An Application User ID is a user ID that is given to a software application rather than to a specific person. The purpose of this Application User ID Requirements document is two fold:

With approval from the appropriate Data Trustee, Data Administration will recommend that a Warehouse application ID be approved when the following requirements are met:

Manager's Statement
The manager of the unit in which the application resides, must indicate that the application is critical to the unit's operation and agree to resource the application appropriately to provide Access Control and Service Continuity Controls as described in the ASU Data Warehouse Data and Application Controls Policy. The manager must designate a primary contact person for the application who will be responsible for resolving problems that arise in either the application ID process or the ongoing operation of the application. This person will also be responsible for updating Data Administration with changes to the application that affect the data that is being gathered from the Warehouse or that affect the data's security.

Documentation
In order to plan Warehouse changes and anticipate how they impact applications that use Warehouse data, it is critical that Data Administration, Data Trustees, and Information Technology support staff know what data is being used by the application. To facilitate this, a short description of what the application does must be submitted with copies of the SQL used by the application to obtain data from the Data Warehouse. An explanation of the times of SQL execution should also be included (for example, executes each Monday through Friday at 8 am, or executes upon demand from 8 AM to 5 PM on weekdays).

Training
A training plan for the users of the application must be submitted which includes identification of a local staff member who will be responsible for educating users of the application on Warehouse Data Usage Policies.

Access Control Mechanism
A description of the Access Control methods must be submitted, with at least one regularly employed ASU staff member identified to perform these procedures. A second staff member should be identified as a substitute. These staff will have responsibility for granting individual access to users and deleting their access when no longer employed in the unit. The mechanisms by which the application's user ID will be protected from unauthorized use or detection should be described as well.

Virus Protection and Backup Plan
A description of the virus protection software/procedures and backup procedures for the application must be submitted.

Environmental Controls
A description of any environmental controls that are planned such as temporary power supplies, fire protection, or surge protectors must be submitted.

A campus unit can initiate the process for requesting an application ID by sending a note to ware-q@asu.edu. Data Administration will contact the requesting unit and gather the required materials. This policy is intended to facilitate well planned and supported applications that use Warehouse data in order to provide maximum benefit to campus units while ensuring that Warehouse data is secure.