Want to share our success story implementing automated user provisioning for our production planning team in JDE 9.2.0. Before automation, onboarding new planners took 3-5 days with manual setup causing significant delays.
We integrated SAML authentication with automated role templates that provision users based on their department and job function. The system now creates user accounts, assigns appropriate production planning roles, and configures access permissions automatically when HR completes the hiring workflow.
Key improvements: New planner onboarding reduced from 72 hours to under 2 hours. Role templates ensure consistent security policies across all production planning users. SAML integration eliminated duplicate credential management.
Our implementation uses predefined role templates mapped to organizational units. When a new production planner is added to our HR system, the SAML assertion triggers automatic provisioning with pre-configured access to work orders, scheduling, and capacity planning modules. Happy to share details on our approach.
We went with job-level templates initially - Production Planner I, II, and Senior Planner - each with progressively more access. Each template includes base permissions for P3105 (Work Order Entry), P3109 (Scheduling), and P1346 (Capacity Planning). Senior planners get additional access to P31225 (Shop Floor Management) and P00092 (Work Center Master). This approach simplified our initial rollout and made troubleshooting easier during testing.
We’re using JDE native SAML integration configured through Server Manager Console. The SAML assertions include custom attributes from our HR system that map to role templates. For template updates, we built a quarterly review process where changes apply to new users immediately, but existing users require approval workflow to prevent disrupting active production schedules. This gives us control while maintaining automation benefits.
From a compliance perspective, this looks solid. The role template approach provides good audit trails. Are you logging all provisioning events for SOX compliance? We need to demonstrate segregation of duties controls, so having automated documentation of who provisioned what access and when would be valuable. Also, how frequently do you reconcile actual user permissions against the role templates to catch any manual changes?