Buster DAN
Active Member
Having recently upgraded from Xe to 8.9 yesterday I took my first in depth look at Solution Explorer and Security in 8.9.
Armed with various Peoplesoft documents I thought it would not be too hard to come up with a new security policy and procedure for our company........ hmmmm yeah right!!
In Xe we always used One World menu's so now i am looking ar Role Based task views I think. In terms of security well we completely dumped that in 8.9 as we plan to completely revise this.
Then the headaches start!!
I can find my way around the screens and create new roles, task views, variants, relationships, sequence roles... but the fundamental thing that I am missing is how to best tie all this together into a coherent security/role policy, that we can adopt from now onwards and we wont have to chase around trying to understand what access individual users have.
In the past we followed the JD Edward model of excluding all users from everything and then adding access where appropriate. Under 8.9 is this policy still appropriate? With the greater flexibility of Solution Explorer should we instead use Fine Cut to more closely replicate roles but only restrict access in Security where there is the possibly of linking out to applications that they should not access. Basically what i am saying is should we aim to simply restrict access with Task Views and supplement this with some Securtity Workbench entries?
In addition we have all the Old XE user groups which are now shown as Roles in 8.9. These groups previously linked to menu's that quite closely replicated individual user roles in the company, but between say the various groups with a finance department there is a lot of replication within the menu's. Should we therefore start with a with a "Master" finance task and then use multiple talk roles and Fine Cut to specify the access that each departmental user should have. Then by using the role relationships that link into Security I can prgressively restrict what access say a general Finance assistant might have compared to the Financial Controller.
I do think this is a really critical area of the system that we must get right so I'd really appreciate any advice or suiggestions.
Cheers
DANNY
Armed with various Peoplesoft documents I thought it would not be too hard to come up with a new security policy and procedure for our company........ hmmmm yeah right!!
In Xe we always used One World menu's so now i am looking ar Role Based task views I think. In terms of security well we completely dumped that in 8.9 as we plan to completely revise this.
Then the headaches start!!
I can find my way around the screens and create new roles, task views, variants, relationships, sequence roles... but the fundamental thing that I am missing is how to best tie all this together into a coherent security/role policy, that we can adopt from now onwards and we wont have to chase around trying to understand what access individual users have.
In the past we followed the JD Edward model of excluding all users from everything and then adding access where appropriate. Under 8.9 is this policy still appropriate? With the greater flexibility of Solution Explorer should we instead use Fine Cut to more closely replicate roles but only restrict access in Security where there is the possibly of linking out to applications that they should not access. Basically what i am saying is should we aim to simply restrict access with Task Views and supplement this with some Securtity Workbench entries?
In addition we have all the Old XE user groups which are now shown as Roles in 8.9. These groups previously linked to menu's that quite closely replicated individual user roles in the company, but between say the various groups with a finance department there is a lot of replication within the menu's. Should we therefore start with a with a "Master" finance task and then use multiple talk roles and Fine Cut to specify the access that each departmental user should have. Then by using the role relationships that link into Security I can prgressively restrict what access say a general Finance assistant might have compared to the Financial Controller.
I do think this is a really critical area of the system that we must get right so I'd really appreciate any advice or suiggestions.
Cheers
DANNY