jared/pre-repos
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

updated process.py

Browse Source
This commit is contained in:
jared
2026-02-04 13:18:15 -05:00
parent 5a4c69f32c
commit 8417c66583
14 changed files with 585 additions and 21835 deletions
Download Patch File Download Diff File Expand all files Collapse all files

118
workday_monthly_admin_activities_audit/event_logs.md
View File

@@ -2,129 +2,129 @@
## Dennis Cregan
**[EVT-0001]** - On January6,2026 at 6:51AM EST, Workday administrator DennisCregan edited the account for user CaseySpelman. The edit set Caseys account expiration date to January6,2026 (the prior date was August7,2025). The transaction also configured a large number of notification settings for Casey. For each category listed such as Academic Advising, Accounting Center Job Process, Activity Comments, AdHoc Worker Communications, Add employee to Comp Process, Admissions, Anniversaries, Background Error Notifications, Benefits Notifications, Birthdays, Bonus/Comp/Stock/Merit review, Business Process General Notifications, Calculate and Assign ABC Classification, CheckIns, Consignment Usage Requisitions Notification, Create Inventory Waves, Customer Central, Drive Access Additions/Changes/Removals, E&G Committee Invitation, Evidence of Insurance, Extended Enterprise Campaigns, Financial Aid (Disbursements, General, Packages), General Notifications, Give Feedback, Goal Notes, Integrations, Interview Schedule Communications, Inventory (Average Daily Usage, Count Notification, Preferred Supplier Lead Time, Replenishment), Learning Campaigns/Expiration Periods, Manage Individual Benefit Rates, Marketplace Opportunity Promotion, Metric Review Notification, Onboarding Plan Notifications/Setup, Open Enrollment for Benefits, Par (Average Daily Usage, Lead Time, Recommended Reorder Point), Passive Enrollment Event, Prism Data Acquisition/Workbook Complete Notification, Remote Form I9 Authorized Representative Notification, Repository Document, Request for Quote Notifications, Review Supplier Synchronization Errors, Schedule Distribution (Request Time Off/Absence, Review Time Off), Scheduled Future Processes, Scheduled Live Report Completion, Scheduled Report Completion, Share Career Development Opportunity/Path Notification Category, Share notifications, Student Engagement Monitoring, Student Financials, Student Records, Student Recruiting (Marketing/Transactional), Supplier Contract Expiration/Renewals, Surveys, System Monitor Notifications, Talent Pool Notifications, Time Off, Upcoming Shift, Voluntary SelfIdentification of Disability, Workbook (Access Additions/Removals, Comments, Conversations, Import Failures/Successes, Live Data Scheduled Updates, Notify If Function Notifications, Tasks), Worker Communications, and the custom “~Gigs~” category Casey was set to receive both Email and Mobile Push notifications. The transaction also recorded a 30day grace period for login count, set the session timeout to 2 minutes, and marked the event as completed. All of these changes were applied in a single “Edit Workday Account” transaction executed by DennisCregan.
**[EVT-0001]** - On January6,2026 at 6:51AM EST, Workday administrator DennisCregan edited the user account for CaseySpelman. He changed Caseys account expiration date to January6,2026 and configured a large number of usernotification settings for Casey. The new settings enabled email and mobile push notifications for dozens of Workday event categories (e.g., Academic Advising, Accounting Center Job Process, Birthdays, Benefits Notifications, Time Off, etc.). The transaction was completed successfully as part of the “Edit Workday Account” workflow. No other changes were recorded.
**[EVT-0002]** - On January6,2026 at 9:40AM EST, Workday administrator **Dennis Cregan** (user ID1000054) edited the record for student **Eva DNU SilvaEwan**. He changed her **Universal ID** from the old value **“1115670”** to a new, prefixed value **“DNU1115670.”** The change was made as part of an “Edit Universal Id” transaction and was recorded in the systems audit log. No other attributes were altered, and no attachments or deletions occurred during this transaction. The event was logged under event IDEVT0002 and involved nine rows of data being processed.
**[EVT-0002]** - On January6,2026 at 9:40AM EST, Workday administrator **Dennis Cregan** edited the record for student **DNUEvaDNUSilvaEwan**. He changed the students **Universal ID** from the old value **“1115670”** to the new value **“DNU1115670.”** The edit was performed as part of an “Edit Universal Id” transaction. No other attributes were altered, and no relationships were removed; the only additions recorded were the new Universal ID value and the transaction label. The action was logged under eventIDEVT0002.
**[EVT-0003]** - On January7,2026 at 7:43AM EST a Workday background job called **“Student Prospect Update Event (Default Definition)”** was started. The job ran a batch that matched student records and updated the prospect record for **FolusoAdeluola**. During this process, an administrator named **DennisCregan (user ID1000054)** performed the action “Edit Other IDs” on Folusos record. The edit added a new identifier value **“0306632”** (and associated values “495870520” and “647589765”) to the students list of identifiers. The change also updated the **Academic Record Locked** flag from “Y” to “Y” (no change in that field) and set the **Event Record Moment** to 2026010704:43:36.3770800. The job logged the addition of these identifiers and marked the event as “Successfully Completed.” No other user or admin performed any changes to this record during that transaction. The audit shows the entire batch process, including initiation, approval by an integration administrator, and completion of the student prospect update.
**[EVT-0003]** - DennisCregan (user 1000054) launched a background job called **“Student Prospect Update Event (Default Definition)”** on January7,2026 at 07:43AM EST. The job was started by the **Integration Administrator** and ran as a batch process that matched student records. During this run, the system added two new **Custom Identifier References** to the prospect record for **FolusoAdeluola**: 1. **PSID** a new internal student ID. 2. **SlateID** an external system identifier. These identifiers were added to the record under the “Custom Identifier Reference.for Custom Identifier” relationship. The job also removed the previous set of identifiers (0306632, 495870520, and 647589765) that had been associated with the prospect. No other userinitiated changes were made; the entire update was performed automatically by the integration process.
**[EVT-0004]** - On January7,2026 at 07:44AM EST, Workdays integration administrator (user ID1000054, DennisCregan) launched a background batch job called **“Student Prospect Update Event (Default Definition)”**. The job ran the second step of that workflow, which is a batch/job process named **“Match Students.”** During the job, Workday created a new custom identifier for the student prospect **KyraDinkins**. The identifier value was **0311503**, and it was added to Kyras record as a new “Other ID” (the field is called **“Edit Other IDs”).** The identifier was also linked to the existing identifiers **985663412** and **994089969**, so Kyra now has three IDs in her record. The job updated several attributes of Kyras prospect record, including the creation date (set to 2026010700:00:00) and the event record moment (set to 2026010704:44:05). The event was marked as “Y” for the **Last Updated for Find Duplicate Persons Job** flag, indicating that the system had processed her record in a duplicatesearch routine. No attachments were added or removed. The only removal noted was the old string “0311503985663412994089969” from a prior field value, which was replaced by the new single identifier “0311503.” The transaction was logged under the event ID **EVT0004** and involved 86 rows of audit data.
