University of California, Riverside

Enterprise Access Control System



Announcements


July 23, 2009

Dear UCR Systems Access Administrators (SAAs),

Several years ago, UCR deployed an enterprise wide authorization and workflow engine known as EACS (the Enterprise Access Control System).  EACS allows departmental SAAs to securely control access to a wide variety of campus systems in a completely paperless, automated environment.  

In May a comprehensive upgrade to the Enterprise Access Control System (EACS) was deployed to improve SAAs' ability to manage user access.  At that time, information was disseminated concerning new SAA certification requirements that take effect beginning in FY 2009/2010.  A documented review of EACS user access privileges is now required quarterly and annually.  The quarterly review is required of all Accountability Structures; this review focuses on departmental user access to applications.  The quarterly review must be conducted by one SAA within the Accountability Structure. The annual review is required of every active SAA; this review encompasses the concepts of the quarterly review as well as a confirmation by each SAA acknowledging their responsibilities in granting access to systems to ensure the integrity and effectiveness of the unit's operations.

 The certification process within EACS will be deployed on July 23, 2009 for the first quarterly certification of FY 2009/2010 (from July 1st 2009 through September 30th 2009).  The certification process is performed online within EACS.  After appropriately reviewing the access privileges within your Accountability Structure(s), click the "SAA Certification" link within EACS and complete your certification(s) prior to September 30, 2009 (and by the end of each subsequent quarter for future certifications).  Failure to perform the required certifications will inhibit SAAs' ability to modify user access privileges.

More information about EACS and SAA certifications can be found at the EACS support website: http://cnc.ucr.edu/eacs/.  Questions about the EACS certification process may be sent to Marc Guerra at marc.guerra@ucr.edu.
 
Thanks in advance for your cooperation.

 Sincerely,
 

Bobbi McCracken
Asst. Vice Chancellor-Financail Servuces & Controller

 ===========================================

April 30, 2009

To: UCR Systems Access Administrators (SAAs)

Department Heads

Chief Financial an Administrative Officers (CFAOs)

Several years ago, UCR deployed an enterprise wide authorization and workflow engine known as EACS (the Enterprise Access Control System). EACS allows departmental System Access Administrators (SAAs) to securely control access to a wide variety of campus systems in a completely paperless, automated environment.

During the past few years, the number of campus business systems utilizing EACS has grown dramatically. Today, not only does the campus financial and purchasing systems utilize EACS, but authorization to use eFile (UCRs online Academic Personnel Merit and Promotion system), iTravel, the graduate student information system, and many other campus systems is granted via EACS. Moreover, many new business applications (four Human Resources systems alone) will come online in the years ahead and all these systems will also utilize EACS.

As a result, the Financial Systems Steering Committee (FSSC) has sponsored and is now ready to deploy a comprehensive EACS upgrade. The new version of EACS will be made available to the campus on May 15th and includes the following enhanced functionality: The ability to copy EACS profiles from one user to another; the capability to create EACS templates and assign groups of roles to users; the functionality to grant access to more than one user at a time; additionally, EACS now includes a wide variety of new grid / sorting / viewing controls to facilitate managing and viewing of user roles and privileges.

Importantly, as the number of campus systems utilizing EACS has grown, so too has the need for ongoing evaluation and review of EACS roles and authorizations. As a result, EACS will now require SAAs to certify (once per quarter) that all users within their Accountability Structures have (for example) received appropriate training, have an understanding of relevant policies, and need access to the systems in question in order to perform job related duties and requirements. The initial EACS Accountability Structure certification will be required during the first quarter of FY 2009/2010 (from July 1st 2009 through September 30th 2009).

The FSSC will host two open houses to demonstrate the aforementioned EACS improvements and upgrades. SAAs are encouraged to attend one of the two events to gain a better understanding of the enhanced EACS features and functionality as well as the requirements of the new certification system. The dates and times are as follows:

Wednesday May 6th from 9:00 to 10:30 in CHASS 1500
Tuesday May 12th from 9:00 to 10:30 in CHASS 1500

Please direct questions concerning these open houses to Amber Jones at amber.jones@ucr.edu. Any general questions about EACS may be sent to Marc Guerra at marc.guerra@ucr.edu.

Finally, the FSSC wishes to thanks the great number of campus departments and units that contributed to the specification development and testing of the enhanced version of EACS. Deployment of this system would not have been possible without their invaluable contributions.

Cordially,

Gretchen Bolar
Vice Chancellor Academic Planning and Budget
Chair, Financial Systems Steering Committee (FSSC)

More Information 

Footer