CONTROLLED DATA
Leidos Proprietary - US Citizens ONLY
The information contained herein is proprietary to Leidos, Inc. It may not be used, reproduced, disclosed, or exported without the written approval of Leidos.

Once your Design Engagement Request (DER) has been submitted, please follow these next steps.

  1. Owner of the environment - submit 2 General Service Request (GSR) tickets in CIO Central.  

  2. Copy and paste the following into the Short Description and Details fields below and replace anything in RED with your appropriate tenant information.  Your ECM Solution Architect can provide your TenantName.

Ticket #1:   

Submit General Service Request (GSR) 

Topic Field:  ECM TenantName - Create Roles, AD groups, and Publish "Route to Authentication Operations"

PLEASE ADD OWNER AND SECONDARY OWNER TO ALL GROUPS IF THEY ALREADY HAVE Y_ ACCOUNT.

Please create the following privileged roles and publish

Role owner/approver: Name/Userid/Email Address  (typically 1st person listed on DER)
Secondary owner/approver:  Name/Userid/Email Address  (typically 2nd person listed on DER)
Role classification: LOB 

Privileged Role Domain: corp.leidos.com  

OU: corp.leidos.com/Protected Groups and Accounts/ECM/AWS/Tenants 


AD group name: CorporateITS_ECM_TenantName_SysOps 
Privileged Role name: ECM-TenantName-SysOps 
Applies to:  y_accounts 
Description: Privileged SysOps access for ECM Tenant-TenantName 
 
AD group name: CorporateITS_ECM_TenantName_Ops 
Privileged Role name: ECM-TenantName-Ops 
Applies to: y_accounts 

Description: Privileged Ops access for ECM Tenant-TenantName 

 
AD group name: CorporateITS_ECM_TenantName_ReadOnly 
Privileged Role name: ECM-TenantName-ReadOnly 
Applies to: y_accounts 
Description: Privileged ReadOnly access for ECM Tenant-TenantName 
 
AD group name: CorporateITS_ECM_TenantName_DevSysOps 
Privileged Role name: ECM-TenantName-DevSysOps 
Applies to: y_accounts 
Description: Privileged DevSysOps access for ECM Tenant-TenantName 

Ticket #2:  

Submit: General Service Request (GSR) 

Topic Field:   ECM Tenant Name - Create Roles, AD Groups (do not publish) "Route to Authentication Operations"

PLEASE ADD OWNER AND SECONDARY OWNER TO BILLING GROUPS 

Please create the following AD group: (do not publish)

Role owner/approver: Name/Userid/Email Address  (typically 1st person listed on DER)
Secondary owner/approver:  Name/Userid/Email Address  (typically 2nd person listed on DER)
Role classification: LOB 
Role Domain:   OU=Groups,OU=Enterprise Cloud,OU=Applications,OU=Corporate,DC=corp,DC=leidos,DC=com 

 
AD group name: CorporateITS_ECM_TenantName_BillingAccess 
Applies to:  Regular AD account 
Description: AD Group with regular account for KION Billing Access-ECM Tenant-TenantName 



 

  • No labels



The information contained herein is proprietary to Leidos, Inc. It may not be used, reproduced, disclosed, or exported without the written approval of Leidos.
CONTROLLED DATA