Standard 24: Identity Creation and Provisioning Standard

Revision Number:

New Standard
Major Revision of Existing Standard
Minor/Technical Revision of Existing Standard
Reaffirmation/Review of Existing Standard

Effective Date:

9/16/2025

Revised Date:

9/16/2025

Review Date:

9/16/2026

Responsible Division/Department:
Office of the CIO / Information Technology Services

I. OBJECTIVE & PURPOSE

To establish a secure and reliable method of identifying members of the UNF community for access to electronic data resources. This includes defining the triggers and processes for creating digital identities.

II. SCOPE

This standard applies to all individuals who require access to UNF systems and services, including:

Employees (faculty, staff, OPS, and contingent workers)
Students (admitted, enrolled, alumni)
Affiliates/Contingent Workers (contractors, visiting scholars, volunteers)
Applicants (student and employment)

III. STANDARD

A digital identity shall be created for any individual with a recognized UNF affiliation that requires access to university systems. Identity creation is governed by the principle of least privilege and is based on data from authoritative systems.

IV. TRIGGERS FOR IDENTITY CREATION

A UNF digital identity is created/updated when one or more of the following events occur.

4.1. HR System Entry

When an individual is entered into Workday (e.g., as a new hire, OPS, or faculty/staff), a UNF ID is generated 21 calendar days prior to the official start date, and a user account is provisioned.

4.2. Student Admission Processing

When a student is admitted, their record is updated in the student information system. Additional access is granted to support enrollment and academic access.

4.3. Affiliate Sponsorship

When a department submits a Contingent Worker task or an affiliate or sponsored identity (e.g., visiting scholar, contractor), and it is approved by Human Resources.

4.4. Applicant Status

Limited-access identities may be created for applicants to facilitate onboarding, application tracking, or pre-employment processes.

4.5. System Integration Events

Identity creation may be triggered automatically by data feeds from authoritative systems integrated with UNF.

V. TRIGGERS FOR IDENTITY ASSURANCE PROFILES (IAPs)

UNF assigns identity profiles to each identity based on affiliation and access needs. These profiles define the level of identity proofing and credentialing required, including multi-factor authentication and in-person verification for higher assurance levels.

VI. ROLES AND RESPONSIBILITIES

Human Resource and Enrollment Services perform identity proofing, maintain identity data, and credential verification.
UNF oversees provisioning, lifecycle management, and compliance

VII. COMPLIANCE

Failure to comply with this standard will result in delayed access, security risks, or disciplinary action. All identity-related activities must adhere to UNF’s ITS security and data governance standards.