Chat now with support

Get Live Help
Complete Registration

Sign In

Request Pricing

Contact Sales

Identity Manager 9.2 - Epic Healthcare System Administration Guide

Table of Contents

Managing an Epic health care system

Architecture overview One Identity Manager users for managing an Epic health care system

Setting up synchronization with an Epic health care system

Setting up the synchronization server Creating a synchronization project for initial synchronization of an Epic health care system Displaying synchronization results Customizing synchronization configuration

Updating Schemas

Post-processing outstanding objects Help for the analysis of synchronization issues Deactivating synchronization

Basic Data for managing an Epic health care system

Account definition for Epic User Account

Creating Account Definitions - Master data for an Account Definition Creating manage level - Master data for manage level Master data for a manage level Creating mapping rules for IT operating data Entering IT operating data Modifying IT operating data Assigning account definition to identities Assigning account definitions to departments, cost centers, and locations Assigning an account definition to business roles Assigning account definitions to all identities Assigning account definitions directly to identities Assigning account definitions to system roles Adding account definitions in the IT Shop Assigning account definitions to a target system Deleting an account definition

Password policies for Epic User Account

Predefined password policies Applying password policies Editing password policies General master data for a password policy Policy settings Character classes for passwords on page Custom scripts for password requirements

Script for checking a password on page Script for generating a password Excluded list for passwords Checking Passwords

Initial password for Epic User Account Email notification about login data Target system managers Editing a server

Master data for jobserver Specifying server functions

Epic EMP template

Editing EMP template Assigning the EMP template to Epic User

Assigning EMP template directly to the Epic User Assigning EMP template to the department, cost center, and locations Assigning EMP template to the business roles Assigning EMP template to the IT shop

Deleting EMP template

Epic SubTemplate

Editing the Sub template Assigning the Sub template to Epic User

Assigning the Sub template directly to the Epic User Assigning SubTemplate to the department, cost center, and locations Assigning Sub template to the business roles Assigning SubTemplate to IT shop

Deleting the Sub template

Epic Connection

General Master Data for Epic Connection Assign Epic EMPTemplate Matrix Property Mapping Define Search criteria for Identity assignment View Epic Security Matrix for EMPTemplate Assign Epic SubTemplate Matrix Property Mapping View Epic Security Matrix for SubTemplate Configure settings for SubTemplate Index

Epic EMP User Accounts

Linking user account to identities Editing master data for user account

General master data for Epic User Account Demographic data for Epic User Account Password data for Epic User Account Template data for Epic User Account

Additional tasks for managing Epic User Account

Overview of Epic User Account Managing IdentityIDs for Epic User Account Managing External Identifiers for Epic User Account Managing Epic User Account Managers Managing Demographics for Epic User Account

Automatic assignments of persons to Emp user accounts

Editing search criteria for automatic identity assignment

Disabling Epic User Account Deleting and restoring Epic EMP user accounts Setting External User ID on Epic EMP user creation

Security Matrix

Security Matrix for EMP template

Configuring SecurityMatrix for EMPTemplate Importing SecurityMatrix for EMPTemplate

Importing the matrix using CSV import Synchronization Project Importing the matrix directly into One Identity Manager Table

Viewing the EMPTemplate Security Matrix Assignment of the EMPTemplate to Epic user accounts

Security Matrix for SubTemplate

Configuring SecurityMatrix for SubTemplate Importing SecurityMatrix for SubTemplate

Importing the matrix using CSV import Synchronization Project Importing the matrix directly into One Identity Manager Table

Viewing the SubTemplate Security Matrix Assignment of the SubTemplate to Epic user accounts

Customizing Security Matrix

Configuration parameters for managing Epic health care system Default project template for Epic

Assignment of the EMPTemplate to Epic user accounts

The Epic user account can inherit EMP Templates from security matrix based on the properties mapped between the Identity and the matrix, provided that the Is Template Update Disabled flag for the user account is set to false.

The assignments inherited by the user from the Security Matrix has an XOrigin set to Matrix.

The User account EMPTemplate assignments are updated in the following cases

An initial import of the data into the EPCMatrixEMPTemplate table.
Subsequent updated to the Security Matrix for EMPTemplate.
Changes to the property values of the Identity linked to the user account.
Change of the Identity liked to the user account.

NOTE: Assignment of applied and default EMPTemplate by Security Matrix is disabled by default. To enable it the configuration parameter AutoSetAppliedEMPTemplate must be enabled.

Security Matrix for SubTemplate

Security matrix for SubTemplate is a table that consists of SubTemplates grouped with one or more attributes of the Identity, which mostly consist of organizational attributes.

Configuring SecurityMatrix for SubTemplate

A mapping must be established between the Person Identity attributes and the SubTemplate security matrix attributes, in order to group the SubTemplate with one or more attributes of the Identity.

This section describes the steps to define such mappings in One Identity Manager.

To define the column mappings between the Person Identity and the Security Matrix for SubTemplate follow the below mentioned steps:

In One Identity Manager, select the appropriate Epic connection that has been created.
In the Tasks section, select the link Assign Epic SubTemplate Matrix property mapping.
Select the Person column and corresponding Security Matrix column from the respective drop downs for the mapping.
Save the mappings.

NOTE: The Epic SubTemplate security matrix has a maximum of ten Properties that can be mapped with the Person Identity. The security matrix will always apply.

Importing SecurityMatrix for SubTemplate

SubTemplates can be assigned automatically to an Epic user account via SecurityMatrix.

In order to achieve this, SeurityMatrix must be imported into One Identity Manager.

On subsequent changes to the security matrix the updates to the matrix must be imported in order to have the Epic user account to SubTemplate assignments updated.

The SeurityMatrix can be imported using these methods

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating

© 2024 One Identity LLC. ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center