**[EVT-0004]** - On January7,2026 at 07:44AM EST, Workday administrator **Dennis Cregan** (user ID1000054) performed an “Edit Other IDs” transaction for the student **Kyra Dinkins**. During this edit, a new custom identifier reference was added to Kyras record: **CUSTOM_IDENTIFIER_REFERENCE319695**. The log shows that the previous custom identifier reference (CUSTOM_IDENTIFIER_REFERENCE35003) was removed. The transaction also added the students **PSID** (Personal Student ID) to her list of identifiers and removed an earlier “Reconciled” status from the record. The change was part of a background process launch for the “Student Prospect Update Event” batch job that runs student prospect updates. The event was logged as EVT0004 and involved 86 rows of data being processed.
**[EVT-0005]** - On January7,2026 at 8:08AM EST, Workday administrator DennisCregan edited the Universal ID for employee SarahLittle. The change updated her Student Universal ID from **1117191** to **1117192** and recorded the entry moment as “20260107050842607 0800.” The edit was performed as part of the “Edit Universal Id” transaction and applied to SarahLittles record (Gallaudet University ASL Connect General). The audit log shows the new value, the prior value, and that the XML file contents were excluded from the audit. No attachments were added or removed during this transaction.
**[EVT-0005]** - On January7,2026 at 8:08AM EST, Workday administrator Dennis Cregan edited the universal ID for employee SarahLittle. He changed her Student Universal ID from **1117191** to **1117192**, and updated the corresponding entry moment timestamp. The edit was recorded as an “Edit Universal Id” transaction applied to SarahLittle, and the change was logged under event ID EVT0005. No other attributes were modified or removed during this transaction.
**[EVT-0006]** - On January7,2026 at 8:09AM Eastern Standard Time, Workday administrator **Dennis Cregan** (user ID1000054) edited the student record for **SarahLittle**. The edit changed Sarahs **Student ID** from **1117191** to **1117192** and updated the records “Entry Moment timestamp to reflect the change. The action was performed as part of an **Edit Student ID** transaction and was logged under eventEVT0006. No other fields were added or removed, and no attachments were involved. The change was recorded in the “Student Financials Period Record Student ID (Denormalized)” field.
**[EVT-0006]** - On January7,2026 at 8:09AM EST, Workday administrator Dennis Cregan edited the Student ID for Sarah Little. The system changed her Student ID from1117191 to1117192 and updated the associated entry moment timestamp. The edit was recorded as part of the “Edit Student ID transaction and applied to Sarah Littles record in the ASLConnect program. The change was logged under event IDEVT0006 and involved no attachments or removals.
**[EVT-0007]** - On January7,2026 at 8:09AM EST, Workday administrator DennisCregan edited the account for user SarahLittle. During that transaction, he added a large number of notification categories to Sarahs User Notification Settings essentially enabling almost every available email and mobilepush alert that Workday can send. The changes were applied to Sarahs account (ID1117192, previously 1117191) and included categories such as Academic Advising, Accounting Center Job Process, Activity Comments, Ad Hoc Worker Communications, Add employee to Comp Process, Admissions, Anniversaries, Background Error Notifications, Benefits Notifications, Birthdays, Bonus/Comp/Stock reviews, Business Process General Notifications, CheckIns, Consignment Usage Requisitions Notification, Create Inventory Waves, Customer Central, Drive Access Additions/Changes/Removals, E&G Committee Invitation, Evidence of Insurance, Extended Enterprise Campaigns, Financial Aid (Disbursements/General/Packages), General Notifications, Give Feedback, Goal Notes, Integrations, Interview Schedule Communications, Inventory metrics (Average Daily Usage, Count Notification, Preferred Supplier Lead Time, Replenishment), Learning Campaigns and Expiration Periods, Manage Individual Benefit Rates, Marketplace Opportunity Promotion, Metric Review Notification, Onboarding Plan Notifications and Setup, Open Enrollment for Benefits, Par metrics (Average Daily Usage, Lead Time, Recommended Reorder Point), Passive Enrollment Event, Prism Data Acquisition and Wbucket Complete notifications, Remote Form I9 Authorized Representative notifications, Repository Document, Request for Quote Notifications, Review Supplier Synchronization Errors, Scheduled Future Processes, Schedule Distribution (Request Time Off/Review Time Off), Scheduled Live Report Completion, Scheduled Report Completion, Share Career Development Opportunity and Path notifications, Share notifications, Student Engagement Monitoring, Student Financials, Student Records, Student Recruiting (Marketing/Transactional), Supplier Contract Expiration/Renewals, Surveys, System Monitor Notifications, Talent Pool Notifications, Time Off, Upcoming Shift, Voluntary SelfIdentification of Disability, Workbook Access Additions/Removals, Workbook Comments/Conversations, Workbook Import Failures/Successes, Workbook Live Data Scheduled Updates, Workbook Notify If Function Notifications, Workbook Tasks, Worker Communications, and the custom “~Gigs~” category. All of these were configured to send both email and mobilepush alerts (where applicable). The transaction was completed successfully, with no removals or attachments added.
**[EVT-0007]** - On January7,2026 at 8:09AM EST, Workday administrator Dennis Cregan (user ID1000054) edited the Workday account for employee Sarah Little. The edit created a new usernotification configuration (new value1117192) that added 21 notification settings for Sarah Little. These settings enabled both email and mobilepush notifications for a wide range of Workday events—including academic advising, accounting center jobs, activity comments, benefits notifications, birthdays, bonus and compensation reviews, businessprocess general alerts, inventory updates, learning campaigns, onboarding plans, open enrollment for benefits, timeoff requests, and many others. The change was part of the “Edit Workday Account” transaction and was successfully completed by Dennis Cregan.
**[EVT-0008]** - On January7,2026 at 1:03PM EST (10:03AM PST), Dennis Cregan edited the security segment for an integration system in Workday. He added a new “Edit Integration System Security Segment” task and associated it with the integration system named **ISSS Financial Aid Integrations**. Within that segment, he added two outbound package integrations: **SINT100 Slate Financial Aid Packages Outbound** and **SINT100b Slate Financial Aid Packages FSFSA Outbound**. The audit record shows the new entry time and notes that XML file contents were excluded from the log. No other changes, deletions, or attachments were recorded. The event was logged under event ID EVT0008 and involved five rows of data.
**[EVT-0008]** - DennisCregan edited the security segment for two integration systems in Workday. On January7,2026 at 1:03PM EST he applied the “Edit Integration System Security Segment” action to the integration systems named **ISSS Financial Aid Integrations**, **SINT100 Slate Financial Aid Packages Outbound**, and **SINT100b Slate Financial Aid Packages FSFSA Outbound**. The change was recorded in the audit log under eventEVT0008, showing that the integration system security segment was updated for those three integrations.
**[EVT-0009]** - On January8,2026 at 3:25PM EST, Workday administrator DennisCregan created a new Universal Identifier for employee PhillipHight. The identifier value was **1117202** and the entry moment recorded was 2026010812:25:07.8580800 (the time zone offset). The action added the “Create Universal Id” transaction to PhillipHights record, linking the new Universal Identifier to his person profile. No values were removed or changed; this was a straightforward creation of the new ID for PhillipHight. The event is logged as EVT0009 and involved seven audit rows.
**[EVT-0009]** - On January8,2026 at 3:25PM EST, Dennis Cregan created a new universal identifier for the employee Phillip Hight. The system generated the ID “1117202” and recorded it as Phillip Hights Student Universal ID. The action was performed through the “Create Universal Id” transaction, and the new identifier was added to Phillip Hights record. No previous value existed for this field, and no relationships were removed. The event was logged as EVT0009 with seven audit rows capturing the details of the creation.
**[EVT-0010]** - On January8,2026 at 3:26PM EST, Workday administrator DennisCregan edited the account for user PhillipHight. During that transaction, he enabled a large number of notification categories for Phillips user profile. The changes added email and mobilepush notifications for every listed event type—such as Academic Advising, Accounting Center Job Process, Activity Comments, Ad Hoc Worker Communications, Add employee to Comp Process, Admissions, Anniversaries, Background Error Notifications, Benefits Notifications, Birthdays, Bonus/Comp/Stock reviews, Business Process General Notifications, CheckIns, Consignment Usage Requisitions, Create Inventory Waves, Customer Central, Drive Access changes, E&G Committee Invitations, Evidence of Insurance, Extended Enterprise Campaigns, various Financial Aid notifications, General Notifications, Give Feedback, Goal Notes, Integrations, Interview Schedule Communications, Inventory usage and replenishment alerts, Learning Campaigns, Management of Benefit Rates, Marketplace Opportunity Promotion, Metric Review Notifications, Onboarding Plan and Setup alerts, Open Enrollment for Benefits, Par usage alerts, Passive Enrollment Events, Prism Data Acquisition, Remote Form I9 notifications, Repository Document updates, Request for Quote alerts, Supplier Synchronization errors, Schedule Distribution for time off requests and reviews, Scheduled Future Processes, Report completions, Share Career Development opportunities, Student Engagement Monitoring, Student Financials and Records, Student Recruiting notifications, Supplier Contract expirations/renewals, Surveys, System Monitor alerts, Talent Pool notifications, Time Off and Upcoming Shift alerts, Voluntary SelfIdentification of Disability, Workbook access changes, comments, conversations, import failures/successes, live data updates, and many other categories. All of these were configured to send both email and mobilepush notifications (where applicable). The transaction was completed successfully, with the new settings applied to PhillipHights user notification profile.
**[EVT-0010]** - On January8,2026 at 3:26PM EST, Workday administrator DennisCregan edited the account for employee PhillipHight. He changed Phillips Workday user ID to **1117202** and set the account creation date to midnight on that day. During the same transaction, Dennis configured a large number of usernotification settings for Phillip, adding email and mobile push notifications for dozens of Workday categories (e.g., Gigs, Academic Advising, Accounting Center Job Process, Birthdays, Benefits, TimeOff, etc.). The transaction was completed successfully and logged as “Edit Workday Account.”
**[EVT-0011]** - On January8,2026 at 3:26PM EST, Workday administrator **Dennis Cregan** (user ID1000054) edited the student record for **Phillip Hight**. The change was made in the “Edit Student ID” transaction and replaced Phillips temporary student identifier **TEMP_STUDENT_0002670** with the new permanent ID **1117202**. The edit was recorded as part of Phillip Hights application for a Visiting Consortium Student Nondegree status for the Fall2026, Spring2026 and Summer2026 terms. The audit log shows the new ID value, the timestamp of the change, and that no attachments were added or removed. The event was logged under event IDEVT0011 with eight rows of detail captured in the audit.
**[EVT-0011]** - On January8,2026 at 3:26PM EST, Workday administrator Dennis Cregan edited the Student ID for Phillip Hight. The system replaced Phillips temporary student identifier TEMP_STUDENT_0002670 with the new ID “1117202”. The change was made as part of an “Edit Student ID” transaction that updated the students financial period record and entry moment. The audit shows Dennis Cregan as the user who performed the edit, affecting Phillip Hights record.
**[EVT-0012]** - On January8,2026 at 3:47PM EST (15:47UTC08:00), Workday administrator Dennis Cregan performed an editpermissions transaction. He removed the SelfService: Dining Dollar (diningDollar_wspzsl) permission and the “Student as Self” role from a user, along with the associated viewonly access for that selfservice. At the same time he added the “Edit Permissions” capability and regranted the SelfService: Dining Dollar (diningDollar_wspzsl)” permission to that user. The change was logged under event IDEVT0012 and involved seven rows of security policy relationships. The audit record shows the new permission timestamp (2026010812:47:01.568-0800) and notes that the XML file contents were excluded from the audit.
**[EVT-0012]** - On January8,2026 at 3:47PM EST, user DennisCregan (ID1000054) performed an “Edit Permissions transaction in Workday. He removed the SelfService: Dining Dollar (diningDollar_wspzsl) permission from the “Student as Self” role and removed the associated “View Only and “View Only for SelfService: Dining Dollar (diningDollar_wspzsl)” permissions. He then added the “Edit Permissions” permission to that same SelfService role, effectively granting students the ability to edit their Dining Dollar account. The change was applied to the “Student as Self” security group, and the transaction updated several domainsecurity policy relationships accordingly. The event was logged as EVT0012 and recorded 7 related relationship changes.
