Uploaded image for project: 'CFA MX '
  1. CFA MX
  2. CFAMX-12956

User Group Clean up

    Details

    • Type: Improvement
    • Status: Done (View Workflow)
    • Priority: Major
    • Resolution: Completed
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: None
    • Labels:

      Description

      This story is to track the scripts that are used to remove permissions from Security Groups.

      Marwa Abdelwahed has completed this exercise for the following Security Groups:
      Head Office Admin
      BA
      SC Operator
      Store Default
      CM Operator
      Labor Management
      Labor - View All Wages
      Labor - Maintain Break Policies
      Employee Manager
      Data Export

      Scripts used

      // Please put sql in here
-- unassign user permissions from security groups

select * from tbGroup where GroupName in ('BA','Head Office Admin','SC Operator','Store Default','CM Operator','Labor Management','Labor - View All Wages','Labor - Maintain Break Policies','Employee Manager','Data Export')


Begin Tran
update tbGroup
set 
Usage1=0,Usage2=0,Usage3=0,Usage4=0,Usage5=0,Usage6=0,Usage7=0,Usage8=0,Usage9=0,usage10=0,Usage11=0,usage12=0,MobileUsage1=0,MobileUsage2=0,MobileUsage3=0
where groupname in ('BA','Head Office Admin','SC Operator','Store Default','CM Operator','Labor Management','Labor - View All Wages','Labor - Maintain Break Policies','Employee Manager','Data Export')
commit Tran
Rollback tran

------------------------------------

--List of users and the security groups they belong to. Those are the 10 security groups with Zero users in production, cleaned JAT,Testing and stating to look the same

select tbu.userId,tbu.UserName as username, tbu.LogonDisabled, tbu.Status, groupname, tbgu.groupid
from tbuser tbu with (nolock), tbgroup with (nolock) left outer join tbgroupuser tbgu on tbgroup.groupid = tbgu.groupid
where tbgu.userid = tbu.UserID and Status= 'Active' and tbgu.groupID in (14,27,28,29,41,52,54,55,59,73) -- can change the Status to 'Terminated' to see  inactive users.
order by username, GroupName

-- unassign users from securityGroups 
select * from tbgroupuser where groupID in (14,27,28,29,41,52,54,55,59,73) -- Those are the 10 security groups with Zero users in production, cleaned in Testing, staging  JAT and production.

Begin Tran
delete from tbgroupuser 
where groupID in (14,27,28,29,41,52,54,55,59,73)
--Commit Tran
--Rollback

        Attachments

          Activity

            People

            • Assignee:
              will.englefield Will Englefield (Inactive)
              Reporter:
              will.englefield Will Englefield (Inactive)
            • Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                PagerDuty

                Error rendering 'com.pagerduty.jira-server-plugin:PagerDuty'. Please contact your Jira administrators.