Professional Documents
Culture Documents
Andreas Faruki
Scott Jorgensen
Deloitte & Touche
1
Session Topics
PeopleSoft Security
PeopleSoft Security
2
Database System Components
PeopleSoft Security
APVENDOR - Table
Vendor # Vendor Name Address State City Bank Account
Column security represents the same data field across all records
in a table. (i.e. Vendor #)
3
Database System Components
PeopleSoft Security
4
Database System Components
PeopleSoft Security
Financials and HRMS offer row level security. Row security can
restrict an user’s access to a subset of records based upon a value
within a field in the record. (i.e. all rows of data for Ledger Budget)
5
Database System Components
PeopleSoft Security
Network Security
PeopleSoft User Authentication 7
Database Security
Operating System Security
7 - Denotes Changes in Version 7
6
Network Security
PeopleSoft Security
Network Security
Database Security
PeopleSoft Security
Database Security
Server Logon
Security If not enabled users have the ability to change their
password in PeopleSoft and the RBDMS
7
Operating Systems Security
PeopleSoft Security
8
PeopleSoft Security
Operator Security
Configurable Components
PeopleSoft Security
Session 5 18
9
Configurable Components
PeopleSoft Security
Session 5 19
Configurable Components
PeopleSoft Security
Business Process Map Graphical presentation of a business process,
used by an Operator to navigate through
PeopleSoft panels. Does not supercede
Menu/Panel Security.
Row Level Security Class The Operator Class which will be used for
restricting an Operator’s row level access.
(Does not work system uses Primary class)
Session 5 20
10
Functionality
PeopleSoft Security
Session 5 21
Functionality
PeopleSoft Security
11
Functionality
PeopleSoft Security
Access Profile
Functionality
PeopleSoft Security
Menu Name / Bar Name / Item Name / Actions / Panels / Display Only
12
Functionality
PeopleSoft Security
Functionality
PeopleSoft Security
13
Functionality
PeopleSoft Security
Update/Display Insert effective dated rows which are greater than the current
and display current and future effective dated rows.
Update/Display All Insert effective dated rows which are greater than the current
and display all historical, current and future effective dated
rows.
Display Only Display only current effective dated records and overrides the
action/panel access.
Functionality
PeopleSoft Security
Sign-on Times
14
Functionality
PeopleSoft Security
Process Groups
Functionality
PeopleSoft Security
15
Functionality
PeopleSoft Security
Auditability
PeopleSoft Security
Session 5 32
16
PeopleSoft Security
Financials Security
Financials
Menu Security 7
Row Security
Preferences
Workflow Security
Custom Panels or PeopleCode
17
Control Environment Components
PeopleSoft Security
Financials
Menu Security
Row Security 7
Preferences
Workflow Security
Custom Panels or PeopleCode
Configurable Components
PeopleSoft Security
Session 7 36
18
Configurable Components
PeopleSoft Security
Session 7 37
Control Features
PeopleSoft Security
Session 7 38
19
Control Features
PeopleSoft Security
Session 7 39
Control Features
PeopleSoft Security
■ nVision Security
Session 7 40
20
Control Environment Components
PeopleSoft Security
Financials
Menu Security
Row Security
Preferences 7
Workflow Security
Custom Panels or PeopleCode
Configurable Components
PeopleSoft Security
■ Operator Preferences
– Payables
– Purchasing General Defaults
– Requisition Authorizations
– Purchase Order Authorizations
– Receivables Data Entry
– Vendor Maintenance
Session 7 42
21
Control Features
PeopleSoft Security
Payables
Session 7 43
Control Features
PeopleSoft Security
Session 7 44
22
Control Features
PeopleSoft Security
Vendor Maintenance
Session 7 45
Financials
Menu Security
Row Security
Preferences
Workflow Security 7
23
Control Environment Components
PeopleSoft Security
Financials
Menu Security
Row Security
Preferences
Workflow Security
Custom Panels or PeopleCode
Custom Panels
or PeopleCode Default menus / panels can be modified to
remove specific fields. Additionally,
PeopleCode can be written and attached
to a field to cause specific processing to
occur based upon the Operator performing
the process or a value in the field.
Configurable Components
PeopleSoft Security
Field Security
PeopleCode Security can be added by writing
PeopleCode and attaching it to the data
table definition. When the table is access
PeopleCode would be invoked.
