Description

This document details the changes that are made to user access in COINS via Mosaic.

The script executes daily at 6:30am from Mosaic.

The User matching is between Microsoft Graph and COINS and is between the Microsoft Graph email address and sysuser.sur_email field within COINS. Both sides have spaces trimmed from both ends and are lowercased for matching.

 

Process

Account Disabled - Sets sysuser.su-gui to "N" and sysuser.sur_accountlocked = "yes" if the microsoft graph account is disabled and the user is not already locked.


User Never Logged In - Sets sysuser.su-gui to "N" and sysuser.sur_accountlocked = "yes" if the COINS user created date is older than 2 months and the COINS last login date is blank and the user is not already locked.


User Expired - Sets sysuser.su-gui to "N" and sysuser.sur_accountlocked = "yes" if the COINS last login date is older than 2 months and the user is not already locked.


Password Expired - Sets sysuser.su-gui to "N" and sysuser.sur_accountlocked = "yes" if the COINS password expired date is in the past.


Name Updated - Sets sysuser.su-name  to the microsoft graph display name.


Job Title Updated - Sets co_extra.cex_cha__1 to the microsoft graph job title.


Departmed Updated = Sets the co_extra.cex_cha__2 to the microsoft graph department.


Buyer Retired - Sets po_buyer.pob_retired to “Y” if the microsoft graph account is disabled.


Buyer Name Updated - Updates po_buyer.pob_name with the users microsoft graph display name.


Buyer Phone Number Updated - Updates po_buyer.pob_telephone__1 with the users microsoft graph phone number.


Buyer Email Updated - Updates po_buyer.pob_email with the users microsoft graph email address.


Notes

This process is managed and maintained by Sam Clark who manages Mosaic.

If you're unsure of anything mentioned above, please contact us via one of the following methods: