Skip to main content

Cornell University

IT@Cornell

IT Professionals

Content (1346)

Security Procedures for Staff and Consultants
These security procedures apply to both Cornell University staff and consultants serving CIT Commercial Applications. Also see: Operational Procedures for Confidential Data for Central IT Employees.
Deploy a Task Sequence (Endpoint Management Tools - Windows)
Once you have completed the steps in our Work with Task Sequences article, you need to deploy the task sequence to a collection containing the machines you would like to image. 
Obtain Application Designer Password, Set Up Access to PeopleSoft Tools, and Create Application Designer Shortcut
Task responsibility Task details Consultant You cannot use your NetID password with Application Designer. Obtain an Applications Designer password by submitting a ticket to cit-secadmin@cornell.edu. Consultant
Arrange NetID Access to PeopleSoft Tools Virtual Machines
To safeguard confidential data and to ensure use of a common toolset, Cornell and contract staff must use a VM set up with tools such as Application Designer, SQL access software and other common tools. Task responsibility Task details Cornell…
Remove Members from a Group (CornellAD Group Management)
Using a supported browser, connect to manage.ad.cornell.edu.
About Mail-Enabled Reference Groups (CornellAD Group Management)
All CornellAD reference groups based on the lowest level of the Peoplesoft HR Tree (typically at the department level) are mail-enabled for use with Exchange. (Peoplesoft calls these "Node 9 groups.") This means you can, for example, 
Find Node 9 Groups (CornellAD Group Management)
What's All This Then? The information on this page is presented in the context of using CornellAD reference groups to set sharing permissions to Exchange calendars and mail folders, or to use them as a way of sending email to the entire group.
Create Membership Rules for Dynamic Groups (CornellAD Group Management)
There are many ways to use dynamic groups. Here we'll describe how to set up dynamic groups for a few common situations.
Convert a Basic Group Into a Dynamic Group (CornellAD Group Management)
The act of turning a basic group into a dynamic group removes all existing members from the group, so we recommend creating a brand-new group (with no members), rather than re-using an existing group. As part of the process of converting a group into a dynamic group, you must create at least one…
About Dynamic Groups (CornellAD Group Management)
Setting up a dynamic group can be a complicated process. CIT's Identity Management group will be happy to help you. The simplest way to make someone (or an object) a member of a group is to add them to that group manually. If conditions change and they should no longer be a member, you remove them…
Supported Browsers for Group Management
Quest, the supplier of the ARS console and the web interface, supports the following browsers on Windows: Firefox (current release) Chrome (current release) Safari (current release) Internet Explorer 7 or above (IE 10 and above require compatibility mode) For Mac, the vendor indicates that…
Assign Group Admin Rights (CornellAD Group Management)
There are two levels of control over the properties of a group. The vendor's documentation calls these Primary Owners and Secondary Owners.
Add Members to a Group (CornellAD Group Management)
Direct and Indirect Group Membership Groups can contain both NetIDs and other groups. This results in nested group memberships. Members of the main group are Direct members. Members of the nested groups are Indirect members. Example
Switch a Group from Global to Universal (CornellAD Group Management)
When you create groups, it's a good idea to set them up as universal groups from the start. Groups must be universal in order to mail-enable the group or add a reference group as a member.
Mail-Enable a Group (CornellAD Group Management)
Mail-enabling a CornellAD group allows the group to be used in two additional ways.
Reference Group Suffixes
Every level of the Peoplesoft HR Tree has several references groups associated with it. Here's an overview of what the various suffixes mean. Employee Groups rg.NameOfGroup.employee – all employees including the sub-groups of staff, temporary, pre-arrival, academic, faculty. Does not include…
Reference Groups (CornellAD Group Management)
Groups (in CornellAD) give you a way to assign access rights to network resources. CornellAD reference groups allow you to do this without requiring you to maintain lists of who belongs to each group. If you use reference groups to set permissions (rather than creating a group yourself), when a…
Submit Attestation
Task responsibility Task details Consultant Agree to abide by Cornell's and Central IT policies and guidelines. Once you have a NetID, read the Annual Central IT Comprehensive Attestation and carefully review all the policy links.
Create a Sponsored NetID and Cornell Email Address for the Consultant
A Cornell Network ID (or NetID) is a personal, unique identifier assigned to you. It consists of your initials followed by one or more numbers, for example, xxx99@cornell.edu. You use it, along with a password, to obtain access to online services such as email and administrative systems. Your…
E-Lists of Interest to Technical Support Providers
E-lists (or mailing lists) are an important tool for keeping in touch with other technical support providers. They also offer a forum to discuss and get help with technical issues. To subscribe to an e-list, send the command join to listname-request@cornell.edu, where listname is the full name of…

At Cornell we value your privacy. To view
our university's privacy practices, including
information use and third parties, visit University Privacy.