Session 7 48
24
Control Features
PeopleSoft Security
Field Security
■ People Code
****************************************************/
if %OperatorClass = "APADM" and
%PanelGroup = "VCHR_STD" then
gray_apprvl_flds();
UnGray(MATCH_STATUS_VCHR);
UnGray(BUSPROCNAME);
UnGray(APPR_RULE_SET);
Hide(BUSPROCNAME);
Hide(APPR_RULE_SET);
end-if;
/***************************************************/
Session 7 49
Auditability
PeopleSoft Security
Session 7 50
25
PeopleSoft Security
HRMS Security
HRMS
Menu Security 7
26
Control Environment Components
PeopleSoft Security
HRMS
Menu Security
Row / Tree Security7
Global Preferences
Workflow Security
Custom Panels or PeopleCode
Configurable Components
PeopleSoft Security
27
Configurable Components
PeopleSoft Security
Hierarchical Structure
Configurable Components
PeopleSoft Security
Tree Effective Date Date which Trees are effective for row
security.
28
Configurable Components
PeopleSoft Security
Functionality
PeopleSoft Security
29
Functionality
PeopleSoft Security
Functionality
PeopleSoft Security
30
Control Environment Components
PeopleSoft Security
HRMS
Menu Security
Tree Security
Global Preferences 7
Workflow Security
Custom Panels or PeopleCode
Functionality
PeopleSoft Security
31
Control Environment Components
PeopleSoft Security
HRMS
Menu Security
Tree Security
Global Preferences 7
Workflow Security
Custom Panels or PeopleCode
HRMS
Menu Security
Tree Security
Global Preferences 7
Workflow Security
Custom Panels or PeopleCode
Custom Panels
or PeopleCode Default menus / panels can be modified to
remove specific fields. Additionally,
PeopleCode can be written and attached
to a field to cause specific processing to
occur based upon the Operator performing
the process or a value in the field.
32
Auditability
PeopleSoft Security
PeopleSoft Security
Query Security
33
Control Environment Components
PeopleSoft Security
Query
Trees
Access Groups
Profiles
Security Record Definitions 7
Functionality
PeopleSoft Security
Query Tree
34
Functionality
PeopleSoft Security
Query
Trees
Access Groups
Profiles
35
Functionality
PeopleSoft Security
Query Profile
Functionality
PeopleSoft Security
36
Auditability
PeopleSoft Security
PeopleSoft Security
37
Control Environment Components
PeopleSoft Security
PS/nVision
Operator Security
SQR
Menu Security
Process Scheduler
38
Control Environment Components
PeopleSoft Security
SQR
Menu Security
Process Scheduler
PeopleSoft Security
Object Security
39
Control Environment Components
PeopleSoft Security
Objects
Menu Security 7
Object Groups
Change Control 7
Configurable Components
PeopleSoft Security
Object Security Rules Set of rules which dictates how the system
interprets object security settings.
40
Configurable Components
PeopleSoft Security
Configurable Components
PeopleSoft Security
12 Object Types
41
Configurable Components
PeopleSoft Security
1. Is the Object assigned to any object group? If not anyone has update
access to it; access is granted.
3. Do all of the object groups, of which the object is a member, have the
display-only option disabled? If not, the system displays a message that
says it is not an object that you are authorized to update. The object is
then displayed with the File, Save option grayed.
Functionality
PeopleSoft Security
Menu Access
42
Functionality
PeopleSoft Security
Functionality
PeopleSoft Security
No Access
Read-only Access
Full Access
Update Translates Only
(Fields only)
Data Admin Only
(Records only)
43
Functionality
PeopleSoft Security
Functionality
PeopleSoft Security
44
Functionality
PeopleSoft Security
Functionality
PeopleSoft Security
45
Control Environment Components
PeopleSoft Security
Objects
Menu Security 7
Object Groups
Change Control 7
Functionality
PeopleSoft Security
46
Functionality
PeopleSoft Security
Functionality
PeopleSoft Security
47
Control Environment Components
PeopleSoft Security
Objects
Menu Security 7
Object Groups
Change Control 7
Objects
Menu Security 7
Object Groups
Change Control 7
48
Auditability
PeopleSoft Security
PeopleSoft Security
49
Configurable Components
PeopleSoft Security
Functionality
PeopleSoft Security
Operator Profile
Allow Process Request Update By defines who can update a process request.
Update Server Status allow a user to suspend, restart or bring down a server.
Override Server Parms allows a user to change the server name and run date/time.
Update Recurrence Definition allows a user to change the time a process occurs.
© 1998 Deloitte Touche Tohmatsu. All rights reserved. fico.ppt 100
50
Functionality
PeopleSoft Security
Functionality
PeopleSoft Security
51
Functionality
PeopleSoft Security
Functionality
PeopleSoft Security
Assign Process Security Groups to Operators or Classes
52
Auditability
PeopleSoft Security
PeopleSoft Security
Session Recap
53
Session Topics
PeopleSoft Security
PeopleSoft Security
Questions
54