SlideShare a Scribd company logo

Fine Grain Access Control for Admission & Graduation

Khalid Tariq
Khalid Tariq
Business
1 of 80
SUNGARD SUMMIT 2007 | sungardsummit.com 1 FGAC for Admission/Graduation Presented by: Khalid M. Tariq, Supervisor, Student Records Systems Higher Colleges of Technology March 20, 2007 Course ID 1311
2 Course ID 1311 Objectives By the end of this presentation, you will be able to: Differentiate between FGAC and VBS Learn about the basic steps to setup VBS Learn the needs of specific security in admissions and graduation modules at HCT Learn how FGAC was used to address the security needs Use ERDs while implementing FGAC
3 Course ID 1311 Agenda Introduction to HCT Basic Concepts in FGAC HCT implementation of FGAC for admissions HCT implementation of FGAC for graduation Lessons Learned and Summary
SUNGARD SUMMIT 2007 | sungardsummit.com 4 Part # 1 Introduction to HCT
5 Course ID 1311 Highlights of HCT Located in United Arab Emirates First institution in entire Middle East to go live with Banner 7.x Started in 1988 with 239 students and four campuses Today: Enrollment: 16000+ Colleges: 15 STVCAMP Graduates: 22K+ Credentials awarded: 32K+ Programs offered in 2006: 80+ SMAPRLE Academic Divisions: 6 STVCOLL 3-4K students graduate every year
6 Course ID 1311 Where We Are?
7 Course ID 1311 Distributed Campuses with a Central System Registrar (2) (2) (2) (2) (3) (2) (2)
8 Course ID 1311 Central Banner Support for all 15 Campuses
9 Course ID 1311 NAPO Faculty EvaluationSystem HCTPORTAL Attendance Management System CMS Textbook Ordering & Tracking System Quality Assurance System HCT Unified Digital Campus SYLLABUS PLUS
SUNGARD SUMMIT 2007 | sungardsummit.com 10 Part # 2 Basic Concepts in FGAC
11 Course ID 1311 FGAC vs. VBS Fine Grain Access Control (FGAC) is an Oracle feature Value Based Security (VBS) is one of the security features of Banner which is built on top of Oracle FGAC Other Banner features which are based on Oracle FGAC are PII (Personal Identifiable Information) and VPD (Virtual Private Directory) In this presentation I will be using both VBS and FGAC interchangeably
12 Course ID 1311 Basic Concepts of VBS You tell the Banner about enforcing some restrictions on some people when some tables are accessed in some way. Whenever anyone tries to access the table, Banner looks at whether the person is in the group of people associated with the restriction and enforces the restriction The beauty of VBS is that it works not only in Banner but also for any SQL access to the tables (TOAD, Access, Crystal Reports, etc.) For example, if you denied all people in admissions department to be able to viewpersonal address of a student (SPRADDR), they will not be able to see it in Banner, TOAD, Access, SQL+, Crystal Reports, etc.
13 Course ID 1311 Basic Concepts of VBS VBS predicate logic is defined by using SQL SHRDGMR_GRST_CODE = ‘AW’ Oracle appends any access to a particular table with the predicate logic SELECT COUNT(SHRDGMR_PIDM) FROM SHRDGMRWHERE SHRDGMR_GRST_CODE = ‘AW’
14 Course ID 1311 Step#1: Write down your Business Requirements Only counselors can view consular type comments entered in student comments form. Counselors can not delete or update comments entered in student comments form by other counselors.
15 Course ID 1311 Step#2: Refine your Business Requirements with Tables and Access Type Information UserGroup can not add, update, delete, view data from tables when condition1 is true Think of the driver table which will need restrictions Look at the ERD diagrams and decide whether other tables will also need to be restricted
16 Course ID 1311 Step#3: Create a Domain in GTVFDMN (Optional) VBS rules are written against a domain For every rule there is a base (driver table). For example; the driver table for graduation rule would be SHRDGMR There can be only one driver table for a domain If you need to have another driver table, you need to create another domain Domain Names are created in GTVFDMN
17 Course ID 1311 Step#3: Create a Domain in GTVFDMN (Optional) cont. Try to put your institution code in the beginning of domain so that domains created by you are easily searchable. For example, HCT_SB_GRADUATION1_VBS
18 Course ID 1311 Step#4: Define the Domain Driver Table in GORFDMN (Optional) In this form you map the driver table to your created domain For example, GB_SPRTELE_VBS domain is mapped to SPRTELE driver table
19 Course ID 1311 Step#5: Add Policy Tables in GORFDPL (Optional) Policy tables are tables which have a relationship with driver table (for example, driver table SARADAP, policy table, SARAPPD) If you want your restrictions to apply to the policy tables as well, you need to create joins of these policy tables to driver table in GORFDPL Even if you are not going to join driver table with any policy table, you need to include the domain and driver table in the form with empty SQL:
20 Course ID 1311 Step#6: Start Applying Policy to all Tables There is a script called “GFVBSADDPOL.SQL” included in General/Plus directory as part of your Banner upgrade/installation Login into your database as BANINST1 and run this script for each table (driver and policy)
21 Course ID 1311 Step#7: Define a FGAC Group in GTVFGAC A domain is defined for each driver table Under each domain can be different groups. One group is created for each type of restriction. For example, if you have restriction based on student level type in SGBSTDN, it will be one group and if you have another restriction based on student status in SGABSTDN, it will require a separate group creation
22 Course ID 1311 Step#8: Create a Business Profile in GTVFBPR
23 Course ID 1311 Step#9: Assign Users to Business Profile in GOAFBPR
24 Course ID 1311 Step#10: Define Predicate Rules in GOAFGAC
25 Course ID 1311 Step#11: Assign Users to a Predicate in GOAFGAC You can either assign individual users or a group (using business profiles) to a predicate and assign the different access levels.
26 Course ID 1311 Step#12: View the Policy in GOIFGAC
SUNGARD SUMMIT 2007 | sungardsummit.com 27 Part # 3 HCT Implementation of FGAC for Admissions
28 Course ID 1311 The Need for Row-level Security in Admission HCT is a public institution fully sponsored by UAE government All students must be admitted via National Admissions and Placement Office (NAPO) Students are approved by HCT admission officers on NAPO website and then downloaded into Banner centrally The download process creates SPRIDEN (General Person), SARADAP (Admission Application), SARAPPD (Admission Decision) records
29 Course ID 1311 NAPO HCT Banner - NAPO Integration
30 Course ID 1311 The Need for Row-level Security in Admission (contd.) Until 2005, HCT used to only download accepted students from NAPO database Starting 2006, a decision was made to download all applicants data from NAPO database (including students who are not approved and waitlisted) This meant that campus admission officers can possibly go and directly approve students from Banner (SAADCRV) instead of NAPO We explored and decided to used VBS to tackle this security issue
