PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
Section III – Row Level
Introduction Section III
As a Data Manager for Student Data in the PeopleSoft (PS) system, you are likely familiar with the concept of security
roles, row level security and user profiles. This document has been created to allow you a glimpse into the PS system
itself so you can see how these pieces of security are connected and gain an overall picture of security in PeopleSoft.
This document will refer to the PS system in general, but please be aware that this system houses two individual university
databases, the Human Resource Management System (HRMS) and Student Information System (SIS). In general, the
security structure is utilized by both databases. Database differences will be noted in this document for your information.
You will see many screen captures from pages in the PeopleSoft system that you cannot access. These pages are updated
by Integrated PeopleSoft Services (IPS) based on the security requests you complete in the ARMS system.
The diagram below roughly illustrates how security in PS is constructed. Each of the pieces of this structure will be
addressed in the various sections of this Security Reference.
Section 3 of this document is in reference to the Row Level pieces, which are marked in blue on the diagram below . Row
Level security is only utilized on the SIS side of PeopleSoft.
Row lvl
Row lvl
PS Page
PS Page
Row lvl
PS Page
Row lvl
PS Page
PS Page
Row lvl
Row lvl
Row lvl
PS Page
PS Page
PS Page
Permission List
Permission List
Role
Row lvl
Row lvl
Row lvl
User Profile 1
Row lvl
User Profile 2
Row lvl
Row lvl
PeopleSoft Row Level Security
Row Level security in PS is perhaps the most complex and inarguably the most restrictive piece of security in the system.
This security can 1) restrict the populations of students that a user can view/update in the system or 2) restrict the specific
types of actions the user can take in the system.
The row level values are assigned to the individual users via the ARMS system. When pages are designed in PS the row
level pieces are invoked (if the page requires it) and the system checks the row level value of the user accessing the page.
This document will show screen caps of the actual PS screens used to assign this security in order to give you a frame of
reference for how the security is assigned. To query Row Level security assignments, please use the ARMS reporting
here: https://webdb.iu.edu/Arms/Scripts/tools/security/rowlevelsecurity.cfm.
Rev. 07/2010
Page 1
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
Row Level
Type:
Section III – Row Level
Academic Institution Security (Institution) – limits user access to the institutions they have
been assigned.
Row Level
Dependencies:


ARMS: None
PeopleSoft: None
Module:


ARMS: All
PeopleSoft: Student Administration


9 institutions (all but IUCSA) is considered ‘system wide’ access.
Bloomington Admissions users will require the following institutions as they do
processing for all of these campuses: IUBLA, IUEAA, IUKOA, IUNWA.
INSTITUTION
Comments:
PS Screen:
Rev. 07/2010
Page 2
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
INSTITUTION/CAREER
Row Level
Type:
Section III – Row Level
Institution/Career – limits user access to the Institution/Career combinations which they have
been assigned.
Row Level
Dependencies:


ARMS: Institution
PeopleSoft: Institution
Module:


ARMS: ADM/SR
PeopleSoft: Student Administration
Comments:

Graduate 1 (GRD1) career code added in April of 2009 for IUBLA to handle Kelley
Direct students.
PS Screen:
Rev. 07/2010
Page 3
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
Row Level
Type:
Academic Program – limits users to the Institution/Career/Program combinations they have been
assigned.
Row Level
Dependencies:


ARMS: Institution/Career
PeopleSoft: Institution/Career
Module:


ARMS: ADM/SR
PeopleSoft: Student Administration
Comments:

PeopleSoft provides the option of selecting all Academic Programs for the selected
Institution/Career combination. ARMS mimics this selection option.
PS provides the option for an Access Code (available options are ‘No Access’ and
‘Read/Write’) ARMS does not differentiate the Access Code. If access to a Program is
requested in ARMS, the request is for Read/Write access by default.

ACADEMIC PROGRAM
Section III – Row Level
PS Screen:
-
Rev. 07/2010
OR
Page 4
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
Row Level
Type:
Academic Plan – limits users to the Institution and Plan they have been assigned.
Row Level
Dependencies:


ARMS: Institution
PeopleSoft: Institution
Module:


ARMS: ADM/SR
PeopleSoft: Student Administration
Comments:

Not routinely assigned by all institutions and various campuses utilize this row level
assignment differently based on their business functions.
PeopleSoft provides the option of selecting all Academic Plans for the selected Institution.
ARMS mimics this selection option.
PS provides the option for an Access Code (available options are ‘No Access’ and
‘Read/Write’) ARMS does not differentiate the Access Code. If access to a Plan is
requested in ARMS, the request is for Read/Write access by default.


