UC Merced

Information Technology

• Home
• MyUCMerced
• Web Services
  • MyUCMerced
  • UCM Share
  • UCM Calendar
  • UCM Directory
  • UC Mailman
  • UCMID Services
  • IDCLAIM
• User Services
  • Students
  • Faculty
  • Staff
• Support
  • Guides & FAQs
  • Service Centers
  • Policies
• Security
  • Best Practices
  • Safe Computing
• About
  • Office of the CIO
  • Org Chart
  • Vision
  • Projects
  • Accomplishments

Information Technology Strategic Planning

Projects

Project Title:

UC Trust Enablement

Project Advocate:

Faust Gorham

Project Manager:

Brian Koehmstedt

Project Overview:

The project goal is to revamp the process relating to the issuance of UCMNetID and password (user credentials) so our users meet the basic level of identity assurance required by UC Trust policy. This will be done by Dec. 12, 2008.

Key Stakeholders:

Identity Management Office

UC Trust leadership

Benefits:

Enabling UC Merced to assert a basic level of assurance for our users means these users may begin to use UC Trust services that require a basic level of assurance, such as At Your Service Online.

Project Deliverables:

A new process for issuing user credentials that will allow us to assert the UC Trust basic-level assurance attribute

o Credential claiming process

o Identity verification process

o Lost Password reset process

o AYSO in the portal

Initiative(s) Supported:

• Identity Management & Provisioning

Related Projects:

Milestones:

1. Research

o Research and determine the process users will go through to claim and verify their identity

2. Project Plan

o A document that contains an implementation plan

3. Implement

o New or modified account claiming and verification web pages for users

o New or modified Lost Password reset pages

o New administrator web pages (or changes to existing pages) for IDM Office, Help Desk, and MSOs

4. Test

o Test the new claiming and verification process

5. Education

o Communicate the new processes to help desk and others affected by the changes

6. Launch

o Launch new account claiming and verification pages into production

7. Integrate AYSO channel into portal

Costs & Funding (Capital & Operational):

None anticipated.

Project Team:

Testers (any staff available to help test, such as student workers)

Issues/Risks:

1)      Adjustment period for IDM Office, Help Desk, MSOs, etc to adopt new processes for account claiming, verification, and lost password recovery.

There is an issue regarding how to treat existing accounts. These existing accounts were provisioned with the old process and it will be an open question as to how much we ask existing users to do in order for us to be able to assert their UC Trust basic-level assurance attribute.

There is an issue regarding how to treat accounts where the person provisioned by the MSO doesn’t show up in PPS for a long time or never does (this does happen). As we have no verifiable information regarding these people, it is not possible to verify them for UC Trust using any automatic mechanism. These people either need to show photo ID and have their UC Trust assurance attribute manually set, or if they cannot show photo ID, then either they will not get their UC Trust assurance attribute asserted, or an authorized staff member will have to vouch for and sign-off on manually asserting their basic level of assurance.

University of California, Merced | 5200 North Lake Road, Merced, CA 95343 | (209) 228-4400 | itweb@ucmerced.edu | Privacy/Legal Notice | © 2009 UC Regents