31 Course ID 1311 HCT Admission Codes
32 Course ID 1311 Typical Accepted Student Admission Application
33 Course ID 1311 Typical Waitlisted Student Admission Application
34 Course ID 1311 Business Requirement for Admissions Module Prevent users from entering admission decision ‘01’ (Institution Accepted) if code ’02’ (Not Approved) or ’03’ (Waitlisted) is the already in the application This can not be achieved by simply preventing all campus admission officers from accessing SARADAP The solution: VBS in Banner
35 Course ID 1311 Step#1: Write down your Business Requirements Prevent users from entering admission decision ‘01’ (Institution Accepted) if code ’02’ (Not Approved) or ’03’ (Waitlisted) is the already in the application
36 Course ID 1311 Step#2: Refine your Business Requirements with Tables and Access Type Information CampuseUsers can not add decision code 01 into SAADCRV form (SARAPPD table) when decision code 02 or 03 are already entered Driver Table: SARAPPD
37 Course ID 1311 Step#3: Create a Domain in GTVFDMN (Optional) Checked if there is already a domain with Seed data with SARAPPD table. No Created a new domain: HCT_SB_ADMISISONS1_VBS
38 Course ID 1311 Step#4: Define the Domain Driver Table in GORFDMN (Optional)
39 Course ID 1311 Step#5: Add Policy Tables in GORFDPL (Optional) No policy tables are needed for SARAPPD. However the driver table SARAPPD should still be added here
40 Course ID 1311 Step#6: Start Applying Policy to all Tables Apply policies for SARAPPD by running gfvbsaddpol script
41 Course ID 1311 Step#7: Define a FGAC Group in GTVFGAC
42 Course ID 1311 Step#8: Create a Business Profile in GTVFBPR
43 Course ID 1311 Step#9: Assign Users to Business Profile in GOAFBPR
44 Course ID 1311 Step#10: Define Predicate Rules in GOAFGAC
45 Course ID 1311 Step#11: Assign Users to a Predicate in GOAFGAC
46 Course ID 1311 Step#12: View the Policy in GOIFGAC
47 Course ID 1311
48 Course ID 1311
SUNGARD SUMMIT 2007 | sungardsummit.com 49 Part # 4 HCT Implementation of FGAC for Graduation
50 Course ID 1311 The Need for Row-level Security in Graduation HCT System Registrar is responsible for centrally awarding students This meant that no one has access to SHADEGR and SHAMDEG Graduating 4000 students used to take at least a month after Spring semester In 2005, the need to conduct a more robust and quick solution to graduation processing was defined As a result HCT went through a 180 degree change of graduation processing Most of the responsibilities of graduation were pushed back to the campuses but students were still to be awarded centrally by system registrar This meant campus staff to have access to SHADEGR and SHAMDEG
51 Course ID 1311 A Typical Use of SHADEGR by Campuses
52 Course ID 1311 Business Requirement for Graduation Module Prevent users from entering Degree/Graduation Status of “AW” (Awarded) but allow them to enter other codes such as “PG” (Potential Graduate) This can not be achieved by simply preventing all campus staff from accessing SHADEGR The solution: VBS in Banner
53 Course ID 1311 Step#1: Write down your Business Requirements Prevent users from entering Degree/Graduation Status of “AW” (Awarded) but allow them to enter other codes such as “PG” (Potential Graduate)
54 Course ID 1311 Step#2: Refine your Business Requirements with Tables and Access Type Information UserGroup can never add, update, delete, view “AW’’ from STVGRST and STVDEGS
55 Course ID 1311 Step#3: Create a Domain in GTVFDMN (Optional)
56 Course ID 1311 Step#4: Define the Domain Driver Table in GORFDMN (Optional)
57 Course ID 1311 Step#5: Add Policy Tables in GORFDPL (Optional)
58 Course ID 1311 Step#6: Start Applying Policy to all Tables Run “GFVBSADDPOL.SQL” for STVDEGS and STVGRST
59 Course ID 1311 Step#7: Define a FGAC Group in GTVFGAC
60 Course ID 1311 Step#8: Create a Business Profile in GTVFBPR
61 Course ID 1311 Step#9: Assign Users to Business Profile in GOAFBPR
62 Course ID 1311 Step#10: Define Predicate Rules in GOAFGAC
63 Course ID 1311 Step#11: Assign Users to a Predicate in GOAFGAC
64 Course ID 1311 Step#12: View the Policy in GOIFGAC
65 Course ID 1311 Issues with Graduation FGAC We thought by limiting users to select AW from STVDEGS and STVGRST, they won’t be able to award a student by mistake… We found out two students were unawarded (degree status changed from AW to SO) by mistake by campus users. It was obvious that the FGAC was not complete. We had to add restrictions on SHRDGMR table.
66 Course ID 1311 Step#1: Write down your Business Requirements Campus users can view degree records for students who have been “awarded” but they can not insert, delete or update any information on such records.
67 Course ID 1311 Step#2: Refine your Business Requirements with Tables and Access Type Information UserGroup can never add, update, delete any data from SHRDGMR, SHRDGIH, SHRDGDH, SHRDGCM if the student has a degree status of “AW”
68 Course ID 1311 Step#3: Create a Domain in GTVFDMN (Optional)
69 Course ID 1311 Step#4: Define the Domain Driver Table in GORFDMN (Optional)
70 Course ID 1311 Step#5: Add Policy Tables in GORFDPL (Optional)
71 Course ID 1311 Step#6: Start Applying Policy to all Tables Run “GFVBSADDPOL.SQL” for : SHRDGMR SHRDGDH SHRDGIH SHRDGCM
72 Course ID 1311 Step#7: Define a FGAC Group in GTVFGAC
73 Course ID 1311 Step#8: Create a Business Profile in GTVFBPR Already done. Use the AW_RESTRICTED profile created before.
74 Course ID 1311 Step#9: Assign Users to Business Profile in GOAFBPR Already done
75 Course ID 1311 Step#10: Define Predicate Rules in GOAFGAC
76 Course ID 1311 Step#11: Assign Users to a Predicate in GOAFGAC
77 Course ID 1311 Step#12: View the Policy in GOIFGAC
SUNGARD SUMMIT 2007 | sungardsummit.com 78 Part # 5 Lessons Learned and Summary
79 Course ID 1311 Summary Use ERDs to find all tables you need to touch Always keep the profiles up-to-date Always check how predicates are placed on GOIFGAC Make sure the policies are checked as active in GOAFGAC and GORFDPL
80 Course ID 1311 Thank you and email if you need help! Khalid M. Tariq Supervisor, Student Record Systems Higher Colleges of Technology Abu Dhabi, UAE ktariq@hct.ac.ae http://www.hct.ac.ae Please complete the online class evaluation form Course ID 1311 SunGard, the SunGard logo, Banner, Campus Pipeline, Luminis, PowerCAMPUS, Matrix, and Plus are trademarks or registered trademarks of SunGard Data Systems Inc. or its subsidiaries in the U.S. and other countries. Third-party names and marks referenced herein are trademarks or registered trademarks of their respective owners. © 2006 SunGard. All rights reserved.

