contact information. Some business processes master data that can be used for descriptions.

More InformationN/A 
Application Settings (Exchange)

Inactive; change to settings will require custodian approval.

Application Settings (Google)

Inactive; change to settings will require custodian approval.

ACCESS CONTROL
Data Custodian

Nancy Jagger, Rachel Gatlin, Margaret Stuart, Cindy Gregovich

Classification

TBD. Determine the appropriate UW data classification (Public, Restricted, Confidential).

Access Control PolicyTBD. Decide and document the access control policy including membership viewer control, sender control, appropriate use guidelines, terms and conditions of use, etc.
Membership Viewer ControlTBD. Define the membership viewer control, including exceptions to the access control policy.
Sender ControlN/A
IMPLEMENTATION
Data Source

TBD. HRPWS is the likely source.

Membership (Technical)

TBD. Define the technical definition of the memberships in terms used by the data source and its data elements, as well as any additional filtering.

ProvisioningTBD. Define a provisioning model for data integration and reconciliation that ensures the groups are created in accordance with their lifecycle policy and managed in accordance with their data quality standards.
De-ProvisioningTBD. Define a de-provisioning model that ensures the groups are deleted in accordance with their lifecycle policy.
MonitoringTBD. Define a monitoring solution that helps identify incidents and problems, particularly those that impact availability and reliability.
Data Quality Standards

TBD. Define data quality standards under normal operations, including data validation rules, timeliness of updates, defined error rates, integrity monitoring, and reliability. The standards will depend on the business process, system of record, data source, provisioning and de-provisioning models, monitoring, and operations.

Internal DocumentationTBD. Define what internal documentation will be developed and where it will be maintained.
Customer DocumentationTBD. 
Communication PlanTBD. Alin and Snezana will coordinate communications with BI Portal report users and other stakeholders.
OPERATIONS
Request FulfillmentTBD. Define how requests will be fulfilled. For example, standard requests for information, access to memberships, membership exceptions, email settings, design changes, etc.
Incident ManagementTBD. Define how incidents will be handled.
  • No labels

Have a question? Contact us at iam-support@uw.edu.