Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

The following uhReleasedGrouping values are made available by ITS as an added convenience.  Developers may find it useful to check for these values as part of their application authorization step.

Curated Groupings

Our UH Group Store has a wealth of groups that would be useful to UH applications.  ITS will work with the Data Governance Program to curate a collection of groups from the UH Group Store and make them available via uhReleasedGrouping.

Having a curated collection of groupings in uhReleasedGrouping means your application can check against a lot of official data without having to create a grouping. Of course, if you expect to manage exceptions, you should create your own grouping (usually with some of the groups in our curated collection) and release it.

Remember that uhReleasedGrouping data is only for official use within the UH community and not for release to external parties, except under the terms of a written memorandum of agreement or contract.

...

hawaii.edu:store:uhims:general:mfa-enabled

Person has registered for multi-factor authentication (MFA) and is not in Duo bypass mode. 

If CAS returns this value after a successful authentication, it can be surmised that the person has passed the Duo prompts in the UH Login screen. If you require MFA and it didn't happen, your application can redirect the user to our generic MFA-required page.

(warning) Departmental usernames are currently not supported!

Non-personal usernames who are registered and enabled for Duo will not have this uhReleasedGrouping value.  This might change in the future, but as of this writing, UH Groupings was designed with people as grouping members (as opposed to usernames or email addresses). Departmental usernames are often used by multiple individuals, so their ambiguity seems counter-productive to authentication, authorization and MFA.

(info) Updated every 2 minutes

...

9/19/2018

...

Person has a current acknowledgement of the University of Hawaii General Confidentiality Notice (GCN). See https://www.hawaii.edu/its/acer/

Compliance Period:

  • 1 year, from Oct 1 to Sep 30
  • can be renewed 1 month in advance

For example,

  • person renewing on 9/1/2020 will be compliant until 9/30/2021.
    • 9/1/2020 is in the 10/1/2019-9/30/2020  period, so person is compliant for the 30 days left for the current period.
    • 9/1/2020 is within the 1-month renewal window for the upcoming 10/1/2020-9/30/2021 period, so person is also compliant for that period.
  • A person renewing on 10/2/2020 will be compliant through 9/30/2021.
    • 10/2/2020 is in the 10/1/2020-9/30/2021 period and not within any renewal window.

(warning) Updated on a nightly basis only.

...

hawaii.edu:store:uhims:general:isat-compliant

...

Person has a current certification for the UH Information Security Awareness Training Certification (ISAT). See https://www.hawaii.edu/its/acer/

Compliance Period:

  • 2 years, from Oct 1 to Sep 30
  • can be renewed 2 months in advance

For example,

  • person renewing on 8/1/2020 will be compliant until 9/30/2022.
    • 8/1/2020 is in the 10/1/2018-9/30/2020  period, so person is compliant for the 30 days left for the current period.
    • 8/1/2020 is within the 2-month renewal window for the upcoming 10/1/2020-9/30/2022 period, so person is also compliant for that period.
  • A person renewing on 10/2/2020 will be compliant through 9/30/2022.
    • 10/2/2020 is in the 10/1/2020-9/30/2022 period and not within any renewal window.

(warning) Updated on a nightly basis only.

...

Those who are currently GCN-compliant and can renew for the upcoming GCN compliance period.  Useful for sending reminders to those who should renew their GCN compliance.

This group won't have any members except during the renewal window period of Sep 1st to Sep 30 inclusive.

...

hawaii.edu:store:uhims:general:isat-compliant-renew

...

Those who are currently ISAT-compliant and can renew for the upcoming ISAT compliance period.  Useful for sending reminders to those who should renew their ISAT compliance.

This group won't have any members except during the renewal window period of Aug 1st to Sep 30 inclusive for even-numbered years.

...

People who are considered faculty/staff.  PeopleSoft and RCUH are the main sources of this information, but it also takes into account faculty data in Banner and staff data (including postdocs) in UHIMS.

This is useful for websites that need to restrict content to faculty/staff and don't expect to make exceptions to that rule.

...

This content has moved to a new location:

You will need Confluence access. If you do not have access, contact IAM for assistance and we will email a pdf of the content. This is a result of no longer having an unlimited Confluence license.

Contact: <its-iam-help@lists.hawaii.edu>