Recommended

Partner faq
Partner faqPartner faq
Partner faq
David Moreno
 
Getting Started Right: The Ramp-Up to Success for Healthcare Professionals
Getting Started Right: The Ramp-Up to Success for Healthcare ProfessionalsGetting Started Right: The Ramp-Up to Success for Healthcare Professionals
Getting Started Right: The Ramp-Up to Success for Healthcare Professionals
Smart ERP Solutions, Inc.
 
Ankabut presentation Mobile Learning in Higher Education
Ankabut presentation Mobile Learning in Higher EducationAnkabut presentation Mobile Learning in Higher Education
Ankabut presentation Mobile Learning in Higher Education
Khalid Tariq
 
Banner - The Backbone of HCT Unified Digital Campus
Banner - The Backbone of HCT Unified Digital CampusBanner - The Backbone of HCT Unified Digital Campus
Banner - The Backbone of HCT Unified Digital Campus
Khalid Tariq
 
Student Information Analytics
Student Information AnalyticsStudent Information Analytics
Student Information Analytics
Addvantum
 
Governance, Risk & Compliance SiG
Governance, Risk & Compliance SiGGovernance, Risk & Compliance SiG
Governance, Risk & Compliance SiG
Smart ERP Solutions, Inc.
 
Student Retention & Success Tools at HCT
Student Retention & Success Tools at HCTStudent Retention & Success Tools at HCT
Student Retention & Success Tools at HCT
Khalid Tariq
 
CAPP and Curriculum Management at HCT
CAPP and Curriculum Management at HCTCAPP and Curriculum Management at HCT
CAPP and Curriculum Management at HCT
Khalid Tariq
 

Recommended

Partner faq
Partner faqPartner faq
Partner faq
David Moreno
 
Getting Started Right: The Ramp-Up to Success for Healthcare Professionals
Getting Started Right: The Ramp-Up to Success for Healthcare ProfessionalsGetting Started Right: The Ramp-Up to Success for Healthcare Professionals
Getting Started Right: The Ramp-Up to Success for Healthcare Professionals
Smart ERP Solutions, Inc.
 
Ankabut presentation Mobile Learning in Higher Education
Ankabut presentation Mobile Learning in Higher EducationAnkabut presentation Mobile Learning in Higher Education
Ankabut presentation Mobile Learning in Higher Education
Khalid Tariq
 
Banner - The Backbone of HCT Unified Digital Campus
Banner - The Backbone of HCT Unified Digital CampusBanner - The Backbone of HCT Unified Digital Campus
Banner - The Backbone of HCT Unified Digital Campus
Khalid Tariq
 
Student Information Analytics
Student Information AnalyticsStudent Information Analytics
Student Information Analytics
Addvantum
 
Governance, Risk & Compliance SiG
Governance, Risk & Compliance SiGGovernance, Risk & Compliance SiG
Governance, Risk & Compliance SiG
Smart ERP Solutions, Inc.
 
Student Retention & Success Tools at HCT
Student Retention & Success Tools at HCTStudent Retention & Success Tools at HCT
Student Retention & Success Tools at HCT
Khalid Tariq
 
CAPP and Curriculum Management at HCT
CAPP and Curriculum Management at HCTCAPP and Curriculum Management at HCT
CAPP and Curriculum Management at HCT
Khalid Tariq
 
Secure and Scalable PeopleSoft--Sensitive and High Volume Deployment Case Stu...
Secure and Scalable PeopleSoft--Sensitive and High Volume Deployment Case Stu...Secure and Scalable PeopleSoft--Sensitive and High Volume Deployment Case Stu...
Secure and Scalable PeopleSoft--Sensitive and High Volume Deployment Case Stu...
Smart ERP Solutions, Inc.
 
Oracle Fusion Middleware Solution
Oracle Fusion Middleware SolutionOracle Fusion Middleware Solution
Oracle Fusion Middleware Solution
Addvantum
 
Majlis 2013 25 mar13 -02
Majlis 2013 25 mar13 -02Majlis 2013 25 mar13 -02
Majlis 2013 25 mar13 -02
Khalid Tariq
 
Student Support Services on Banner Self-Service
Student Support Services on Banner Self-ServiceStudent Support Services on Banner Self-Service
Student Support Services on Banner Self-Service
Khalid Tariq
 
SunGard Higher Education Commons and Community Source Overview
SunGard Higher Education Commons and Community Source OverviewSunGard Higher Education Commons and Community Source Overview
SunGard Higher Education Commons and Community Source Overview
Khalid Tariq
 
Employee Onboarding Processes for Nurses/Physicians: Automation is Key
Employee Onboarding Processes for Nurses/Physicians: Automation is KeyEmployee Onboarding Processes for Nurses/Physicians: Automation is Key
Employee Onboarding Processes for Nurses/Physicians: Automation is Key
Smart ERP Solutions, Inc.
 
Case Study- KSAU
Case Study- KSAUCase Study- KSAU
Case Study- KSAU
Addvantum
 
HCT and SunGard HE Community Source Initiative
HCT and SunGard HE Community Source InitiativeHCT and SunGard HE Community Source Initiative
HCT and SunGard HE Community Source Initiative
Khalid Tariq
 
The Next Generation of HCT's Mobile App
The Next Generation of HCT's Mobile AppThe Next Generation of HCT's Mobile App
The Next Generation of HCT's Mobile App
Khalid Tariq
 
Oracle Cloud Applications
Oracle Cloud ApplicationsOracle Cloud Applications
Oracle Cloud Applications
Addvantum
 
Leveraging PeopleSoft Cloud Features in Your Environments
Leveraging PeopleSoft Cloud Features in Your Environments Leveraging PeopleSoft Cloud Features in Your Environments
Leveraging PeopleSoft Cloud Features in Your Environments
Smart ERP Solutions, Inc.
 
