立即与支持人员聊天
与支持团队交流

Identity Manager 9.2.1 - Epic Healthcare System Administration Guide

Managing an Epic health care system Setting up synchronization with an Epic health care system Basic Data for managing an Epic health care system Epic Connection Epic EMP User Accounts Epic EMP template Epic EMP subtemplate Epic SER Items Epic SER Provider accounts Epic SER Blueprints Epic SER Template Security Matrix Configuration parameters for managing Epic health care system Default project template for Epic

Epic SER categories

Many Epic SER Provider item's (fields or attributes) values could be a pre-defined limited set of values, and these are called the category list. The default out of box configuration for Epic SER Provider item's is NOT a category list. Before running the first synchronization, review each of the SER Provider item and mark them as a defined list of values as explained in the following steps.

  1. Open the One Identity Manager Designer.

  2. Navigate to One Identity Manager Schema. Select Tables and click on Type: Tables.

  3. Navigate to EPCSERProvider Table definition.

  4. Review each of the EPCSERPRovider table columns. Select the column that needs to be pre-defined limited set of values and mark them as defined list of values under value settings.

  5. Commit the changes to the database.

Once the Epic SER Provider column has been marked as a defined list of values, the category list could be optionally manually set.

NOTE: Marking a SERProvider column as defined list of values could be automatically done when synchronizing the SER Categories values if the synchronization project is used to sync the SER category values.

Refer SER Categories Mapping for details.

The EPC module’s miscellaneous folder contains category list for many SER provider items. The category list for each of the SER item can be reviewed and used. The categories list could also be exported from Epic and used. The format of the category file is mentioned below. The final category list should be placed under categories folder under the configured CSV import directory (The CSV import directory was configured when you created the synchronization project). Example: If the configured CSV import directory is C:\EPCCSV, categories folder would be C:\EPCCSV\Categories. All the category files should reside in the categories folder. Customers can contact Epic technical support regarding details on export of categories from Epic.

NOTE:

  • Please contact Epic to know about automating the categories report generation and dropping the report generated to the CSV import directory.

  • If the CSV import directory is a local folder on the job server and One Identity Manager workstation, ensure to copy the categories report to both the job server’s and One Identity Manager workstation’s local folder.

  • If the CSV import directory is a network share, make sure it is accessible from both the job server and One Identity Manager workstation.

Format of the *.cat categories file

Name of the file: The file name should be of the format *-SERItemNumber.cat. Example: SER-CAT-30.CAT, where 30 is the item number. This item number is used in the resolution of the Epic SER provider column and populating the limited list of values

The records in the file should be of the format

Display Value^Display String^Alternate Display String One^Alternate Display String Two

Example:

0^No^N^DISALLOW~FALSE^

Important: The Epic SER provider export should contain the values and not the display strings for the items marked as a category list.

Epic SER Provider accounts

Epic SER provider accounts can be managed from One Identity Manager.

SER provider report

The master list of Epic SER provider accounts that should be managed from One Identity Manager should be exported from Epic and provided in a CSV file. The name of the CSV file should be SERProviders.csv. This is called the Epic SER provider report and the generated report should be copied to the configured CSV import directory (The CSV import directory was configured when you created the synchronization project).

NOTE:

  • Please contact Epic to know about automating the SER provider report generation and dropping the report generated to the CSV import directory.

  • If the CSV import directory is a local folder on the job server and One Identity Manager workstation, ensure to copy the Epic SER provider report to both the job server’s and One Identity Manager workstation’s local folder.

  • If the CSV import directory is a network share, make sure it is accessible from both the job server and One Identity Manager workstation.

The SERProviders.csv report has a specific format and report should be exported in this format.

The first line in the report should be the Epic SER Item Numbers with each field delimited by the pipe (|) symbol. The first column should be the ID and second column should be the Name. The rest of the items could be in any order.

Starting from the second line the actual Epic SER providers need to be present with each field delimited by the pipe (|) symbol. For SER items that are multi valued, they need to be separated by a comma (,).

Important

  • If a field value contains pipe (|), the entire field value needs to be escaped properly with double quotes (")

  • If a multi valued field value contains comma (,) the entire field value needs to be escaped properly with double quotes (")

The EPC module’s miscellaneous folder contains sample SER Provider csv file for reference.

Linking Epic SER provider account to identities

The central component of One Identity Manager is to map identities and their master data with permissions through which they have control over different target systems. For this purpose, information about Epic SER provider accounts and permissions can be read from the target system into the One Identity Manager database and linked to identities. This gives an overview of the permissions for each identity in all of the connected target systems. One Identity Manager provides the possibility to manage Epic SER provider accounts and their permissions.

You can provision modifications in the target systems. Identities are supplied with the necessary permissions in the connected target systems according to their function in the company. Regular synchronization keeps data consistent between target systems and the One Identity Manager database. Because requirements vary between companies, One Identity Manager offers different methods for supplying Epic SER provider accounts to identities.

One Identity Manager supports the following method for linking identities and their Epic SER provider accounts.

  • Identities can automatically obtain their Epic SER provider accounts using account definitions. If an identity does not yet have a user account in Epic, a new Epic SER provider account is created. This is done by assigning account definitions to an identity using the integrated inheritance mechanism and subsequent process handling. When you manage Epic SER provider accounts through account definitions, you can specify the way Epic SER provider accounts behave when identities are enabled or deleted.

  • When Epic SER provider accounts are inserted, they can be automatically assigned to an existing identity or a new identity can be created if necessary. In the process, the identity master data is created on the basis of existing Epic SER provider account master data. This mechanism can be implemented if a new Epic SER provider account is created manually or by synchronization. Define criteria for finding identities for automatic identity assignment

  • Identities and Epic SER provider accounts can be entered manually and assigned to each other.

For more information, see:

Editing master data for Epic SER provider account

An Epic SER provider account can be linked to an identity in One Identity Manager. You can also manage Epic SER provider accounts separately from identities.

NOTE:

  • It is recommended to use account definitions to set up Epic SER provider accounts for company identities. In this case, some of the master data described in the following is mapped through templates from identity master data.

  • If identities are to obtain their Epic SER provider accounts through account definitions, the identities must own a central user account and obtain their IT operating data through assignment to a primary department, a primary location or a primary cost center.

To create an Epic SER provider account

  1. In One Identity Manager, select Epic health care | SER providers.
  2. Click Add in the result list toolbar.
  3. On the master data form, add the master data for the Epic SER provider account.
  4. Save the changes.

To edit master data for an Epic SER provider account

  1. In One Identity Manager, select Epic health care | SER providers.

  2. Select the Epic SER provider account in the result list and run Change master data.

  3. Edit the Epic SER provider account's data.

  4. Save the changes.

For more information, see:

Related topics

相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级