UAT Overview for Work Package #4 - Masking PII in FSCM

Purpose: This guide is intended to aid Local Security Administrators and Finance staff engaged in User Acceptance Testing  (UAT) the configurations made in the Page and Field Configurator that enable masking of Personally Identifiable Information (PII) in the Financials and Supply Chain Management (FSCM) pillar. These changes impact specific pages in the Accounts Payable (AP), Accounts Receivable (AR), Expenses (EX) and Treasury (TR) modules.

Audience:  Local Security Administrators and Finance staff in AP, AR, EX and TR modules.

Background on Requirements & Solution

The Security Administration System Improvement (SASI) Project Information Guide, contains all background details on the requirements and solution design work that lead us to our User Acceptance Testing effort for this new custom ctcLink Security feature.

UAT Kick-Off - Meeting Information

Monday, October 20, 2025 9:00 am and repeated 3:00 pm

MORNING SESSION: 9:00 A.M. Meeting Information:

Meeting Link: https://sbctc.webex.com/sbctc/j.php?MTID=m8f85f5ca8cff75907e58dccc4715f6d4

Meeting number (access code): 2664 401 0798
Meeting password: qKJKsYWy327 

Meeting Recording: (to be posted after session)

AFTERNOON SESSION: 3:00 P.M. Meeting Information:

Meeting Link: https://sbctc.webex.com/sbctc/j.php?MTID=m6b0f3514efd8e47cc088fd5c3e222ae8

Meeting number (access code): 2664 753 9975
Meeting password: PTkRiZMm792

Meeting Recording: (to be posted after session)

Join either session by phone: 
+1-415-655-0002 US Toll   
+1-206-207-1700 United States Toll (Seattle)   

Presentation Materials: (to be posted after session)

Overview of Masking of PII Data in FSCM Functionality

To help college testers better understand how the new Masking of PII Data security feature works a Quick Reference Guide (QRG) has also been provided in the ctcLink Reference Center, under the SASI Project Information guide and also below:

Link to: Quick Start Guide for Work Package #4

Access to the UAT Environment

The PQA Environment, where UAT activities are taking place, was refresh on September 4th, 2025 from Production.

Employee job data and the state of security User Profiles is as of end of business the day before the snapshot, so any changes (onboarding new hires, offboarding separating employees or adjustments to an individual user's security profile made on or after 09/04/2025 will not be in the PQA environment unless replicated there for testing purposes. 

Requesting Access

To request access to the User Acceptance Test environment (PQA), follow the link below and provide the name, last 4-digits of EMPLID, email, contact phone number and college. Be sure to sign up Local Security Administrators and Finance staff who have the job duty justification to warrant them viewing PII data.

LINK: Access Request (Google Sheet)

Environment Access Instructions

Testing will occur in the PQA environment. Testers will be logging on using their EMPLID. In order to access the impacted pages where the masking feature is applied, testers would need to have one or more of the security roles that enable navigation to these pages. 

The following security roles are affected (PII field masking) by these changes:

Accounts Payable:

  • ZD Accounts Payable Inquiry
  • ZD Purchasing Inquiry
  • ZZ Supplier Entry
  • ZC Supplier Entry
  • ZZ Voucher Entry
  • ZZ Quick Invoice Entry
  • ZZ Voucher Approval
  • ZZ_AP_MANAGER
  • ZZ_AP_SPECIALIST

Accounts Receivable:

  • ZD AR Inquiry
  • ZZ AR Apply Payments
  • ZZ AR Collections
  • ZZ AR Item Entry
  • ZD CC Budget Inquiry

Expenses:

  • ZZ Expenses User Admin
  • ZC Expenses Support
  • ZZ Local Security Admin

Treasury:

  • ZD Treasury Inquiry
  • ZD Treasury Local Config Inq
  • ZZ Treasury Accounting Maint
  • ZZ Treasury Approvals 
  • ZZ Treasury Bank Processing
  • ZZ Treasury Local Config
  • ZZ Treasury Maintenance
  • ZZ Treasury Processing
  • ZZ Treasury Reports
  • ZZ Treasury Workcenter

This environment rests behind an OKTA instance and therefore you will be prompted to establish a password during activation.

