Chat now with support
Chat mit Support

Identity Manager 9.0 LTS - Epic Healthcare System Administration Guide

Managing an Epic health care system Setting up synchronization with an Epic health care system Basic Data for managing an Epic health care system Epic EMP template Epic SubTemplate Epic Connection Epic EMP User Accounts Security Matrix Configuration parameters for managing Epic health care system Default project template for Epic

Importing the matrix using CSV import Synchronization Project

The SecurityMatrix for EMPTemplate can be imported into One Identity Manager using a SecurityMatrix csv file.

The csv file is imported into One Identity Manager using a CSV synchronization project.

Setup Security Matrix Synchronization Project

This project provides a CSV synchronization workflow which imports the SecurityMatrixEMPTemplate into One Identity Manager.

EMPTemplate assignments are setup in the file named SecurityMatrixEMPTemplate.csv

SecurityMatrixEMPTemplate CSV file configuration

The names of the columns in this file are

  • Property01
  • Property02
  • Property03
  • Property04
  • Property05
  • Property06
  • Property07
  • Property08
  • Property09
  • Property10
  • EMPTemplateID
Details about the values in the columns in the EMPTemplate csv file

Enter the values mentioned in the following table in the corresponding columns of the csv file.

Table 31: Columns in the csv file
Columns in the csv file Values
Property01 to Property10

Full name of the One Identity Manager Organization or Business role.

NOTE: Property01 to Property10 represent the different possible One Identity Manager Built-in Organization or Business role or Identity Attributes like Title.

Out of box only one business role assignment is supported that is mapped to the value entered in UID_Org in the person table.

EMP Template

EMP Template External ID

NOTE: Property01 to Property10 represent the different possible One Identity Manager Built-in Organization or Business role or Identity Attributes like Title.

After the Security Matrix CSV files has been setup, the synchronization project can be created using the procedure below.

To create the synchronization project

  1. In the Synchronization Editor, create a new Synchronization Project using the CSV connector.
  2. Select the SecurityMatrixEMPTemplate csv file.

    NOTE: A sample CSV file can be found in the Miscellaneous folder under the EPC module.

  3. Set the value of the number of lines in header to 1.
  4. Select the EPCSecurityMatrix as the template and create the csv project.
  5. Update the project variable UID_EPCROOT with the UID of the EPCRoot object that has been created for Epic Synchronization project.
  6. The value can be obtained from the One Identity Manager Object Browser by navigating to the EPCRoot table.
  7. Save changes to database

Importing the matrix directly into One Identity Manager Table

The SecurityMatrix for EMPTemplate can be populated into the EPCMatrixEMPTemplate table using a custom solution implemented in the customer environment.

There could be scenarios where the customer would prefer alternate sources for security matrix import other than a csv file, for example a direct interface from the Epic Database or a custom application based on their implementation.

Viewing the EMPTemplate Security Matrix

The Security Matrix for EMPTemplate once imported could be viewed using One Identity Manager.

To view the imported matrix

  1. In One Identity Manager and navigate to the Epic connection that was created.
  2. In the Task menu, click View Security Matrix for EMPTemplate.

    A grid is displayed with the EMPTemplate and the corresponding Property values for Identity.

Assignment of the EMPTemplate to Epic user accounts

The Epic user account can inherit EMP Templates from security matrix based on the properties mapped between the Identity and the matrix, provided that the Is Template Update Disabled flag for the user account is set to false.

The assignments inherited by the user from the Security Matrix has an XOrigin set to Matrix.

The User account EMPTemplate assignments are updated in the following cases

  1. An initial import of the data into the EPCMatrixEMPTemplate table.
  2. Subsequent updated to the Security Matrix for EMPTemplate.
  3. Changes to the property values of the Identity linked to the user account.
  4. Change of the Identity liked to the user account.

NOTE: Assignment of applied and default EMPTemplate by Security Matrix is disabled by default. To enable it the configuration parameter AutoSetAppliedEMPTemplate must be enabled.

Verwandte Dokumente

The document was helpful.

Bewertung auswählen

I easily found the information I needed.

Bewertung auswählen