HR and Payroll Annual Maintenance 14/15
  1. Home
  2. Node
  3. Closure Comments and Notes

Closure Comments and Notes

Closure Comments and Notes

---

P.Smulski :

The HR application patches all went in successfully this year.  Still running patching with 64 parallel workers as 128 in Development caused hanging - 2/07

I'm happy with your summary of this project.  - 24/07

 ----

1.  One notable side benefit of this project is that we have implemented code signing in the HR application

2.  During implementation of the security patches I noticed that non-production jar files were being signed with a production certificate.

Although it was known that Oracle were gradually increasing security in this area, there were no plans to address the situation.  As PPP003 had time and budget, we decided to proceed with investigating and then implementing the solution.

This work has had the following benefits:

  • The work did not need to be done at this time, but Oracle are gradually increasing security around this area (see the warning message below), and we would have been forced to implement code signing at some point in the future.  By doing so now, we have avoided being forced to do so at a less convenient time.
  • Although end users still get a warning message when running the application, the warnings are more informative (see below, the application and the publisher are now displayed).

image005.png@01D0C538.B43B4CD0image006.png@01D0C538.B43B4CD0

  • We now have a procedure for obtaining and using a code signing certificate, which has been added to the HR documentation.
  • The University’s certificate ordering procedure has been modified to include code signing certificates (rather than just SSL).
  • The certificate and the procedure are applicable to any application which requires to sign code in the future (not just HR).

 

 3  Something to consider in the future:

The eduni signed certificate is not enough to stop all java warnings when running HR (although we now get fewer), so we should consider getting a 3rd party certificate which should do so

 Gordon

----

A further urgent Oracle TYE Bug Fix and HR Jar File work was implemented 6-Jul-15

For the 9th security patch Oracle asked for a conference call with the Dev Tech, after which nothing was heard of until more recently.

Oracle came back with a work-around Gordon investigated and checked it out in Dev, this is now being progressed via support  - I150624-0740 Oracle HR Security Patch (9th)

Learn , plan more time for Payroll Testing in Dev and Test

No Senior for Dev Team HR & Payroll has currently been appointed to replace the current Team Lead, which is a loss of  a significant amount of technical knowledge, however this project has procceeeded well

 Anne's thoughts before Closure written Jun/Jul-15

--

Pam B felt that IS Apps and Business worked well together and got the patches completed quickly and to the deadlines successfully. A smooth running project.

Pam B also mentioned considerations for next year that:

  • the project will involve re-enrolment work, due to the fact that it is 3 years since auto-enrolement came in. This will mean careful planning with patches and re-freshes. Refresh will be required just before the re-enrolment patch is completed
  • a discussion will be useful regarding security patches as Pam would like to understand why they are planned at one time and not completed as and when they arrive

PB Jul 29th

 ----

Thanks Anne,

 --------------

No problem, as you say - Pam is my eyes and ears on most of these.

 Terry 29/07

  From: MATHISON Anne

Sent: 29 July 2015 15:59

To: FOX Terry <Terence.fox@ed.ac.uk>

Cc: BAILLIE Pam <pbailli2@exseed.ed.ac.uk>; BAILLIE Pamela (Pamela.Baillie@ed.ac.uk) (Pamela.Baillie@ed.ac.uk) <Pamela.Baillie@ed.ac.uk>

Subject: PPP003 HR & Payroll Annual Maintenance 14/15 - Closure Report

 Hi Terry,

 We have now completed the PPP003 HR & Payroll Annual Maintenance 14/15 project and I realised I had not copied you in.

 The last items deployed was on 6th July and the closure has been written on my return from holiday.

 Pam has already reviewed the closure and agreed to signoff and I know she keeps you informed, but I realised I has not sent you the documents, my apologies

 Please find the completion report below:

                https://www.projects.ed.ac.uk/project/ppp003/completion_report

 Please find the Closure project milestone signoff below:

                https://www.projects.ed.ac.uk/project/ppp003/milestones/closure

 Thanks Anne 29/07

This article was published on

Project Info

Not available.

Documentation

Not available.