**[EVT-0013]** - On January8,2026 at 3:48PM (EST) user **Dennis Cregan** approved a pending security policy change for the “SelfService: Dining Dollar (diningDollar_wspzsl)” domain. The approval added a new entry timestamp of 12:47PM and an evaluation timestamp of 12:48PM (both in the 0800 time zone). The change removed the Student as Self security group from that domain, temporarily revoking access to the Dining Dollar application until a new version is promoted to production (change reference CHG0037158). The action was recorded under the transaction “Activate Pending Security Policy Changes” and marked as approved. No other users or groups were affected by this specific change.
**[EVT-0013]** - On January8,2026 at 12:47PM (Pacific Time), Workday administrator **Dennis Cregan** approved a pending securitypolicy change. The approval activated the “Activate Pending Security Policy Changes” transaction, which in turn published a new security timestamp for the **SelfService: Dining Dollar (diningDollar_wspzsl)** domain. As part of this change, the **StudentasSelf** security group was removed from that domain, temporarily revoking students access to the Dining Dollar application until the new version is promoted to production (change requestCHG0037158). The transaction also updated the tenants security timestamps and recorded the approval action in the audit log.
**[EVT-0014]** - On January8,2026 at 4:00PM EST (16:00:58.749 UTC), Workday administrator Dennis Cregan (user ID1000054) executed a transaction to activate pending security policy changes. During that transaction, the system removed the “Student as Self” security group from the SelfService: Dining Dollar application (security domaindiningDollar_wspzsl). This action was taken to revoke the groups access to the app until a new version is promoted to production (change requestCHG0037158). The removal was recorded as part of the “Activate Pending Security Policy Changes” task, and the event is logged under EVT0014. No other changes or attachments were recorded in this audit entry.
**[EVT-0014]** - On January8,2026 at 4:00PM (EST) DennisCregan activated a pending securitypolicy change. The action removed the “Student as Self” security group from the **SelfService: Dining Dollar (diningDollar_wspzsl)** domain, effectively revoking students access to the Dining Dollar application until a new version is promoted to production (CHG0037158). The change was processed under the “Activate Pending Security Policy Changes” transaction and logged as a securitytimestamp event for the tenant. The removal was recorded at 12:46PM, and the activation took place at 12:59PM. No other users or objects were affected.
**[EVT-0015]** - On January9,2026 at 12:48PM (EST) the Workday system recorded that administrator **Dennis Cregan** created a new *Universal ID* for the student **Jr.Kang** (applying to Gallaudet University as an Undeclared major). The new Universal ID value was **1117211**. This action added the identifier to Jr.Kangs person record and linked it to the students application for the Fall2026, Spring20272029 and Summer20262028 terms. No attributes were removed, and the transaction was logged as “Create Universal Id” with event IDEVT0015. The change affected 28 rows in the audit log, reflecting the various term and status fields updated for the new identifier.
**[EVT-0015]** - On January9,2026 at 12:48PM EST, Workday administrator Dennis Cregan created a new Universal Identifier for the student Jr.Kang.” The system recorded that the person now has a Universal Identifier (Person.has Universal Identifier) and linked this identifier to the students record in the “Kang” instance. The new Universal ID value was **1117211**, and it was added to the students profile under “Universal Identifier.for Person.” The transaction, labeled **Create Universal Id**, was executed as part of the “Create Universal Id” task behavior. No values were removed, and the change was logged under event IDEVT0015 with a total of 28 rows affected.
**[EVT-0016]** - On January9,2026 at 12:49PM (EST) the Workday administrator **Dennis Cregan** edited the account of user **Jr.Kang** (user ID 1117211). During that single “Edit Workday Account” transaction, Dennis added a large set of notification preferences for Jr.Kang. The changes enabled email and, in many cases, mobilepush notifications for dozens of Workday business processes and events—such as Academic Advising, Accounting Center Job Process, Activity Comments, Ad Hoc Worker Communications, Add employee to Comp Process, Admissions, Anniversaries, Background Error Notifications, Benefits Notifications, Birthdays, Bonus/Comp/Stock reviews, Business Process General notifications, CheckIns, Inventory alerts, Learning Campaigns, Onboarding events, Open Enrollment for Benefits, Par usage alerts, Passive Enrollment Events, Prism data acquisition, Remote Form I9 authorizations, Repository Documents, Request for Quote notifications, Scheduled Reports, Share Career Development opportunities, Student Financials and Records, Supplier Contract expirations/renewals, Surveys, System Monitor alerts, Talent Pool notifications, Time Off, Upcoming Shift, Voluntary SelfIdentification of Disability, Workbook events, and many others. All of these notification categories were configured to send email; for most of them, mobilepush notifications were also enabled. No preferences were removed or changed to a different setting—only new notification channels were added for Jr.Kangs account. The transaction was completed successfully at 12:49:22.581PM EST.
**[EVT-0016]** - On January9,2026 at 12:49PM EST, Workday administrator DennisCregan edited the account of user Jr.Kang (user ID1117211). During that edit, Dennis configured a large number of notification preferences for Jr.Kang, enabling both email and mobilepush notifications for dozens of Workday event categories (such as “Gigs,” “Academic Advising,” “Accounting Center Job Process,” “Benefits Notifications,” “Time Off,” “Workbook Access Additions,” etc.). The changes were made as part of the “Edit Workday Account” transaction and were recorded under event IDEVT0016. No notifications were removed; only new notification settings were added for Jr.Kangs account.
**[EVT-0017]** - On January9,2026 at 12:49PM Eastern Standard Time, Workday administrator Dennis Cregan (user ID1000054) edited the Student ID for a student record. The original temporary ID “TEMP_STUDENT_0002621” was replaced with the new permanent ID 1117211. The change was made as part of an “Edit Student ID” transaction that affected 56 rows in the system. The update was recorded under eventEVT0017 and applied to the student “Jr. Kang” (who is applying for an undeclared major at Gallaudet University). No attachments were added or removed, and the XML file contents were excluded from the audit log.
**[EVT-0017]** - On January9,2026 at 12:49PM EST, Workday administrator **Dennis Cregan** performed an “Edit Student ID” transaction for the student **Jr.Kang** (applying to “Kang”). The system changed Jr.Kangs student identifier from the temporary value **TEMP_STUDENT_0002621** to the new permanent ID **1117211**. The audit records show that this edit was recorded in the “Student ID” attribute and that the transaction was logged under eventEVT0017. No other attributes were altered, and no attachments or removals occurred during this action.
**[EVT-0018]** - On January16,2026 at 5:40AM EST, Workday administrator DennisCregan edited the account for user DaleShepard. The edit changed Dales personal preferences and, most notably, added a large number of notification categories to his User Notification Settings. The changes enabled Dale to receive email and mobilepush alerts for dozens of business processes, including academic advising, accounting job processing, activity comments, hiring communications, benefits notifications, birthdays, performance reviews, inventory updates, learning campaigns, onboarding events, timeoff requests, and many other system alerts. The transaction was completed successfully, with the new settings taking effect immediately for DaleShepards account.
**[EVT-0018]** - On January16,2026 at 5:40AM EST, Workday administrator DennisCregan edited the user account for DaleShepard. During that transaction, he added a large set of notification preferences to Dales account—configuring email and mobilepush alerts for dozens of Workday events (such as “Anniversaries,” “Benefits Notifications,” “Time Off,” “Student Records,” etc.). The changes were recorded under the “Edit Workday Account” workflow and completed successfully. No items were removed; only new notification settings were added to Dales profile.
**[EVT-0019]** - On January17,2026 at 6:18AM Eastern Standard Time, Workday administrator Dennis Cregan (user ID1000054) added a new selfservice permission set called “Dining Dollar (diningDollar_wspzsl)” to the security role “Student as Self. The change created a viewonly access level for that permission set, allowing students to see the Dining Dollar feature but not modify it. The audit records show that the permission was added as part of an “Edit Permissions” transaction, and the new entry time stamp was recorded in Pacific Time (2026011703:18:58.064-0800). No previous values were replaced, and no items were removed. The event was logged under event IDEVT0019 with seven related relationship entries describing how the new permission grants access to various security policies and groups.
**[EVT-0019]** - On January17,2026 at 6:18AM EST (UTC08:00), Dennis Cregan added the “Edit Permissions” permission to the SelfService role **Dining Dollar (diningDollar_wspzsl)** for the user group **Student as Self**. This change granted students who are acting on their own account the ability to edit permissions for the Dining Dollar selfservice application, while also giving them viewonly access to that same application. The action was recorded as an “Edit Permissions” transaction in the Workday audit log.
**[EVT-0020]** - On January17,2026 at 6:19AM EST (Pacific time 3:19AM), Workday administrator Dennis Cregan added a new security group called **“ISSG Dining Dollar Extend.”** He also granted this group the following permissions: * Access to the **“Reports: Student Financial Account”** report. * A “View Only” permission for that report, meaning members can only read the data. These permissions were applied through a **Maintain Permissions for Security Group** transaction, which updated the domain security policy to grant the new group access to the report and its viewonly rights. No permissions were removed, and no attachments were added. The event is recorded as EVT0020 with seven related changes logged.
**[EVT-0020]** - Dennis Cregan updated the “ISSG Dining Dollar Extend” security group on January17,2026 at 6:19AM EST. He added several permissions to the group: * Granted the “View Only” permission for the “Reports: Student Financial Account” report. * Added the “Maintain Permissions for Security Group” task behavior to the group, allowing it to manage other security groups. * Assigned the “View Only for Reports: Student Financial Account” permission, giving readonly access to that specific report. These changes were recorded under the event IDEVT-0020 and involved updating domain security policy permissions for the group. No items were removed, and no attachments were added.
**[EVT-0021]** - On January17,2026 at 06:21AM EST, Workday administrator DennisCregan activated pending security policy changes for the Gallaudet tenant. The activation added two new viewonly permissions: 1. The “ISSG Dining Dollar Extend” security group was granted viewonly access to the **Reports: Student Financial Account** domain. 2. The “Student as Self” role was granted viewonly access to the **SelfService: Dining Dollar (diningDollar_wspzsl)** domain. These changes were recorded in the audit log with comment codeCHG0037161. The activation timestamp was 2026011703:20:09-0800, and the entry moment was 2026011703:21:51-0800. The log shows the transaction “Activate Pending Security Policy Changes” was processed, and the security timestamps for tenant setup were updated accordingly. No other attributes or relationships were modified.
**[EVT-0021]** - On January17,2026 at 6:21AM EST, Workday administrator Dennis Cregan activated pending security policy changes for the Gallaudet tenant. The activation added two new domainlevel permissions: 1. **Reports: Student Financial Account** the “ISSG Dining Dollar Extend” security group was granted viewonly access. 2. **SelfService: Dining Dollar (diningDollar_wspzsl)** the “Student as Self” role was granted viewonly access. These changes were recorded in the audit log with a comment referencing change request CHG0037161. The activation replaced an earlier processing instance dated January8,2026 and updated the tenants security timestamp. No other objects were modified.
**[EVT-0022]** - On January17,2026 at 6:45AM EST, Workday administrator DennisCregan edited the account for user KelbyBrick. During that transaction, he added a large number of notification categories to Kelbys user notification settings—over 200 different event types such as “Academic Advising,” “Benefits Notifications,” “Birthdays,” “Time Off,” and many others. Each of these categories was configured to send notifications via Email, and for most of them also via Mobile Push Notification. The change was recorded as a single “Edit Workday Account” transaction that completed successfully at 6:45AM. No notifications were removed; only new notification settings were added to Kelbys account.
**[EVT-0022]** - DennisCregan (user ID1000054) edited the Workday account for employee **Kelby Brick** on January17,2026 at 06:45AM EST. During that transaction he updated Kelbys usernotification settings, adding a long list of notification categories (e.g., “Gigs,” “Academic Advising,” “Accounting Center Job Process,” “Birthdays,” “Benefits Notifications,” “Time Off,” etc.) and specifying that each of those notifications should be sent via **Email** and, for many categories, also via **Mobile Push Notification**. The change was recorded as part of the “Edit Workday Account” transaction and completed successfully. No other attributes were changed or removed.
**[EVT-0023]** - On January17,2026 at 6:56AM Eastern Standard Time, Workday administrator Dennis Cregan (user ID1000054) edited the Universal ID for student Gabrielle Vidmar. The change replaced her previous Student Universal ID “1117251” with the new value “1117249”. The edit was performed as part of an “Edit Universal Id” transaction and updated the students record in several related tables (Academic Record, Program of Study indexes, etc.). No other attributes were modified and no attachments or removals occurred. The event was logged under IDEVT0023 with 14 rows affected.
**[EVT-0023]** - On January17,2026 at 6:56AM EST, Workday administrator Dennis Cregan (user ID1000054) edited Gabrielle Vidmars Universal ID. The change replaced the old Student Universal ID “1117251” with a new value of “1117249”. The edit was performed as part of the “Edit Universal Id” transaction. No other attributes were altered, and no attachments were added or removed. The event was logged as EVT0023.
**[EVT-0024]** - On January17,2026 at 6:57AM EST, Workday administrator Dennis Cregan (user ID1000054) edited the Student ID for Gabrielle Vidmar. The change replaced the old Student ID1117251 with a new value of1117249. The edit was recorded as the “Edit Student ID” transaction and applied to Gabrielle Vidmars Fall2026, Spring2026, Summer2026 and other related enrollment records. The audit shows the entry moment timestamp (2026011703:57:28-0800) and notes that the XML file contents were excluded from the audit. No other attributes or attachments were added or removed, and the event is logged under event IDEVT0024.
**[EVT-0024]** - On January17,2026 at 6:57AM EST, Workday administrator Dennis Cregan edited the Student ID for Gabrielle Vidmar. The students ID was changed from 1117251 to 1117249. This change was recorded as part of the “Edit Student ID” transaction and applied to Gabrielle Vidmars record for the Fall2026 term (and related program entries). The audit shows that the transaction was processed and executed, with no other relationships added or removed. No attachments were added. The event (EVT0024) logged 12 rows of data related to the edit.
**[EVT-0025]** - On January17,2026 at 6:58AM EST, Workday administrator DennisCregan edited the account for user GabrielleVidmar. In that transaction he added a large set of notification categories to her User Notification Settings, enabling Gabrielle to receive email and mobilepush alerts for a wide range of business processes (e.g., Academic Advising, Benefits Notifications, TimeOff requests, Inventory updates, Student records, etc.). The change was recorded as a single “Edit Workday Account” transaction that completed successfully.
**[EVT-0025]** - On January17,2026 at 6:58AM EST, Workday administrator Dennis Cregan edited the account for user Gabrielle Vidmar. During that transaction, he configured a large number of notification settings for Gabrielles user profile—adding email and mobilepush notifications for dozens of Workday event categories (such as “Academic Advising,” “Benefits Notifications,” “Time Off,” “Student Recruiting Marketing,” etc.). The edit was performed as part of the standard “Edit Workday Account” workflow, and the changes were applied to Gabrielle Vidmars account. No items were removed; only new notification configurations were added.
**[EVT-0026]** - On January21,2026 at 12:18PM (EST) the system recorded that a background process was launched to update student prospect records. The event, called “Student Prospect Update Event (Default Definition)”, ran a batch job named “Match Students” to reconcile student identifiers. The change was made by Workday Integration Administrator DennisCregan (user ID1000054). He edited the “Other IDs” for a student prospect named **Jaycob Sink**. The edit added a new custom identifier reference (CUSTOM_IDENTIFIER_REFERENCE321093) and updated the creation date to20260121. The prior creation date was 2026012018:01:34. The process also marked the student prospect as “In Progress” and later “Successfully Completed”. No attachments were added, and no records were removed except the temporary reconciliation flag. In short: DennisCregan triggered an automated batch job that updated Jaycob Sinks student prospect record, adding a new identifier and marking the update as completed.
**[EVT-0026]** - On January21,2026 at 12:18PM (EST) the integration administrator **Dennis Cregan** launched a background process that updated student prospect records. The process started the “Student Prospect Update Event (Default Definition)” workflow for the prospect **JayC. Sink** and ran the batch job “Match Students. During that workflow a new custom identifier was created for JayC. Sink: the system added the reference **CUSTOM_IDENTIFIER_REFERENCE321093** to his record. The identifier was added as a “Custom Identifier Reference” for the custom ID type “SlateID.” The audit shows that the event moved through several steps—initiation, approval by the integration administrator, batch/job execution, and completion. The process logged that it was “In Progress” and later marked the job as “Successfully Completed.” No attachments were added, and no other fields were changed except the creation of this custom identifier. The event is recorded under event ID **EVT0026** and involved 68 rows of data.
**[EVT-0027]** - On January23,2026 at 8:25AM EST, Workday administrator DennisCregan edited the account for employee EmilyWolski. During that transaction he added a large number of notification categories to her usernotification settings, enabling Emily to receive email and mobile push alerts for events such as academic advising, benefits updates, timeoff requests, onboarding activities, inventory notifications, student records, and many other business process events. The changes were applied to Emilys account as part of the “Edit Workday Account” transaction, which was completed successfully.
**[EVT-0027]** - On January23,2026 at 8:25AM EST, Workday administrator Dennis Cregan edited the account for employee EmilyWolski. During that transaction he configured a large number of usernotification settings for her, adding email and mobilepush notifications for dozens of event categories (such as Gigs, Academic Advising, Accounting Center Job Process, Activity Comments, Comp Process additions, Admissions, Anniversaries, Background Error Notifications, Benefits, Birthdays, Bonus/Comp reviews, Business Process General notifications, CheckIns, Consignment Usage Requisitions, Customer Central, Drive Access changes, E&G Committee invitations, Evidence of Insurance, Extended Enterprise Campaigns, Financial Aid disbursements and packages, General notifications, Give Feedback, Goal Notes, Integrations, Interview Schedule communications, Inventory alerts, Learning campaigns and expirations, Marketplace promotions, Metric reviews, Onboarding plan notifications, Open Enrollment for benefits, Par usage alerts, Passive enrollment events, Prism data acquisition, Remote Form I9 notifications, Repository documents, Request for Quote alerts, Supplier synchronization errors, Scheduled processes and reports, Schedule distribution requests, Share career development opportunities, Student engagement monitoring, Student financials and records, Supplier contract expirations and renewals, Surveys, System monitor alerts, Talent pool notifications, Time Off, Upcoming shift, Voluntary selfidentification of disability, Workbook access changes, workbook comments and conversations, import failures/successes, live data updates, function notifications, and worker communications. All of these were added to EmilyWolskis notification preferences during that edit transaction.
**[EVT-0028]** - On January23,2026 at 10:59AM Eastern Standard Time, Workday administrator Dennis Cregan created a new security group called **Gallaudet and Clerc HR UBSG.”** The group was assigned the internal ID **USERBASED_SECURITY_GROUP3237** and its creation timestamp was recorded as 2026012307:59:56.5710800 (UTC8). No prior values existed because this was a new object. The event, identified as EVT0028, logged the creation transaction and noted that the users language preference was English (United States). No attributes were removed or changed, and no attachments were added. The action was performed by Dennis Cregan (user ID1000054) as a Workday admin.
**[EVT-0028]** - On January23,2026 at 10:59AM EST, user **Dennis Cregan** (ID1000054) created a new security group in the Gallaudet and Clerc HR UBSG tenant. The group was given the name **USERBASED_SECURITY_GROUP3237** and its creation was recorded as a “Create Security Group” transaction. The event was logged in English (United States) language and the groups entry moment timestamp is 2026012307:59:56.5710800. No prior values existed, and no relationships were removed; the only changes recorded are the addition of the new group.
