Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Value of uhReleasedGroupingDescriptionAvailable Since

hawaii.edu:store:uhims:general:mfa-enabled

Person has registered for multi-factor authentication (MFA) and is not in Duo bypass mode. 

If CAS returns this value after a successful authentication, it can be surmised that the person has passed the Duo prompts in the UH Login screen. If you require MFA and it didn't happen, your application can redirect the user to our generic MFA-required page (after making user sure the user is logged out of your application)


(warning) Departmental usernames are currently not supported!

Non-personal usernames who are registered and enabled for Duo will not have this uhReleasedGrouping value.  This might change in the future, but as of this writing, UH Groupings was designed with people as grouping members (as opposed to usernames or email addresses). Departmental usernames are often used by multiple individuals, so their ambiguity seems counter-productive to authentication, authorization and MFA.

9/19/2018

hawaii.edu:store:uhims:general:gcn-compliant

Person has a current acknowledgement of the University of Hawaii General Confidentiality Notice (GCN). See https://www.hawaii.edu/its/acer/

GCN compliance period:

  • 1 year, from Oct 1 to Sep 30
  • can be renewed 1 month in advance

For example,

  • person renewing on 9/1/2020 will be compliant until 9/30/2021.
    • 9/1/2020 is in the 10/1/2019-9/30/2020  period, so person is compliant for the 30 days left for the current period.
    • 9/1/2020 is within the 1-month renewal window for the upcoming 10/1/2020-9/30/2021 period, so person is also compliant for that period.
  • A person renewing on 10/2/2020 will be compliant through 9/30/2021.
    • 10/2/2020 is in the 10/1/2020-9/30/2021 period and not within any renewal window.

(warning) Updated on a nightly basis only.

1/29/2019

hawaii.edu:store:uhims:general:isat-compliant

Person has a current certification for the UH Information Security Awareness Training Certification (ISAT). See https://www.hawaii.edu/its/acer/

ISAT compliance period:

  • 2 years, from Oct 1 to Sep 30
  • can be renewed 2 months in advance

For example,

  • person renewing on 8/1/2020 will be compliant until 9/30/2022.
    • 8/1/2020 is in the 10/1/2018-9/30/2020  period, so person is compliant for the 30 days left for the current period.
    • 8/1/2020 is within the 2-month renewal window for the upcoming 10/1/2020-9/30/2022 period, so person is also compliant for that period.
  • A person renewing on 10/2/2020 will be compliant through 9/30/2022.
    • 10/2/2020 is in the 10/1/2020-9/30/2022 period and not within any renewal window.

(warning) Updated on a nightly basis only.

1/29/2019

mfa-enrolled

(use above hawaii.edu:store:uhims:general:mfa-enabled value instead)

Person has registered for multi-factor authentication (MFA).  Does not account for Duo bypass mode.

(warning) This will be removed on February 5, 2019, after everyone has transitioned to hawaii.edu:store:uhims:general:mfa-enabled.

1/22/2018
under-age-of-majority

(warning) No longer available for general use.  Will be removed on February 5, 2019.

Contact its-iam-help@lists.hawaii.edu if you need to build a grouping with this information.

1/31/2018

hawaii.edu:store:<dataOrigin>:aff:<org>:<roleOrRoleCombinations>

(warning) Tentative

Provides more granularity than the generic roles of faculty, staff and student.


...