rhunt01
Well Known Member
Yes, SOX is truly fantastic. Our auditors have decided that I have too much access and too much understanding of our information systems. Accordingly, I have been asked to lock myself out of all production systems. Yet, since I handle all enterprise application upgrades, I get to perform all upgrades / testing / troubleshooting in a development environment, only to create an upgrade document for my management staff so they can perform all production upgrades.
Won't tier 3 support be fun when I'm locked out of our production systems! Anyway...enough griping.
I am hoping the list may have a suggestion on how to do this with JDE. Luckily, ESU installations are cake. However, I have been asked to make it so I can load ESU's into planner, intall into DV7333 and PY7333 pathcodes, BUT be unable to load the ESU into PD7333.
Anyone have any ideas? Would I have to use table level security?
I have considered trying to negotiate with the auditors and changing the scenerio for JDE. Maybe we should require that a manager load the ESU into the planner pathcode and then I will merge it into the other pathcodes. This would accomplish what the auditors want - a guarantee that nothing was installed that management doesn't know about.
My problem with the above scenerio is that by locking down the deployment server so tightly that I can't execute any *.exe files (ESU's come as self extracting *.EXE's) on the deployment server, I won't be able to properly run OneWorld on the deployment server for the planner and deployment pathcodes.
How are others out there dealing with this?????
Thanks in advance.
Won't tier 3 support be fun when I'm locked out of our production systems! Anyway...enough griping.
I am hoping the list may have a suggestion on how to do this with JDE. Luckily, ESU installations are cake. However, I have been asked to make it so I can load ESU's into planner, intall into DV7333 and PY7333 pathcodes, BUT be unable to load the ESU into PD7333.
Anyone have any ideas? Would I have to use table level security?
I have considered trying to negotiate with the auditors and changing the scenerio for JDE. Maybe we should require that a manager load the ESU into the planner pathcode and then I will merge it into the other pathcodes. This would accomplish what the auditors want - a guarantee that nothing was installed that management doesn't know about.
My problem with the above scenerio is that by locking down the deployment server so tightly that I can't execute any *.exe files (ESU's come as self extracting *.EXE's) on the deployment server, I won't be able to properly run OneWorld on the deployment server for the planner and deployment pathcodes.
How are others out there dealing with this?????
Thanks in advance.