**[EVT-0029]** - On January23,2026 at 11:02AM EST, Workday administrator Dennis Cregan edited the “Gallaudet and Clerc HR UBSG” userbased security group. He added a comment to the group that reads: “This security group will be used by intersection security groups to exclude Gallaudet and Clerc HR employees when they have specific role(s), such as Manager or UI. The change was recorded in the audit log with event IDEVT0029. No users were added or removed from the group; only the comment field was updated. The transaction was processed as an “Edit UserBased Security Group” action, and the new comment value was stored in the system.
**[EVT-0029]** - On January23,2026 at 11:02AM EST (08:02AM PST), Dennis Cregan edited the “Gallaudet and Clerc HR UBSG” security group. He added a comment that the group will be used by intersection security groups to exclude Gallaudet and Clerc HR employees who hold specific roles such as Manager or UI. The edit was performed through the “Edit User-Based Security Group” transaction, and Dennis Cregan is listed as both the user who performed the action and the administrator. No items were removed, and no attachments were added. The event is recorded as EVT0029.
**[EVT-0030]** - On January23,2026 at 11:04AM (EST) an administrator named DennisCregan added seven users to the “Gallaudet and Clerc HR UBSG” userbased security group. The users added were: - AnthonyBalogh - BeckyWhittington - ChristinaShenAustin (appears as “Christina Shen” in the applied list) - RachelParker - YunheBai - OloladeOlasanoye - KellyFournier - StephanieBettencourt The action was recorded as an “Assign Users to UserBased Security Group” transaction, with the event type “UserBased Group Change.” The change took effect immediately (effective date 2026012300:00:00 -0800) and was logged in the systems audit trail. No users were removed, and no attachments were added. The event ID for this change was EVT0030.
**[EVT-0030]** - DennisCregan added seven employees to the “Gallaudet and Clerc HR UBSG” userbased security group on January23,2026 at 11:04AM EST. The users added were: * BeckyWhittington * AnthonyBalogh * ChristinaShenAustin (appears as “Christina Shen” in the applied list) * RachelParker * YunheBai * OloladeOlasanoye * KellyFournier * StephanieBettencourt The action was recorded as a “Assign Users to UserBased Security Group” transaction, and the event log shows that the group membership was updated for each of those users. No users were removed, and the change was performed by DennisCregan (user ID1000054).
**[EVT-0031]** - On January23,2026 at 11:04AM Eastern Standard Time, user **Dennis Cregan** (employee ID1000054) created a new security group in Workday. The group was named **“NonHR Manager ISG”** and received the internal ID **INTERSECTION_SECURITY_GROUP-3-21**. The creation event recorded the entry moment as 2026012308:04:33.2190800 (Pacific Time). No prior values existed because this was a new object, and the XML definition of the group was not included in the audit log. The action was logged under event IDEVT0031 and involved adding the group to the system with English (United States) as the user language. No relationships were removed or modified; only the new group was added.
**[EVT-0031]** - On January23,2026 at 11:04AM Eastern Standard Time, DennisCregan created a new security group called **“NonHR Manager ISG.”** The action was performed through the Workday “Create Security Group” transaction. The groups internal ID is **INTERSECTION_SECURITY_GROUP321** and the entry moment recorded was 2026012308:04:33.2190800 (UTC8). No other changes were made to the group at that time.
**[EVT-0032]** - On January23,2026 at 11:05AM EST (08:05AM PST), Dennis Cregan edited an intersection security group in Workday. He created a new intersection called “Gallaudet and Clerc HR UBSG” that excludes employees who have the Manager role from the “NonHR Manager ISG” security group. The change added a comment describing the purpose of the intersection and recorded the timestamp in UTC8 format. No other attributes were changed, and no items were removed. The event was logged under EVT0032.
**[EVT-0032]** - On January23,2026 at 11:05AM EST, user Dennis Cregan (ID1000054) edited the “Intersection Security Group” named **Gallaudet and Clerc HR UBSG**. He added the role **Manager** to this group and set it to exclude all employees who are both in the Gallaudet and Clerc HR tenant and have the Manager role. The change was recorded as part of the “Edit Intersection Security Group” transaction, and a comment noting that this intersection security group is used to exclude all Gallaudet and HR employees with the Manager role was added. No items were removed, and no attachments were added. The event ID for this action is EVT0032.
**[EVT-0033]** - On January23,2026 at 11:05:58AM Eastern Standard Time, a Workday administrator named Dennis Cregan (user ID1000054) created a new security group called **“NonHR Unit Initiator ISG.”** The group was given the internal ID **INTERSECTION_SECURITY_GROUP322** and its creation timestamp was recorded as2026012308:05:58.2260800 (Pacific Time). The action was logged under event IDEVT0033, and the users language setting for the transaction was English (United States). No prior values existed because this was a new object, and no items were removed or attached during the transaction.
**[EVT-0033]** - On January23,2026 at 11:05AM Eastern Standard Time, user DennisCregan (ID1000054) created a new security group in Workday. The group was given the internal IDINTERSECTION_SECURITY_GROUP322 and the display name “NonHR Unit Initiator ISG.” The creation transaction was recorded as a “Create Security Group” event (EVT0033). No other attributes were changed, and the action was performed in the default English (United States) language setting. No attachments were added, and no relationships were removed. The audit shows the transaction was processed successfully for the task behavior and associated with the users language setting.
**[EVT-0034]** - On January23,2026 at 11:06AM Eastern Standard Time, Workday administrator Dennis Cregan (user ID1000054) edited an intersection security group. He added the “Gallaudet and Clerc HR UBSG” security group, the “NonHR Unit Initiator ISG” security group, and the role “Unit Initiator” to this intersection. The change was recorded as a new comment: “This intersection security group is used to exclude all Gallaudet and HR employees with the Unit Initiator role.” The edit also updated the groups XML definition (the file contents were excluded from audit). No items were removed. The transaction was logged under event IDEVT0034 and involved six related relationship changes that set the security group to exclude the specified tenanted groups.
**[EVT-0034]** - On January23,2026 at 11:06AM (EST) DennisCregan edited the “Intersection Security Group” that is used to exclude employees from certain security permissions. In that edit he added three items to the group: “Gallaudet and Clerc HR UBSG”, “NonHR Unit Initiator ISG”, and the role “Unit Initiator”. The change was recorded as part of the transaction “Edit Intersection Security Group” and is intended to prevent all Gallaudet and HR employees who hold the Unit Initiator role from receiving the permissions granted by this security group.
