Sentinel Help Center
  • Sentinel Overview
    • Dashboard
    • Environments
    • User Hub
    • Requests
    • Reports
  • Installation & Updates
    • Sentinel Shortcuts [From PS]
    • Sentinel VM Requirements
    • Host Server Setup RHEL/CentOS 7
    • Host Server Setup RHEL/CentOS 8
    • Host Server Setup RHEL/CentOS 9
    • Sentinel Server Update
    • Oracle Database Account
    • PostgreSQL Backups
  • Settings
    • Sentinel Accounts
    • Databases
    • System Settings
    • Single Sign-On
    • Access Request Settings
    • Role Groups
    • Role Approvers
    • Custom Forms
    • Sensitive Data Settings
    • Security Log
  • Security Administration
    • Menu Functions
    • Direct Access
    • Users
      • User Access Updates
      • User Profile Features
    • Roles
      • Role Updates
      • Role Features
    • Permission Lists
      • Permission List Updates
      • Permission List Features
    • Dynamic Security
    • Temporary Access
    • Fluid Security
    • Security Matrix
    • Compare Reports
  • Security Reports
    • Security Reports Setup
    • Page Analysis
    • User Access
    • Role Access
    • Permission List Access
    • Query Analysis
    • Compare Users
    • PeopleTools Access
    • Portal Menus
  • Audit Review
    • Audit Review Setup
    • Privileged Access
    • Sensitive Data
    • Segregation of Duties
    • Correction Access
    • Restricted Roles
    • Role Changes
    • Notifications
    • Manager Reports
  • Access Requests
    • Implementation Guide
    • Submit New Request
    • Review & Approve Requests
    • Workflows & Routing
    • Apply Changes
  • Resources
    • User Training Guide
    • Policies
      • Policy Overview
      • Data Privacy
      • Cloud Security
      • Software Development
      • Disaster Recovery
      • Service Level Agreement
      • Employees
Powered by GitBook
On this page
  1. Settings

Sentinel Accounts

Settings - Sentinel Accounts

PreviousSettingsNextDatabases

Last updated 1 year ago

There are two types of accounts in Sentinel: Admins and Non-admins.

  • Admins can access all PeopleSoft environments and Sentinel modules & submenus.

  • Non-admin users can only access the modules defined in their Security Profile for each PeopleSoft environment.

Security changes made in Sentinel and PeopleSoft are automatically synced after they occur. To differentiate between PeopleSoft and Sentinel updates, each update from Sentinel is prefixed by SNT_(User ID) in the PeopleSoft database.

Create A Sentinel Account

*A valid PeopleSoft UserID and Email Address are required to create a Sentinel account.

  1. Navigate to Settings - Sentinel Accounts.

  2. Click 'Add,' located at the top right.

  3. Search and select the user.

  4. Verify the PeopleSoft UserID, Email, and First & Last Name of the user.

  5. Click 'Create Account.'

  6. Once created, the new user will appear in the 'Users' tab.

  7. Select the user and click 'Promote to Admin' to grant administrative privileges or give access to specific environments by assigning a Security Profile.

Delete a Sentinel Account:

  1. Navigate to Settings - Sentinel Accounts.

  2. Select the user and click 'Delete Account.' *Audit logs will be retained, and any open Access Requests associated with the deleted user will be replaced with an 'Account Inactive' label.

Security Profiles

Security Profiles are used to manage access to Sentinel modules and submenus. Non-admin users can only access a PeopleSoft environment if given an Access Profile for the environment.

Sentinel includes delivered profiles that can be modified, or new profiles can be created.

'Default' Access Profiles

A 'Default Profile' is assigned to a user who registers for an account on the Login page (SSO). This profile only grants access to the Request module unless otherwise modified.

Create a New Security Profile:

  1. Navigate to Settings - Sentinel Accounts.

  2. Under the 'Security Profiles' tab, click 'Add.'

  3. Input a Profile Name and Description.

  4. Click 'Create.'

  5. Once created, check the boxes to specify which modules and submenus the profile will grant 'View' or 'Edit/Update' permissions. *Select 'X' to remove module access.

Non-admin users can only access a PeopleSoft environment if they've been assigned a profile for the environment.

Grant Non-Admin Users Access to Environments:

  1. Navigate to Settings - Sentinel Accounts.

  2. Search and select a user.

  3. Use the dropdown to assign a profile for each environment applicable.

  4. Save changes.

Non-admin users can be given access to individual Admin Menus (Settings).

Grant Non-Admin Users Access to Admin Menus:

  1. Navigate to Settings - Sentinel Accounts.

  2. Search and select a user.

  3. Under the 'Admin Menus' tab, check the boxes to specify which menus to grant 'View' or 'Edit' permissions.

  4. Save changes.

Non-admin users can be restricted access to view only specific Roles. This applies to the following pages in Sentinel:

  • [Environment] Security - Users - Edit Roles

  • [Environment] Security - Roles

  • Requests - Create New Request - Select Roles

Restrict Non-Admin Users' Access to View Roles:

  1. Navigate to Settings - Sentinel Accounts.

  2. Search and select a user.

  3. Under the 'Role Access' tab, check the box to grant All Access or restrict visibility to only the underlying Roles of a Role Group.

  4. Save changes.

Non-admin users can be restricted access to view only select PeopleSoft users. Visibility can be restricted by one or more fields: Business Unit, Department, Location, Company, or Region.

EXAMPLE 1 Business Unit = GBIBU Users will only see employees in 'Business Unit GBIBU.'

EXAMPLE 2 Business Unit = GBIBU Department = 13000 Users will only see employees in 'Department 13000' with 'Business Unit GBIBU.'

Restrict Non-Admin Users' Access to View Users:

  1. Navigate to Settings - Sentinel Accounts.

  2. Search and select a user.

  3. Under the 'User Access' tab, select the submenu of the desired field type.

  4. Search and select the corresponding field criteria. *Check the box 'Allow Users With No EMPLID' to permit access to view PeopleSoft user profiles without an EMPLID attached.

  5. Save changes.

Non-admin users can be restricted access to specific modules in Managers Reports.

Restrict Non-Admin Users' Access to Audit Modules:

  1. Navigate to Settings - Sentinel Accounts.

  2. Search and select a user.

  3. Under the 'Audit Modules' tab, check the boxes of desired modules to display.

  4. Save changes.