II 10. Securing Mass Change Access

A.     Introduction to Mass Change

Mass change is a SQL generator tool that can be used to perform high-volume data changes on application tables or perform transactions that are not available through regular PeopleSoft pages. Updates through Mass Changes do not contain any processing logic that might be available on the actual PeopleSoft component, and should be granted very restrictively.

There are three components of mass change:

  1. Mass change types: Mass change type is a definition of the SQL statements, records involved and sequence of execution for the SQL statements.
  2. Mass Change templates: Mass change templates are built upon Mass Change Types. Templates define which fields can be used in the “where” clause and which fields can be defaulted to a specific value in the mass change SQL statements.
  3. Mass change definitions: Mass change definitions utilize the Mass Change Templates to specify the conditions and values for each of the fields available in the template and generate the SQL statements.

For the users to be able to execute mass changes, they need access to the appropriate page from which the mass change definitions can be executed, as well as, have access to the specific mass change template that is used for the mass change definition being run. Secure the individual pages used for various components of mass change using the permission list-page access. Mass Change Types and Mass Change Templates pages should be restricted to IT Support team as they require high level understanding of SQL and data structure of the underlying records for PeopleSoft components. Mass change definitions page should be granted to the business super users who are authorized to make large data changes.

 

B.     Assign Mass Change access to Permission List (PS_ MC_OPR_SECURITY):

  1. Navigate to Permission Lists page and open the permission list you want to assign the mass change templates access to.
  2. Once in the Permission list, go to the Mass Change tab.
  3. In the Mass Change grid, enter the name of the Mass Change Template ID and hit tab.
  4. Save the permission list.

 

29

Figure III‑28 Permission List – Mass Change

 

** Access to mass change is granted to the users by the Primary Permission List on the user profile and not through the roles.

** Enable the “OK to Execute Online” check box on the permission list for the users who should be able to execute the mass change definitions via online pages.

** OPRID field on PS_MC_OPR_SECURITY table actually refers to the permission lists not user ids.