ACADEMIC PLAN
Section III – Row Level
PS Screen:
-
Rev. 07/2010
OR
Page 5
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
Row Level
Type:
Section III – Row Level
Academic Org (a.k.a. Class Permissions) – Commonly referred to as Schedule of Classes!
Limits users access to Academic Orgs they have been assigned. Used primarily to secure course
and course catalog setup screens.


ARMS: None
PeopleSoft: None
Module:


ARMS: SR
PeopleSoft: Student Administration
Comments:

Academic Org security is hierarchical, like the Org tree itself (which is what’s used in
ARMS to graphically represent the Org structure.).
e.g. a user with IUBLA Academic Org has, by default, all of the Orgs under it in the tree.
a user with IUSYA Academic Org has all orgs on the tree, as IUSYA is the top level.
Users may have IUBLA and BL-AUS and IUSYA; however, the user will have the most
expansive security assigned. In the case above, the user would have system wide access
to academic org.
PS provides the option for an Access Code (available options are ‘No Access’ and
‘Read/Write’) ARMS does not differentiate the Access Code. If access is requested in
ARMS, the request is for Read/Write access by default.
ACADEMIC ORG
Row Level
Dependencies:



PS Screen:
Rev. 07/2010
Page 6
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
ADMISSIONS ACTION
Row Level
Type:
Section III – Row Level
Admissions Action – Allows users access to the Admissions Program Actions assigned.
Row Level
Dependencies:


ARMS: None
PeopleSoft: None
Module:


ARMS: ADM/SR
PeopleSoft: Recruiting and Admissions
Comments:

PeopleSoft provides the option of selecting all Admissions Program Actions. ARMS
mimics this selection option.
Admissions Action is not assigned by Institution.

PS Screen:
-
Rev. 07/2010
OR
Page 7
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
PROGRAM ACTION
Row Level
Type:
Section III – Row Level
Program Action – Allows users access to the Program Actions assigned
Row Level
Dependencies:


ARMS: None
PeopleSoft: None
Module:


ARMS: SR
PeopleSoft: Student Records
Comments:

PeopleSoft provides the option of selecting all Program Actions. ARMS mimics this
selection option.
Program Action is utilized on Quick Admit, Program/Plan updating, etc.
Program Action is not assigned by Institution.


PS Screen:
-
Rev. 07/2010
OR
Page 8
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
APPLICATION CENTER
Row Level
Type:
Section III – Row Level
Application Center - limits the application centers the user can access to the
Institution\Application Center combination assigned to the user.
Row Level
Dependencies:



ARMS: Institution
PeopleSoft: Institution
Module:


ARMS: ADM
PeopleSoft: Recruiting and Admissions
Comments:

PeopleSoft provides the option of selecting all Application Centers for the selected
Institution. ARMS mimics this selection option.
PS Screen:
-
Rev. 07/2010
OR
Page 9
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
RECRUITING CENTER
Row Level
Type:
Section III – Row Level
Recruiting Center - limits the recruiting centers the user can access to the Institution\Recruiting
Center combination assigned to the user.
Row Level
Dependencies:


ARMS: Institution
PeopleSoft: None
Module:


ARMS: ADM
PeopleSoft: Recruiting and Admissions
Comments:

PeopleSoft provides the option of selecting all Recruiting Centers for the selected
Institution. ARMS mimics this selection option.
PS Screen:
-
Rev. 07/2010
OR
Page 10
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
Row Level
Type:
Section III – Row Level
3C Group – (Communication, Checklist, Comment) Users can View and Update 3C groups based
on the Institution/3C combination assigned.
Row Level
Dependencies:


ARMS: Institution
PeopleSoft: Institution
Module:


ARMS: ALL
PeopleSoft: Campus Community
Comments:

3C groups allow access to specific communication categories, checklist codes and
comment categories.
Each code ends in either an ‘U’ or an ‘I’ depending on whether the code should be
‘Update’ or ‘Inquiry’. PS has separate boxes for these values (see below), but the codes
themselves dictate the action available (IU set them up this way). The Inquiry/Update
flags below do not show in ARMS but the ARMS system sends the appropriate flags to
IPS based on the final letter in the code selected.
3C GROUP

PS Screen:
Rev. 07/2010
Page 11
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
TRANSCRIPT
Row Level
Type:
Section III – Row Level
Transcript Type: Determines what transcript types a user has the access to process.
Row Level
Dependencies:


ARMS: Institution
PeopleSoft: Institution
Module:



ARMS: SR
PeopleSoft: Student Records
Comments:


Transcript Type security does not affect access to transcript types in Self Service.
PeopleSoft provides the option of selecting all Transcript Types for the selected
Institution. ARMS mimics this selection option.
Transcript Types are also used for AA Degree Progress Reporting.

PS Screen:
-
Rev. 07/2010
OR
Page 12
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
Row Level
Type:
Section III – Row Level
Advisement Report- Grants users access to the identified Degree progress and Academic
Advisement Reports.
THIS ROW LEVEL ITEM HAS NOT YET BEEN DEPLOYED IN ARMS (as of the date of
this document)


ARMS: Institution
PeopleSoft: Institution
Module:


ARMS: SR
PeopleSoft: Student Records
Comments:


Advisement Report security was implemented in April of 2009.
SIS Users who access the reports through the Administrative Center DO NOT need to be
assigned row level security in ARMS. IU modifications eliminate the need to define row
level security for the thousands of users with Access to the Administrative Center. This
modification has been in place since 2003 that per our IU policy, if you have the job duties
required to see student data you can see student record (not admissions) data for all
campuses. (text provided by CLB in 04/2009).
This row level security should be assigned in conjunction with AA Degree Audit 1 role.
Users with that role should have Transcript Type AATR1, AATRE, AATRI and
Advisement Report Type Security AADV1, AADV2, WHIF
PeopleSoft provides the option of selecting all Advisement Report Types for the selected
Institution. ARMS mimics this selection option.
Advisement Report
Row Level
Dependencies:


PS Screen:
Rev. 07/2010
Page 13
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
SERVICE INDICATOR
Row Level
Type:
Section III – Row Level
Service Indicator – Provides access to Campus/Service Indicator/Reason combinations assigned
to user, with the actions determine at time of assignment.
Row Level
Dependencies:


ARMS: Institution
PeopleSoft: Institution
Module:


ARMS: ALL
PeopleSoft:
Comments:

Users must have the Service Indicator and the reasons that indicate when the user can
access the service indicator. The Placement/Release flags indicate what actions the user
can take with the security provided.
PS Screen:
Rev. 07/2010
Page 14
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
Row Level
Type:
Section III – Row Level
Business Unit - Provides access to the Business Unit assigned to the user.
Row Level
Dependencies:


ARMS: Institution
PeopleSoft: None
Module:


ARMS: SF/FA
PeopleSoft: Student Financials
Comments:

Business Unit assignment generally mimics the Institution row level assignment, but that
relationship is not required in the People Soft system.
The ARMS system currently (as of 04/2009) limits the assignment of Business Units to
values that the user already has assigned in the Institution row level. This is an identified
issue with the ARMS system that will be corrected shortly.
PS provides the option for an Access Code (available options are ‘No Access’ and
‘Read/Write’) ARMS does not differentiate the Access Code. If access is requested in
ARMS, the request is for Read/Write access by default
BUSINESS UNIT


PS Screen:
Rev. 07/2010
Page 15
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
BUSINESS UNIT/CASHIER
Row Level
Type:
Section III – Row Level
Business Unit/Cashier: Provides access to the Business Unit/Cashier assigned to the user.
Row Level
Dependencies:


ARMS: Business Unit
PeopleSoft: Business Unit
Module:


ARMS: SF/FA
PeopleSoft: Student Financials
Comments:

PS provides the option for an Access Code (available options are ‘No Access’ and
‘Read/Write’) ARMS does not differentiate the Access Code. If access to a Cashier’s
Office is requested in ARMS, the request is for Read/Write access by default.
PS Screen:
Rev. 07/2010
Page 16
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
SETID
Row Level
Type:
Section III – Row Level
SetID – This value is defaulted in the ARMS system to match the Business Unit assignments of
the user.
Row Level
Dependencies:


ARMS: Business Unit
PeopleSoft: None
Module:


ARMS: SF/FA
PeopleSoft: Student Financials
Comments:

PS provides the option for an Access Code (available options are ‘No Access’ and
‘Read/Write’) ARMS does not differentiate the Access Code. When SetID access is
defaulted, the Access Code is set to Read/Write by default.
PS Screen:
Rev. 07/2010
Page 17
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
Row Level
Type:
Section III – Row Level
Item Type/Tree Node: Grants a user access to the specified Item Type or Tree Node selected.


ARMS: Business Unit
PeopleSoft: Business Unit
Module:


ARMS: SF/FA
PeopleSoft: Student Financials
Comments:

ARMS does not offer Item Types in this row level component. Tree Nodes grant access
to all item types within a specific node. If you enter a tree node, users have access to all
items types defined within that node.

As of 05/2009 the only Tree Nodes utilized for security purposes are as follows:
ALL
DEPARTMENT
FINANCIAL_AID
IU FOUNDATION
PeopleSoft has other Tree Nodes in the table, but these four are the only ones used for
security.
ITEM TYPE/TREE NODE
Row Level
Dependencies:
PS Screen:
Rev. 07/2010
Page 18
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
ENROLLMENT ACCESS GROUP
Row Level
Type:
Section III – Row Level
Enrollment Access Group - Provides user access to enrollment for a specific group of students.
Row Level
Dependencies:


ARMS: Institution
PeopleSoft: None
Module:


ARMS: SR
PeopleSoft: Student Records
Comments:

When a user’s enrollment security is controlled by an enrollment access group, override
security is enforced when an enrollment request is processed by the enrollment engine.
PS Screen:
Rev. 07/2010
Page 19
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
Row Level
Type:
Student Group – Student Group assignment determines which groups the user can access to view
and/or update
Row Level
Dependencies:


ARMS: Institution
PeopleSoft: Institution
Module:


ARMS: ALL
PeopleSoft: Student Records
Comments:

Student Group security was implemented with the upgrade to PeopleSoft 9.0 in February
2008.
As of 05/2009 the roles below provide automatic inquiry access to Student Groups:
AA SES Role 1
ADM3
FA14
AA SIS 1
ADM4
FA4
AA SIS 2
ADM5
FA5
AA Student Groups 2
ADM6
FA6
ADM1
ADMALL
SR Student Groups 1
ADM2
ADMINQ
Student

STUDENT GROUP
Section III – Row Level
PS Screen:
Rev. 07/2010
Page 20
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
INSTITUTION SET
Row Level
Type:
Section III – Row Level
Institution Set – Allows the user to view Student Financial data in the Administrative Center.
Row Level
Dependencies:


ARMS: None
PeopleSoft: None
Module:


ARMS: SF
PeopleSoft: Student Financials
Comments:

Institution Set was implemented with PeopleSoft 9.0 and currently only has one possible
value, ‘IUSFA’.
PS provides the option for an Access Code (available options are ‘No Access’ and
‘Read/Write’) ARMS does not differentiate the Access Code. If access is requested in
ARMS, the request is for Read/Write access by default

PS Screen:
Rev. 07/2010
Page 21
PEOPLESOFT SECURITY REFERENCE FOR DATA MANAGERS
TEST ID
Row Level
Type:
Section III – Row Level
Test ID – Allows users to access the Tests for which they have Test ID security.
Row Level
Dependencies:


ARMS: None
PeopleSoft: None
Module:


ARMS: Value Defaulted – not open to any modules
PeopleSoft: Student Records
Comments:

Test ID implemented with PeopleSoft 9.0 in February of 2007. All users are currently
defaulted by the ARMS system to the ALL value. ARMS sends the request for ALL to
IPS for load into PeopleSoft.
PS provides the option for an Access Code (available options are ‘No Access’ and
‘Read/Write’) ARMS does not differentiate the Access Code. If access is requested in
ARMS, the request is for Read/Write access by default

PS Screen:
Rev. 07/2010
Page 22