DOP Central Security is the point of contact for all aspects of centralized and decentralized SAP role-based security administration.
Security activities include:
- Support for decentralized agency security administration for all SAP systems (HRMS): HCM, BI, E-Recruiting, and HRMS Portal.
- Support for centralized statewide access.
- Troubleshooting SAP security issues.
Security Encryption Tool
DOP Security will encrypt user files distributed to the Agency Decentralized Administrators and Points of Contact (POC) with
CipherLock™ by Bokler Software Corp.
The CipherLock program is available by request from the DOP Security office. To request the program, please contact the DOP Service Center at 360.664.6400 or send e-mail at servicecenter@dop.wa.gov.
- Installation of CipherLock requires administrative permissions on the workstation. Copy the CipherLock file to the local workstation and install by double-clicking on the executable file. This will install the program and create an icon in the Program Menu and on the desktop.
- Use of CipherLock to decrypt (or encrypt) files does not require administrative permissions on the workstation.
- Access and complete the Basic Encryption Process contained in the program help files.
Security Administration
The Security Administration Handbook has been updated on July 22, 2009. View the Summary of Changes in the following table.
| Security Administration Documents |
Format
|
Date
|
| Summary of Changes July 2009 |
Word
|
---
|
07/22/09 |
| Security Admin. Handbook |
Word
|
PDF
|
07/21/09
|
| Security Changes for Launch B |
Word
|
PDF
|
12/10/08
|
| Checklist for UserID Account Maintenance |
Word
|
PDF
|
07/23/09
|
| HRMS Portal Passwords |
Word
|
PDF
|
03/17/09
|
HRMS Professional Roles for End Users
HRMS Professional end user roles are key to HRMS security and to agency business processes. User roles determine the infotypes (screens) that a user can access and/or update.
Using the HRMS Role Definition Handbook
The role Definition Handbook provides information about how the different HRMS Roles relate to an end user's access to system data and transactions. An end user's role also relates directly to the required training curriculum.
| HRMS Role Definition Handbooks |
Format
|
Date
|
| Centralized Roles (57 Pages) |
Word
|
PDF
|
01/25/06
|
| Decentralized Roles (120 pages) |
Word
|
PDF
|
07/28/09
|
| Release2 (E-Recruiting) Agency Roles Handbook |
Word
|
PDF
|
02/10/09
|
HRMS Security Standards
LoginID/UserID: Users may not have concurrent logins, but each user login may initiate up to six (6) sessions.
Password Requirements
- Passwords must have eight (8) characters containing at least one (1) alphabet letter, one (1) number [0-9] and one (1) special character. SAP security does not distinguish between upper and lower case alphabetic characters.
- Old passwords which do not meet current standards will be required to change at next system entry.
- Passwords must be changed every 90 days or they will expire.
- After three (3) failed login attempts the user's login ID will be locked and must be unlocked by the user's Security administrator.
- Passwords may be changed by the user only once per day.
- SAP remembers a user's last five (5) passwords and prevents them from being re-used by the user.
Timeouts: Logons will automatically timeout if left idle for more than 30 minutes.
Updated: 7/28/09