ARCHIVED CD 2005-014

Warning This Web page has been archived on the Web.

Archived Content

Information identified as archived is provided for reference, research or recordkeeping purposes. It is not subject to the Government of Canada Web Standards and has not been altered or updated since it was archived. Please contact us to request a format other than those available.

August 1, 2005

SUBJECT: New Edit Control for On-line Departmental Security

1. PURPOSE

1.1 The purpose of this directive is to inform clients of a change in the Regional Pay System (RPS) on-line application to reinforce security procedures for departmental access.

2. BACKGROUND

2.1 As the result of an audit conducted by the Office of the Auditor General, Public Works and Government Services Canada (PWGSC) has introduced an edit control in the On-line Departmental Security application designed to prevent unauthorized multiple user class access to on-line pay and pension applications of the RPS.

2.2 This directive should be read in conjunction with Chapter 17 of the Personnel-Pay Input Manual (PPIM).

3. PROCEDURES/INSTRUCTIONS

3.1 The PPIM Section 17-1-5 (note 2) states that departmental authorizers (AUT) may not be allocated any other user class access except for security officer ''SEC'', ''FIN''and ''INQ''. To ensure compliance with this rule, a new edit control was added to the RPS on July 12, 2005.

This edit control will prevent any user, already registered as a pay and benefits (PAB) user and/or verifier (VER) user from being set up as an AUT user. Similarly, the edit will prevent an AUT user from being set up as a principal and alternate VER user and/or a principal and alternate PAB user.

3.2 The message "PD45A - AUTHORIZER CANNOT BE A VERIFIER OR A PAY AND BENEFIT SPECIALIST / AUTORISATEUR NE PEUT PAS ETRE UN VERIFICATEUR OU SPECIALISTE PAYE ET AVANTAGE" will be displayed if the security access control officer (SACO) attempts to assign invalid multiple system access.

3.3 The new edit control will not affect any current situation of invalid multiple user class access. Therefore, clients are urged to review their security structure, correct anomalies and avoid any potential problems associated to non-compliance.

3.4 It is the client department's responsibility to ensure that all designated SACOs receive adequate training.

3.5 Please note that the PPIM and the Pay Office Procedures Manual (POP) will be updated to incorporate the information contained in this directive.

4. INQUIRIES

4.1 Any inquiries on the information contained in this document should be addressed to your PWGSC Compensation Services Office.


Original Signed by
Tom Meyers

Patricia Laviolette
Acting Director General
Compensation Sector
Accounting, Banking and Compensation

Reference(s): CJA 9001-23