Skip to main content
M3 Playbook > Phase 4: Migration > 4.7 Define Roles and User Access
Play Icon

4.7 : Define Roles and User Access

Technology
  1. Shared

    Document roles and access rights, segregation of duties, identification (ID) request and ID management processes based on Identity, Credentials, and Access Management Framework (ICAM)

  2. Shared

    Finalize roles and responsibilities for granting user access in Operations and Maintenance (O&M)

  3. Provider

    Implement Security Configuration for user roles and user access as documented in ICAM

  4. Shared

    Assign user access rights to employees

  5. Provider

    Load production user accounts

  6. Provider

    Test production user accounts

  7. Shared

    Provide credentials to end users for testing, training, and production

4.7 Lessons Learned

  • Have an ID management tool, ID request process, and contact center procedures to resolve access related issues in place before cutover
  • Provide sufficient security access to the deployment team to perform their tasks effectively in advance of deployment
  • Establish security roles and responsibilities well in advance of deployment to resolve issues while time allows

Stakeholders

Recommended stakeholders, inputs, & outputs may vary by implementation; however, agencies that contributed to this Playbook reported these factors as increasing the likelihood of success.

Customer

  • Program Manager
  • Functional Lead
  • Technical Lead/Solution Architect
  • Security Lead
  • Training Lead
  • Information Systems Security Officer
  • Network SME
  • PMO Lead
  • Change Management Lead

Provider

  • Program Manager
  • Functional Lead
  • Technical Lead/Solution Architect
  • Security Lead
  • Training Lead
  • Information Systems Security Officer
  • Network SME
  • PMO Lead
  • Change Management Lead

Inputs

Outputs

  • Baselined List of ID Credentials
Return to top

USSM.GSA.gov

An official website of the General Services Administration

Looking for U.S. government information and services?
Visit USA.gov