This article outlines on how to handle a User Creation request from the users.
Information
PI1 and SI1 systems requests should be handled in the PQ1_001 system. PI1 and SI1 systems are sensitive systems as mainly the finances are handled through this system. Solvay uses Central User Administration (CUA) configuration which helps manage all the user master records in the PI1 and SI1 client systems centrally from the PQ1_001 system.
Identifying the Tickets :
When the users asks for a creation of the user in the ticket in PI1 or SI1 system, then it can be identified as a User Creation. Alternatively, when the user does not exist in the system and the access has to be given to the user, then it is considered as a User Creation. These tickets may have the accompanying information like the Name of the User / ID, Reference User Name / ID, Systems, etc. Below is an example of how the ticket may look like.
Good Practice
It is always a good idea to check if the Reference User and the User exist in the system. If the Reference User is invalid, ask the User / L0 team for a new Reference User. If the User already exists in the system then there will be no need to create again. Hence, this would save time.
Approvals :
Before proceeding with these kind of tickets, we need to always check the approvals. The approvals for the PF1 and SF1 system are managed by the L0 Teams depending on the region. If there are approvals are missing in the ticket then the ticket has to be transferred to the respective L0 Team (Bangkok, Lisbon or Curitiba) asking them to get the approvals. Also, we need to ask for a Reference User ID for the new user creations or the list of the roles which have to be added.
The request is approved if an agent from the L0 Team mentions that the it is approved or if the one requesting the access is the User's Manager. Examples can be seen below :
Important : There are few special cases for approvals in the PI1 and SI1 systems. The approval process is different for the different types of requests : CICC Online Roles, Z3F-ADH* roles and BCM Roles. For more details on this, please go through the below confluence article and once you have done come back to this article to continue the User Creation process :
PI1 and SI1 Requests - Approval Process
Providing the Access :
- When we have the required approvals, we need to check if the user to be given the access exists in the IDM.
- After this, we need to log in to the PQ1_001 system (CUA System) and then enter the SU01 and check the Reference User. Click on the Roles tab and copy all the PI1 020 and SI1 020 roles of the user except the Z3F-ADH* roles in an Excel Sheet. These roles can only be added by Anina Barneva or Larissa Duval. (Refer. PI1 and SI1 Requests - Approval Process).
- Now, enter the User ID of the user to be given access in the IDM and click on the user to obtain the details like Full Name, Email, etc.
- Go back to the PQ1_001 system and enter the ID of the user who needs the access in the SU01 transaction and check if that user already exists in the system. If the user exists please follow the same steps after skipping the next step in which we enter the details of the user. If the user does not exist in the system, then enter the user ID in the SU01 transaction and click on the Create Button (Shown Below).
- After clicking on the button, you will see the below screen (Image 1) to enter the user details. Enter all the details available in the IDM and leave the rest of the details as blank. Now move to the next tab Logon Data and click on the Generate Password button
as shown below (Image 2). After this, go to the Defaults tab and copy the Default values of the Reference User and also copy the previously copied roles of the Reference User from the Excel Sheet and then click on Save 
which you can find in the transaction bar on the top.
- Now, click on the Password Reset button and change the password for each system (PI1 020 and SI1 020). Do not forget to select the system before changing the password (as shown below) otherwise the password may not change.