Oracle Applications
Oracle ApplicationsOracle Applications
Oracle Applications
Addvantum
 
Case study- University of Dammam
Case study- University of DammamCase study- University of Dammam
Case study- University of Dammam
Addvantum
 
Banner Advancement at Higher Colleges of Technology
Banner Advancement at Higher Colleges of TechnologyBanner Advancement at Higher Colleges of Technology
Banner Advancement at Higher Colleges of Technology
Khalid Tariq
 
Case Study- Gasco
Case Study- Gasco Case Study- Gasco
Case Study- Gasco
Addvantum
 
PeopleSoft Campus Solutions
PeopleSoft Campus SolutionsPeopleSoft Campus Solutions
PeopleSoft Campus Solutions
Addvantum
 
PeopleSoft SCM SIG
PeopleSoft SCM SIGPeopleSoft SCM SIG
PeopleSoft SCM SIG
Smart ERP Solutions, Inc.
 
Extending the Admin UI: Proactively Preventing Poor BPRA Load/Refresh Perform...
Extending the Admin UI: Proactively Preventing Poor BPRA Load/Refresh Perform...Extending the Admin UI: Proactively Preventing Poor BPRA Load/Refresh Perform...
Extending the Admin UI: Proactively Preventing Poor BPRA Load/Refresh Perform...
Bryan L. Mack
 
Banner 8 Upgrade at Higher Colleges of Technology
Banner 8 Upgrade at Higher Colleges of TechnologyBanner 8 Upgrade at Higher Colleges of Technology
Banner 8 Upgrade at Higher Colleges of Technology
Khalid Tariq
 
Ch # 11
Ch # 11Ch # 11
Ch # 11
MuhammadRobeel3
 
Introduction to Salesforcedotcom
Introduction to SalesforcedotcomIntroduction to Salesforcedotcom
Introduction to Salesforcedotcom
Edureka!
 
Lavigne bsdmag march12
Lavigne bsdmag march12Lavigne bsdmag march12
Lavigne bsdmag march12
Dru Lavigne
 

More Related Content

Viewers also liked

Majlis 2013 25 mar13 -02
Majlis 2013 25 mar13 -02Majlis 2013 25 mar13 -02
Majlis 2013 25 mar13 -02
Khalid Tariq
 
Student Support Services on Banner Self-Service
Student Support Services on Banner Self-ServiceStudent Support Services on Banner Self-Service
Student Support Services on Banner Self-Service
Khalid Tariq
 
SunGard Higher Education Commons and Community Source Overview
SunGard Higher Education Commons and Community Source OverviewSunGard Higher Education Commons and Community Source Overview
SunGard Higher Education Commons and Community Source Overview
Khalid Tariq
 
HCT and SunGard HE Community Source Initiative
HCT and SunGard HE Community Source InitiativeHCT and SunGard HE Community Source Initiative
HCT and SunGard HE Community Source Initiative
Khalid Tariq
 
Banner Advancement at Higher Colleges of Technology
Banner Advancement at Higher Colleges of TechnologyBanner Advancement at Higher Colleges of Technology
Banner Advancement at Higher Colleges of Technology
Khalid Tariq
 
Banner 8 Upgrade at Higher Colleges of Technology
Banner 8 Upgrade at Higher Colleges of TechnologyBanner 8 Upgrade at Higher Colleges of Technology
Banner 8 Upgrade at Higher Colleges of Technology
Khalid Tariq
 

Viewers also liked (19)

Secure and Scalable PeopleSoft--Sensitive and High Volume Deployment Case Stu...
Secure and Scalable PeopleSoft--Sensitive and High Volume Deployment Case Stu...Secure and Scalable PeopleSoft--Sensitive and High Volume Deployment Case Stu...
Secure and Scalable PeopleSoft--Sensitive and High Volume Deployment Case Stu...
 
Oracle Fusion Middleware Solution
Oracle Fusion Middleware SolutionOracle Fusion Middleware Solution
Oracle Fusion Middleware Solution
 
Majlis 2013 25 mar13 -02
Majlis 2013 25 mar13 -02Majlis 2013 25 mar13 -02
Majlis 2013 25 mar13 -02
 
Student Support Services on Banner Self-Service
Student Support Services on Banner Self-ServiceStudent Support Services on Banner Self-Service
Student Support Services on Banner Self-Service
 
SunGard Higher Education Commons and Community Source Overview
SunGard Higher Education Commons and Community Source OverviewSunGard Higher Education Commons and Community Source Overview
SunGard Higher Education Commons and Community Source Overview
 
Employee Onboarding Processes for Nurses/Physicians: Automation is Key
Employee Onboarding Processes for Nurses/Physicians: Automation is KeyEmployee Onboarding Processes for Nurses/Physicians: Automation is Key
Employee Onboarding Processes for Nurses/Physicians: Automation is Key
 
Case Study- KSAU
Case Study- KSAUCase Study- KSAU
Case Study- KSAU
 
HCT and SunGard HE Community Source Initiative
HCT and SunGard HE Community Source InitiativeHCT and SunGard HE Community Source Initiative
HCT and SunGard HE Community Source Initiative
 
The Next Generation of HCT's Mobile App
The Next Generation of HCT's Mobile AppThe Next Generation of HCT's Mobile App
The Next Generation of HCT's Mobile App
 
Oracle Cloud Applications
Oracle Cloud ApplicationsOracle Cloud Applications
Oracle Cloud Applications
 
Leveraging PeopleSoft Cloud Features in Your Environments
Leveraging PeopleSoft Cloud Features in Your Environments Leveraging PeopleSoft Cloud Features in Your Environments
Leveraging PeopleSoft Cloud Features in Your Environments
 
Oracle Applications
Oracle ApplicationsOracle Applications
Oracle Applications
 
Case study- University of Dammam
Case study- University of DammamCase study- University of Dammam
Case study- University of Dammam
 
Banner Advancement at Higher Colleges of Technology
Banner Advancement at Higher Colleges of TechnologyBanner Advancement at Higher Colleges of Technology
Banner Advancement at Higher Colleges of Technology
 
Case Study- Gasco
Case Study- Gasco Case Study- Gasco
Case Study- Gasco
 
PeopleSoft Campus Solutions
PeopleSoft Campus SolutionsPeopleSoft Campus Solutions
PeopleSoft Campus Solutions
 
PeopleSoft SCM SIG
PeopleSoft SCM SIGPeopleSoft SCM SIG
PeopleSoft SCM SIG
 
Extending the Admin UI: Proactively Preventing Poor BPRA Load/Refresh Perform...
Extending the Admin UI: Proactively Preventing Poor BPRA Load/Refresh Perform...Extending the Admin UI: Proactively Preventing Poor BPRA Load/Refresh Perform...
Extending the Admin UI: Proactively Preventing Poor BPRA Load/Refresh Perform...
 
Banner 8 Upgrade at Higher Colleges of Technology
Banner 8 Upgrade at Higher Colleges of TechnologyBanner 8 Upgrade at Higher Colleges of Technology
Banner 8 Upgrade at Higher Colleges of Technology
 

Similar to Fine Grain Access Control for Admission & Graduation

Similar to Fine Grain Access Control for Admission & Graduation (20)

Ch # 11
Ch # 11Ch # 11
Ch # 11
 
Introduction to Salesforcedotcom
Introduction to SalesforcedotcomIntroduction to Salesforcedotcom
Introduction to Salesforcedotcom
 
Lavigne bsdmag march12
Lavigne bsdmag march12Lavigne bsdmag march12
Lavigne bsdmag march12
 
Implementing SunGard Banner Voice Response
Implementing SunGard Banner Voice ResponseImplementing SunGard Banner Voice Response
Implementing SunGard Banner Voice Response
 
4351604.pdf
4351604.pdf4351604.pdf
4351604.pdf
 
Sdlc tutorial
Sdlc tutorialSdlc tutorial
Sdlc tutorial
 
Sdlc tutorial
Sdlc tutorialSdlc tutorial
Sdlc tutorial
 
Full Resolt Report
Full Resolt ReportFull Resolt Report
Full Resolt Report
 
Informatica dvo training
Informatica dvo training Informatica dvo training
Informatica dvo training
 
Registration System for Training Program in STC
Registration System for Training Program in STCRegistration System for Training Program in STC
Registration System for Training Program in STC
 
Introduction to Salesforcedotcom
Introduction to SalesforcedotcomIntroduction to Salesforcedotcom
Introduction to Salesforcedotcom
 
HPALM ACCCESS GUIDE_12.5.pptx
HPALM ACCCESS GUIDE_12.5.pptxHPALM ACCCESS GUIDE_12.5.pptx
HPALM ACCCESS GUIDE_12.5.pptx
 
CIS 339 Entire Course NEW
CIS 339 Entire Course NEWCIS 339 Entire Course NEW
CIS 339 Entire Course NEW
 
Principles of MVC for Rails Developers
Principles of MVC for Rails DevelopersPrinciples of MVC for Rails Developers
Principles of MVC for Rails Developers
 
Refactoring legacy code: step-by-step examples
Refactoring legacy code: step-by-step examplesRefactoring legacy code: step-by-step examples
Refactoring legacy code: step-by-step examples
 
rip 1.pdf
rip 1.pdfrip 1.pdf
rip 1.pdf
 
Internship-Report-sample-6.pdf
Internship-Report-sample-6.pdfInternship-Report-sample-6.pdf
Internship-Report-sample-6.pdf
 
Internship-Report-sample-6 (1).pdf
Internship-Report-sample-6 (1).pdfInternship-Report-sample-6 (1).pdf
Internship-Report-sample-6 (1).pdf
 
Cs internship report file 1.pdf
Cs internship report file 1.pdfCs internship report file 1.pdf
Cs internship report file 1.pdf
 
Its requirements worksheet for scoping and sizing v2.0
Its requirements worksheet for scoping and sizing v2.0Its requirements worksheet for scoping and sizing v2.0
Its requirements worksheet for scoping and sizing v2.0
 

More from Khalid Tariq

Scheduling Using SyllabusPlus At Higher Colleges of Technology
Scheduling Using SyllabusPlus At Higher Colleges of Technology Scheduling Using SyllabusPlus At Higher Colleges of Technology
Scheduling Using SyllabusPlus At Higher Colleges of Technology
Khalid Tariq
 
A Case Study of Banner @ HCT
A Case Study of Banner @ HCTA Case Study of Banner @ HCT
A Case Study of Banner @ HCT
Khalid Tariq
 
Banner Enabled Enterprise Applications Ecosystem at Hct - Ankabut Presentation
Banner Enabled Enterprise Applications Ecosystem at Hct - Ankabut PresentationBanner Enabled Enterprise Applications Ecosystem at Hct - Ankabut Presentation
Banner Enabled Enterprise Applications Ecosystem at Hct - Ankabut Presentation
Khalid Tariq
 
Ellucian Case Study for Oracle Exadata
Ellucian Case Study for Oracle ExadataEllucian Case Study for Oracle Exadata
Ellucian Case Study for Oracle Exadata
Khalid Tariq
 
Hct image now case study
Hct image now case studyHct image now case study
Hct image now case study
Khalid Tariq
 
Implementation of Oracle ExaData and OFM 11g with Banner in HCT
Implementation of Oracle ExaData and OFM 11g with Banner in HCTImplementation of Oracle ExaData and OFM 11g with Banner in HCT
Implementation of Oracle ExaData and OFM 11g with Banner in HCT
Khalid Tariq
 
Student Key Performance Indicators (KPIs) at Higher Colleges of Technology
Student Key Performance Indicators (KPIs) at Higher Colleges of TechnologyStudent Key Performance Indicators (KPIs) at Higher Colleges of Technology
Student Key Performance Indicators (KPIs) at Higher Colleges of Technology
Khalid Tariq
 
Oracle Discoverer Reports via BSS
Oracle Discoverer Reports via BSSOracle Discoverer Reports via BSS
Oracle Discoverer Reports via BSS
Khalid Tariq
 
Banner 8 Upgrade at Higher Colleges of Technology
Banner 8 Upgrade at Higher Colleges of TechnologyBanner 8 Upgrade at Higher Colleges of Technology
Banner 8 Upgrade at Higher Colleges of Technology
Khalid Tariq
 

More from Khalid Tariq (10)

Scheduling Using SyllabusPlus At Higher Colleges of Technology
Scheduling Using SyllabusPlus At Higher Colleges of Technology Scheduling Using SyllabusPlus At Higher Colleges of Technology
Scheduling Using SyllabusPlus At Higher Colleges of Technology
 
A Case Study of Banner @ HCT
A Case Study of Banner @ HCTA Case Study of Banner @ HCT
A Case Study of Banner @ HCT
 
