The purpose of this briefing is to remind site administrators to perform monthly reviews of the RACF Authorization and SAP Roles Reports
M-DCPS utilizes a decentralized security model which requires a site administrator to determine appropriate authorizations and/or roles for their respective staff at his/her discretion. Access to RACF-related authorizations is controlled via Quad-A or the legacy CICS AAAA application, while SAP roles are controlled via the ERP Quad-A+ module.
Pursuant to Section 4.1.5 (Periodic Review of Systems Access by Site Supervisors) of the Network Security Standards, all site supervisors are responsible for performing monthly reviews of both the RACF Authorizations and SAP Roles Reports, and retaining these reports for a period of 12 months.
Individuals requiring additional assistance or who are experiencing technical issues in accessing or generating either report should submit a HEAT ticket via HSS (select “ASK ITS A QUESTION”).