Login Access Link: https://oktapreview.ctclink.us/ 

NOTE: If access was already granted, it will be noted in the Google sheet linked above with the word "Granted" - check the google sheet to confirm.

Testers who have already activated themselves in the PQA environment for other testing activities (concurrent UAT activities do occur in this environment) will not be required to re-activate as this is a shared environment for all concurrent UAT activities.

Having Issues Logging In? Contact the Security Team. ([email protected])

Don't Forget: You have the ability to reset your own password in Okta. If encountering password issues, try this first. You might be able to self-help quicker!

Also, if you're struggling after regular service hours, feel free to download the Tester Login Reference Guide (below) to see if the answer you need is in here:

Tester Login Reference Guide .docx

Navigation List with Test Details

The way to verify that masking if working as design during testing is to:

  1. First navigate to the appropriate pages with a security role that has page access and is masked. Either by adding a the security role that grants access to that navigation, or asking a finance staff person who already has this access in Production to navigate to this page and verify the data is masked.
    1. For those participating in testing who should not have access to Personally Identifiable Information (PII) data, they can perform the first test pass.
  2. Next, add the security role [e.g. ZZ FS Unmask SSN] that would "unmask" a particular type of field value (e.g. Social Security Number or Bank Account Number) and verify that the data is now "unmasked."
    1. For those who can and should have access to view Personally Identifiable Information (PII) data, these folks should be the ones testing the 'unmasked' view of the data to confirm they can see it.

ACCOUNTS PAYABLE PAGE NAVIGATION:

ACCOUNTS RECEIVABLE PAGE NAVIGATION:

  • Collections Workbench - Main Menu > Accounts Receivable>Collections Workbench
  • All Deposits - Main Menu > Accounts Receivable>Payments>Review Payments>All Deposits
  • Regular Deposits - Main Menu > Accounts Receivable>Payments>Online Payments>Regular Deposit
  • Express Deposits - Main Menu > Accounts Receivable>Payments>Online Payments>Express Deposit
  • Deposit Control - Main Menu > Accounts Receivable>Payments>Direct Journal Payments>Modify Accounting Entries [navigation differs in QRG]
    • QRG Link: Modifying Direct Journals
    • Navigation in QRG: Navigation: Accounts Receivable > Payments > Direct Journal Payments > Direct Journal Acctg Entries
  • External Items - Main Menu > Accounts Receivable>Receivables Update>Correct Posting Errors> External Items [cannot find a QRG with this path]
    • QRG Link: <not found>
  • Online Items - Main Menu > Accounts Receivable>Receivables Update>Correct Posting Errors> Online Items [cannot find a QRG with this path]
    • QRG Link: <not found>
  • Payment - Main Menu > Accounts Receivable>Receivables Update>Correct Posting Errors> Payment
    • QRG Link: <not found>
  • Transfer - Main Menu > Accounts Receivable>Receivables Update>Correct Posting Errors> Transfer
    • QRG Link:  <not found>
  • Unpost - Main Menu > Accounts Receivable>Receivables Update>Correct Posting Errors> Unpost
    • QRG Link: <not found>

EXPENSES PAGE NAVIGATION:

  • Update T&E Employee Details - Main Menu > Travel and Expenses > Manage Employee Information > Update Employee Detail

TREASURY PAGE NAVIGATION:

  • Accounting Entries - Main Menu > Cash Management>Treasury Accounting>Accounting Entries
    • QRG Link: <not yet found>
  • View/Approve Entries - Main Menu > Cash Management>Treasury Accounting>View/Approve Entries
    • QRG Link: <not yet found>
  • Parse Statement Addenda - Main Menu > Banking>Reconcile Statements>Parse Statement Addenda
    • QRG Link: <not yet found>
  • Bank Account Manager - Main Menu > Banking>Bank Accounts>Bank Account Manager
    • QRG Link: <not yet found>
  • External Accounts - Main Menu > Banking>Bank Accounts>External Accounts
    • QRG Link: <not yet found>
  • Bank Statement Manager - Main Menu > Banking>Bank Statements>Bank Statement Manager
    • QRG Link: <not yet found>
  • Process Reconciliation - Main Menu > Banking>Reconcile Statements>Process Bank Reconciliation
    • QRG Link: <not yet found>
  • Process Statement Accounting - Main Menu > Banking>Reconcile Statements>Process Statement Accounting
    • QRG Link: <not yet found>
  • Reconciliation Manager - Main Menu > Banking>Reconcile Statements> Reconciliation Manager
    • QRG Link: <not yet found>
  • Account Register - Main Menu > Banking > Reports > Account Register
    • QRG Link: <not yet found>
  • EFT Request - Cash Management>Fees and Transfers>EFT Request
    • QRG Link: <not yet found>
  • Enter Transfer Templates - Main Menu>Cash Management>Fees and Transfers>Enter Transfer Templates
    • QRG Link: <not yet found>
  • Fees and Interest - Main Menu > Cash Management>Reports> Fees and Interest
    • QRG Link: <not yet found>
  • Schedule Payment Dispatch - Main Menu > Financial Gateway>Process Payments>Schedule Payment Dispatch
    • QRG Link: <not yet found>
  • High Value Payments - TILE > Fluid Structure Content>Fluid Pages>Treasury Workcenter>High Value Payments FL
    • QRG Link: <not yet found>
Reporting an Issue

Still want to submit an issue? Please report your issue via the Service Desk.

Request Type: ctcLink Support > Special Project Activities > SASI Work Group Testing

Subject (begins with): SASI Work Package #4: <add your words...>

Work Package #4 Issues and Resolutions

Each Issue Will Be Represented by a Title
  • Issue Details: Outline of issue reported by another college during testing.
  • Research: Security team research notes.
  • Resolution: Explanation of the resolution discovered and any retesting needed to validate the solution.

Testing Discovery Information

Issues and Resolutions Discovered During UAT

The following issues were reported during the UAT period. Included is the resolution approach being taken or a notation if research or regression testing is still pending. Please note that the UAT testing period has been extended to allow time for colleges who reported issues that warranted code updates to retest.

Issue Title: [placeholder]

  • Issue Details: Explains what the tester found during testing.
  • Research: Explains the research done by the SBCTC team.
  • Resolution: Provides clear information the on program behavior or material changes that are needed to resolve the issue.

UAT Completion & Sign-Off 

Once colleges have fully completed their User Acceptance Testing and are ready to sign-off the ctcLink Point of Contact will be asked to "sign-off" on behalf of the college.

Link to UAT Sign-Off (MS Form): Sign-Off Survey Form  [link not yet active]

Sign-Off form will be open Monday, October 20, 2025 until Monday, October 27, 2025 @7pm

For a preview of the words in the sign-off survey, open the document below:

UAT Completion Sign-Off for SASI Work Package #0 - Offboarding Automation Phase 2.pdf.docx

All College Sign-Off Status:

Colleges Confirmed Complete with Sign-Off:

  • none

Colleges Awaiting Sign-Off:

  • Bates Technical College
  • Bellevue College
  • Bellingham Technical College
  • Big Bend Community College
  • Cascadia College
  • Centralia College
  • Clark College
  • Clover Park Technical College
  • Columbia Basin College
  • Edmonds College
  • Everett Community College
  • Grays Harbor College
  • Green River College
  • Highline College
  • Lake Washington Institute of Technology
  • Lower Columbia College
  • Olympic College
  • Peninsula College
  • Pierce College District
  • Renton Technical College
  • SBCTC
  • Seattle Colleges
  • Shoreline Community College
  • Skagit Valley College
  • South Puget Sound Community College
  • Spokane District
  • Tacoma Community College
  • Walla Walla Community College
  • Wenatchee Valley College
  • Whatcom Community College
  • Yakima Valley College 

RETURN TO TOP OF GUIDE

0 Comments

Add your comment

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.