Banner Enabled Enterprise Applications Ecosystem at Hct - Ankabut Presentation
Banner Enabled Enterprise Applications Ecosystem at Hct - Ankabut PresentationBanner Enabled Enterprise Applications Ecosystem at Hct - Ankabut Presentation
Banner Enabled Enterprise Applications Ecosystem at Hct - Ankabut Presentation
 
Ellucian Case Study for Oracle Exadata
Ellucian Case Study for Oracle ExadataEllucian Case Study for Oracle Exadata
Ellucian Case Study for Oracle Exadata
 
Vovici case study
Vovici case studyVovici case study
Vovici case study
 
Hct image now case study
Hct image now case studyHct image now case study
Hct image now case study
 
Implementation of Oracle ExaData and OFM 11g with Banner in HCT
Implementation of Oracle ExaData and OFM 11g with Banner in HCTImplementation of Oracle ExaData and OFM 11g with Banner in HCT
Implementation of Oracle ExaData and OFM 11g with Banner in HCT
 
Student Key Performance Indicators (KPIs) at Higher Colleges of Technology
Student Key Performance Indicators (KPIs) at Higher Colleges of TechnologyStudent Key Performance Indicators (KPIs) at Higher Colleges of Technology
Student Key Performance Indicators (KPIs) at Higher Colleges of Technology
 
Oracle Discoverer Reports via BSS
Oracle Discoverer Reports via BSSOracle Discoverer Reports via BSS
Oracle Discoverer Reports via BSS
 
Banner 8 Upgrade at Higher Colleges of Technology
Banner 8 Upgrade at Higher Colleges of TechnologyBanner 8 Upgrade at Higher Colleges of Technology
Banner 8 Upgrade at Higher Colleges of Technology
 

Recently uploaded

👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
rajveerescorts2022
 
VVVIP Call Girls In Greater Kailash ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
VVVIP Call Girls In Greater Kailash ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...VVVIP Call Girls In Greater Kailash ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
VVVIP Call Girls In Greater Kailash ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
Call Girls In Delhi Whatsup 9873940964 Enjoy Unlimited Pleasure
 
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
dlhescort
 
Call Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine ServiceCall Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine Service
ritikaroy0888
 
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
amitlee9823
 
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
Abortion pills in Kuwait Cytotec pills in Kuwait
 
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
amitlee9823
 
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service NoidaCall Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
dlhescort
 

Recently uploaded (20)

RSA Conference Exhibitor List 2024 - Exhibitors Data
RSA Conference Exhibitor List 2024 - Exhibitors DataRSA Conference Exhibitor List 2024 - Exhibitors Data
RSA Conference Exhibitor List 2024 - Exhibitors Data
 
Organizational Transformation Lead with Culture
Organizational Transformation Lead with CultureOrganizational Transformation Lead with Culture
Organizational Transformation Lead with Culture
 
A DAY IN THE LIFE OF A SALESMAN / WOMAN
A DAY IN THE LIFE OF A SALESMAN / WOMANA DAY IN THE LIFE OF A SALESMAN / WOMAN
A DAY IN THE LIFE OF A SALESMAN / WOMAN
 
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
 
Dr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdfDr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdf
 
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
 
Ensure the security of your HCL environment by applying the Zero Trust princi...
Ensure the security of your HCL environment by applying the Zero Trust princi...Ensure the security of your HCL environment by applying the Zero Trust princi...
Ensure the security of your HCL environment by applying the Zero Trust princi...
 
VVVIP Call Girls In Greater Kailash ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
VVVIP Call Girls In Greater Kailash ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...VVVIP Call Girls In Greater Kailash ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
VVVIP Call Girls In Greater Kailash ➡️ Delhi ➡️ 9999965857 🚀 No Advance 24HRS...
 
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
 
It will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 MayIt will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 May
 
Call Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine ServiceCall Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine Service
 
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
 
Mondelez State of Snacking and Future Trends 2023
Mondelez State of Snacking and Future Trends 2023Mondelez State of Snacking and Future Trends 2023
Mondelez State of Snacking and Future Trends 2023
 
Famous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st CenturyFamous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st Century
 
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
 
Business Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture conceptBusiness Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture concept
 
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
 
John Halpern sued for sexual assault.pdf
John Halpern sued for sexual assault.pdfJohn Halpern sued for sexual assault.pdf
John Halpern sued for sexual assault.pdf
 
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service NoidaCall Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
 
Falcon Invoice Discounting platform in india
Falcon Invoice Discounting platform in indiaFalcon Invoice Discounting platform in india
Falcon Invoice Discounting platform in india
 

