PeopleSoft Security User Authorization Audits
When performing a PeopleSoft security audit, reviewing what rights and privileges individual users have been granted for system and application security privileges (authorization) is one of the key deliverables. The following are several of the topics that Integrigy investigates during our PeopleSoft security configuration assessments - take a look today at your settings:
Review users with access to
- PeopleTools
- The SQR folder
- Process scheduler
- Security and other sensitive administration menus
- Security and other sensitive administration roles
- Web profiles
- PeopleSoft Administrator Role
- Correction mode
To check access to PeopleTools, use the following. If you need assistance with the other topics, let us know –
-- Access to PeopleTools
SELECT UNIQUE A.OPRID, A.OPRDEFNDESC, A.ACCTLOCK, B.ROLENAMEFROM SYSADM.PSOPRDEFN A, SYSADM.PSROLEUSER BWHERE A.OPRID = B.ROLEUSERAND upper(B.ROLENAME) ='PEOPLETOOLS'ORDER BY A.OPRID,B.ROLENAME;
If you have questions, please contact us at info@integrigy.com
Michael A. Miller, CISSP-ISSMP, CCSP