Fine Grain Access Control for Admission & Graduation

  • 1. SUNGARD SUMMIT 2007 | sungardsummit.com 1 FGAC for Admission/Graduation Presented by: Khalid M. Tariq, Supervisor, Student Records Systems Higher Colleges of Technology March 20, 2007 Course ID 1311
  • 2. 2 Course ID 1311 Objectives By the end of this presentation, you will be able to: Differentiate between FGAC and VBS Learn about the basic steps to setup VBS Learn the needs of specific security in admissions and graduation modules at HCT Learn how FGAC was used to address the security needs Use ERDs while implementing FGAC
  • 3. 3 Course ID 1311 Agenda Introduction to HCT Basic Concepts in FGAC HCT implementation of FGAC for admissions HCT implementation of FGAC for graduation Lessons Learned and Summary
  • 4. SUNGARD SUMMIT 2007 | sungardsummit.com 4 Part # 1 Introduction to HCT
  • 5. 5 Course ID 1311 Highlights of HCT Located in United Arab Emirates First institution in entire Middle East to go live with Banner 7.x Started in 1988 with 239 students and four campuses Today: Enrollment: 16000+ Colleges: 15 STVCAMP Graduates: 22K+ Credentials awarded: 32K+ Programs offered in 2006: 80+ SMAPRLE Academic Divisions: 6 STVCOLL 3-4K students graduate every year
  • 6. 6 Course ID 1311 Where We Are?
  • 7. 7 Course ID 1311 Distributed Campuses with a Central System Registrar (2) (2) (2) (2) (3) (2) (2)
  • 8. 8 Course ID 1311 Central Banner Support for all 15 Campuses
  • 9. 9 Course ID 1311 NAPO Faculty EvaluationSystem HCTPORTAL Attendance Management System CMS Textbook Ordering & Tracking System Quality Assurance System HCT Unified Digital Campus SYLLABUS PLUS
  • 10. SUNGARD SUMMIT 2007 | sungardsummit.com 10 Part # 2 Basic Concepts in FGAC
  • 11. 11 Course ID 1311 FGAC vs. VBS Fine Grain Access Control (FGAC) is an Oracle feature Value Based Security (VBS) is one of the security features of Banner which is built on top of Oracle FGAC Other Banner features which are based on Oracle FGAC are PII (Personal Identifiable Information) and VPD (Virtual Private Directory) In this presentation I will be using both VBS and FGAC interchangeably
  • 12. 12 Course ID 1311 Basic Concepts of VBS You tell the Banner about enforcing some restrictions on some people when some tables are accessed in some way. Whenever anyone tries to access the table, Banner looks at whether the person is in the group of people associated with the restriction and enforces the restriction The beauty of VBS is that it works not only in Banner but also for any SQL access to the tables (TOAD, Access, Crystal Reports, etc.) For example, if you denied all people in admissions department to be able to viewpersonal address of a student (SPRADDR), they will not be able to see it in Banner, TOAD, Access, SQL+, Crystal Reports, etc.
  • 13. 13 Course ID 1311 Basic Concepts of VBS VBS predicate logic is defined by using SQL SHRDGMR_GRST_CODE = ‘AW’ Oracle appends any access to a particular table with the predicate logic SELECT COUNT(SHRDGMR_PIDM) FROM SHRDGMRWHERE SHRDGMR_GRST_CODE = ‘AW’
  • 14. 14 Course ID 1311 Step#1: Write down your Business Requirements Only counselors can view consular type comments entered in student comments form. Counselors can not delete or update comments entered in student comments form by other counselors.
  • 15. 15 Course ID 1311 Step#2: Refine your Business Requirements with Tables and Access Type Information UserGroup can not add, update, delete, view data from tables when condition1 is true Think of the driver table which will need restrictions Look at the ERD diagrams and decide whether other tables will also need to be restricted
  • 16. 16 Course ID 1311 Step#3: Create a Domain in GTVFDMN (Optional) VBS rules are written against a domain For every rule there is a base (driver table). For example; the driver table for graduation rule would be SHRDGMR There can be only one driver table for a domain If you need to have another driver table, you need to create another domain Domain Names are created in GTVFDMN
  • 17. 17 Course ID 1311 Step#3: Create a Domain in GTVFDMN (Optional) cont. Try to put your institution code in the beginning of domain so that domains created by you are easily searchable. For example, HCT_SB_GRADUATION1_VBS
  • 18. 18 Course ID 1311 Step#4: Define the Domain Driver Table in GORFDMN (Optional) In this form you map the driver table to your created domain For example, GB_SPRTELE_VBS domain is mapped to SPRTELE driver table
  • 19. 19 Course ID 1311 Step#5: Add Policy Tables in GORFDPL (Optional) Policy tables are tables which have a relationship with driver table (for example, driver table SARADAP, policy table, SARAPPD) If you want your restrictions to apply to the policy tables as well, you need to create joins of these policy tables to driver table in GORFDPL Even if you are not going to join driver table with any policy table, you need to include the domain and driver table in the form with empty SQL:
  • 20. 20 Course ID 1311 Step#6: Start Applying Policy to all Tables There is a script called “GFVBSADDPOL.SQL” included in General/Plus directory as part of your Banner upgrade/installation Login into your database as BANINST1 and run this script for each table (driver and policy)
  • 21. 21 Course ID 1311 Step#7: Define a FGAC Group in GTVFGAC A domain is defined for each driver table Under each domain can be different groups. One group is created for each type of restriction. For example, if you have restriction based on student level type in SGBSTDN, it will be one group and if you have another restriction based on student status in SGABSTDN, it will require a separate group creation
  • 22. 22 Course ID 1311 Step#8: Create a Business Profile in GTVFBPR
  • 23. 23 Course ID 1311 Step#9: Assign Users to Business Profile in GOAFBPR
  • 24. 24 Course ID 1311 Step#10: Define Predicate Rules in GOAFGAC
  • 25. 25 Course ID 1311 Step#11: Assign Users to a Predicate in GOAFGAC You can either assign individual users or a group (using business profiles) to a predicate and assign the different access levels.
  • 26. 26 Course ID 1311 Step#12: View the Policy in GOIFGAC
  • 27. SUNGARD SUMMIT 2007 | sungardsummit.com 27 Part # 3 HCT Implementation of FGAC for Admissions
  • 28. 28 Course ID 1311 The Need for Row-level Security in Admission HCT is a public institution fully sponsored by UAE government All students must be admitted via National Admissions and Placement Office (NAPO) Students are approved by HCT admission officers on NAPO website and then downloaded into Banner centrally The download process creates SPRIDEN (General Person), SARADAP (Admission Application), SARAPPD (Admission Decision) records
  • 29. 29 Course ID 1311 NAPO HCT Banner - NAPO Integration
  • 30. 30 Course ID 1311 The Need for Row-level Security in Admission (contd.) Until 2005, HCT used to only download accepted students from NAPO database Starting 2006, a decision was made to download all applicants data from NAPO database (including students who are not approved and waitlisted) This meant that campus admission officers can possibly go and directly approve students from Banner (SAADCRV) instead of NAPO We explored and decided to used VBS to tackle this security issue
  • 31. 31 Course ID 1311 HCT Admission Codes
  • 32. 32 Course ID 1311 Typical Accepted Student Admission Application
  • 33. 33 Course ID 1311 Typical Waitlisted Student Admission Application
  • 34. 34 Course ID 1311 Business Requirement for Admissions Module Prevent users from entering admission decision ‘01’ (Institution Accepted) if code ’02’ (Not Approved) or ’03’ (Waitlisted) is the already in the application This can not be achieved by simply preventing all campus admission officers from accessing SARADAP The solution: VBS in Banner
  • 35. 35 Course ID 1311 Step#1: Write down your Business Requirements Prevent users from entering admission decision ‘01’ (Institution Accepted) if code ’02’ (Not Approved) or ’03’ (Waitlisted) is the already in the application
  • 36. 36 Course ID 1311 Step#2: Refine your Business Requirements with Tables and Access Type Information CampuseUsers can not add decision code 01 into SAADCRV form (SARAPPD table) when decision code 02 or 03 are already entered Driver Table: SARAPPD
  • 37. 37 Course ID 1311 Step#3: Create a Domain in GTVFDMN (Optional) Checked if there is already a domain with Seed data with SARAPPD table. No Created a new domain: HCT_SB_ADMISISONS1_VBS
  • 38. 38 Course ID 1311 Step#4: Define the Domain Driver Table in GORFDMN (Optional)
  • 39. 39 Course ID 1311 Step#5: Add Policy Tables in GORFDPL (Optional) No policy tables are needed for SARAPPD. However the driver table SARAPPD should still be added here
  • 40. 40 Course ID 1311 Step#6: Start Applying Policy to all Tables Apply policies for SARAPPD by running gfvbsaddpol script
  • 41. 41 Course ID 1311 Step#7: Define a FGAC Group in GTVFGAC
  • 42. 42 Course ID 1311 Step#8: Create a Business Profile in GTVFBPR
  • 43. 43 Course ID 1311 Step#9: Assign Users to Business Profile in GOAFBPR
  • 44. 44 Course ID 1311 Step#10: Define Predicate Rules in GOAFGAC
  • 45. 45 Course ID 1311 Step#11: Assign Users to a Predicate in GOAFGAC
  • 46. 46 Course ID 1311 Step#12: View the Policy in GOIFGAC
  • 47. 47 Course ID 1311
  • 48. 48 Course ID 1311
  • 49. SUNGARD SUMMIT 2007 | sungardsummit.com 49 Part # 4 HCT Implementation of FGAC for Graduation
  • 50. 50 Course ID 1311 The Need for Row-level Security in Graduation HCT System Registrar is responsible for centrally awarding students This meant that no one has access to SHADEGR and SHAMDEG Graduating 4000 students used to take at least a month after Spring semester In 2005, the need to conduct a more robust and quick solution to graduation processing was defined As a result HCT went through a 180 degree change of graduation processing Most of the responsibilities of graduation were pushed back to the campuses but students were still to be awarded centrally by system registrar This meant campus staff to have access to SHADEGR and SHAMDEG
  • 51. 51 Course ID 1311 A Typical Use of SHADEGR by Campuses
  • 52. 52 Course ID 1311 Business Requirement for Graduation Module Prevent users from entering Degree/Graduation Status of “AW” (Awarded) but allow them to enter other codes such as “PG” (Potential Graduate) This can not be achieved by simply preventing all campus staff from accessing SHADEGR The solution: VBS in Banner
  • 53. 53 Course ID 1311 Step#1: Write down your Business Requirements Prevent users from entering Degree/Graduation Status of “AW” (Awarded) but allow them to enter other codes such as “PG” (Potential Graduate)
  • 54. 54 Course ID 1311 Step#2: Refine your Business Requirements with Tables and Access Type Information UserGroup can never add, update, delete, view “AW’’ from STVGRST and STVDEGS
  • 55. 55 Course ID 1311 Step#3: Create a Domain in GTVFDMN (Optional)
  • 56. 56 Course ID 1311 Step#4: Define the Domain Driver Table in GORFDMN (Optional)
  • 57. 57 Course ID 1311 Step#5: Add Policy Tables in GORFDPL (Optional)
  • 58. 58 Course ID 1311 Step#6: Start Applying Policy to all Tables Run “GFVBSADDPOL.SQL” for STVDEGS and STVGRST
  • 59. 59 Course ID 1311 Step#7: Define a FGAC Group in GTVFGAC
  • 60. 60 Course ID 1311 Step#8: Create a Business Profile in GTVFBPR
  • 61. 61 Course ID 1311 Step#9: Assign Users to Business Profile in GOAFBPR
  • 62. 62 Course ID 1311 Step#10: Define Predicate Rules in GOAFGAC
  • 63. 63 Course ID 1311 Step#11: Assign Users to a Predicate in GOAFGAC
  • 64. 64 Course ID 1311 Step#12: View the Policy in GOIFGAC
  • 65. 65 Course ID 1311 Issues with Graduation FGAC We thought by limiting users to select AW from STVDEGS and STVGRST, they won’t be able to award a student by mistake… We found out two students were unawarded (degree status changed from AW to SO) by mistake by campus users. It was obvious that the FGAC was not complete. We had to add restrictions on SHRDGMR table.
  • 66. 66 Course ID 1311 Step#1: Write down your Business Requirements Campus users can view degree records for students who have been “awarded” but they can not insert, delete or update any information on such records.
  • 67. 67 Course ID 1311 Step#2: Refine your Business Requirements with Tables and Access Type Information UserGroup can never add, update, delete any data from SHRDGMR, SHRDGIH, SHRDGDH, SHRDGCM if the student has a degree status of “AW”
  • 68. 68 Course ID 1311 Step#3: Create a Domain in GTVFDMN (Optional)
  • 69. 69 Course ID 1311 Step#4: Define the Domain Driver Table in GORFDMN (Optional)
  • 70. 70 Course ID 1311 Step#5: Add Policy Tables in GORFDPL (Optional)
  • 71. 71 Course ID 1311 Step#6: Start Applying Policy to all Tables Run “GFVBSADDPOL.SQL” for : SHRDGMR SHRDGDH SHRDGIH SHRDGCM
  • 72. 72 Course ID 1311 Step#7: Define a FGAC Group in GTVFGAC
  • 73. 73 Course ID 1311 Step#8: Create a Business Profile in GTVFBPR Already done. Use the AW_RESTRICTED profile created before.
  • 74. 74 Course ID 1311 Step#9: Assign Users to Business Profile in GOAFBPR Already done
  • 75. 75 Course ID 1311 Step#10: Define Predicate Rules in GOAFGAC
  • 76. 76 Course ID 1311 Step#11: Assign Users to a Predicate in GOAFGAC
  • 77. 77 Course ID 1311 Step#12: View the Policy in GOIFGAC
  • 78. SUNGARD SUMMIT 2007 | sungardsummit.com 78 Part # 5 Lessons Learned and Summary
  • 79. 79 Course ID 1311 Summary Use ERDs to find all tables you need to touch Always keep the profiles up-to-date Always check how predicates are placed on GOIFGAC Make sure the policies are checked as active in GOAFGAC and GORFDPL
  • 80. 80 Course ID 1311 Thank you and email if you need help! Khalid M. Tariq Supervisor, Student Record Systems Higher Colleges of Technology Abu Dhabi, UAE ktariq@hct.ac.ae http://www.hct.ac.ae Please complete the online class evaluation form Course ID 1311 SunGard, the SunGard logo, Banner, Campus Pipeline, Luminis, PowerCAMPUS, Matrix, and Plus are trademarks or registered trademarks of SunGard Data Systems Inc. or its subsidiaries in the U.S. and other countries. Third-party names and marks referenced herein are trademarks or registered trademarks of their respective owners. © 2006 SunGard. All rights reserved.