**[EVT-0035]** - On January26,2026 at 6:35AM Eastern Standard Time, Workday administrator Dennis Cregan (user ID1000054) edited the Universal ID for employee Andrew Greenman. The change replaced Andrews previous Universal ID of1117188 with a new value of1108237. The audit log records the transaction as “Edit Universal Id” and shows that the entry moment was recorded as2026012603:35:36.4320800 (Pacific Time). No attachments were added or removed, and the change was processed as part of a standard transaction. The event is identified by EVT0035 and involves three attributes: Entry Moment, Universal ID, and XML (file contents excluded from the audit).
**[EVT-0035]** - On January26,2026 at 6:35AM EST, DennisCregan (user ID1000054) edited the UniversalID for employee AndrewGreenman. The change updated Andrews UniversalID from **1117188** to **1108237**. The edit was recorded as the “Edit UniversalId” transaction and applied to AndrewGreenmans record. The audit shows the entry moment timestamp, the new UniversalID value, and notes that XML file contents were excluded from the audit. No other attributes or relationships were altered.
**[EVT-0036]** - On January26,2026 at 6:36AM EST, Workday administrator DennisCregan edited the account for user AndrewGreenman. During that transaction, he added a large number of notification categories to Andrews user profile—over 500 individual settings. These include email and mobilepush notifications for events such as Academic Advising, Accounting Center Job Process, Activity Comments, AdHoc Worker Communications, Add Employee to Compensation Process, Admissions, Anniversaries, Background Error Notifications, Benefits Notifications, Birthdays, Bonus/Compensation reviews, Business Process General notifications, CheckIns, Consignment Usage Requisitions, Create Inventory Waves, Customer Central, Drive Access changes, E&G Committee invitations, Evidence of Insurance, Extended Enterprise Campaigns, various Financial Aid notifications, General Notifications, Give Feedback, Goal Notes, Integrations, Interview Schedule Communications, Inventory usage and replenishment alerts, Learning Campaigns, Management of Individual Benefit Rates, Marketplace Opportunity Promotion, Metric Review notifications, Onboarding Plan and Setup alerts, Open Enrollment for Benefits, Par usage alerts, Passive Enrollment events, Prism data acquisition, Remote Form I9 notifications, Repository Document updates, Request for Quote alerts, Supplier synchronization errors, Schedule Distribution (timeoff requests and reviews), Scheduled Future Processes, Report completions, Share Career Development/Path notifications, Student Engagement Monitoring, Student Financials and Records, Student Recruiting communications, Supplier Contract expirations/renewals, Surveys, System Monitor notifications, Talent Pool alerts, Time Off and Upcoming Shift alerts, Voluntary SelfIdentification of Disability, Workbook access changes, comments, conversations, imports, live data updates, and worker communications. All of these were configured to send either email or mobilepush notifications (or both) to AndrewGreenman. The transaction was completed successfully at 6:36AM EST.
**[EVT-0036]** - On January26,2026 at 06:36AM EST, Workday administrator DennisCregan edited the Workday account for employee AndrewGreenman. During that “Edit Workday Account” transaction, Dennis configured Andrews usernotification settings. The change added a long list of notification categories for Andrew, enabling both email and mobilepush alerts for each category (for example, Gigs, Academic Advising, Accounting Center Job Process, Activity Comments, Benefits Notifications, Birthdays, Bonus/Comp review, Business Process General notifications, CheckIns, Student Recruiting Marketing, Time Off, Upcoming Shift, and many others). The transaction completed successfully with no removals or attachments added.
**[EVT-0037]** - On January28,2026 at 10:15AM (EST) DennisCregan started a background process called **“Student Prospect Update Event (Default Definition)”** for the student prospect **MarkKillian**. The process was launched as part of the **“Edit Other IDs”** workflow, which is used to add or change identifiers for a student. During the run: * A new **Custom Identifier Reference** (ID321213) was created and linked to MarkKillians record. * The system added the identifier value **681374436** to MarkKillians profile. * The workflow moved through its standard steps: initiation, approval by an Integration Administrator, and a batch job that performs the **“Match Students”** operation. * The match job ran on January30,2026 and marked the record as **“Unmatched”** (no existing student matched). * The event logged that the record was **“Successfully Completed”** and the transaction was marked **“In Progress”** during processing. The audit shows that DennisCregan performed the action, and the changes were applied to MarkKillians student prospect record. No attachments were added or removed, and the only removal noted was a previous identifier reference that was replaced by the new one. The entire transaction involved 69 rows of data changes, all captured in the Workday audit log.
**[EVT-0037]** - On January28,2026 at 10:15AM EST, Workday administrator DennisCregan (user ID1000054) performed an “Edit Other IDs” transaction for the student prospect **MarkKillian**. During this transaction, a new custom identifier reference was added to Marks record: **CUSTOM_IDENTIFIER_REFERENCE321213**. This identifier was created as part of the “Student Prospect Update Event (Default Definition)” background process that launched a batch job called **Match Students**. The event was initiated by the Integration Administrator and progressed through approval, batch processing, and completion stages. No other identifiers were removed or changed; the only removal noted was a prior identifier “376542395681374436” that had been reconciled earlier. The transaction logged 69 rows of audit data and was recorded under event IDEVT0037.
**[EVT-0038]** - On January28,2026 at 2:06PM EST, Workday administrator DennisCregan edited the account for user StephanieBaran. The edit updated her account expiration date from January11,2024 to January28,2026 and set a new “Grace Period Login Count” of 30 days. In addition, Dennis configured Stephanies notification settings to receive email and mobilepush alerts for a wide range of Workday events—everything from academic advising, benefits notifications, and timeoff requests to inventory updates, student records, surveys, and system monitor alerts. All of these notification categories were added to Stephanies user profile during the same transaction, which was logged as eventEVT0038.
**[EVT-0038]** - On January28,2026 at 2:06PM EST, Workday administrator **Dennis Cregan** edited the Workday account of user **StephanieBaran**. During that edit, Dennis changed several attributes on Stephanies account: * Set the **Account Expiration Date** to 20260128. * Updated various workflow and transaction timestamps (e.g., “Completed Date,” “Creation Date,” “Due Date,” etc.). * Configured a large number of **User Notification Settings** for Stephanie, enabling both email and mobilepush notifications across dozens of Workday categories (e.g., Academic Advising, Accounting Center Job Process, Birthdays, Benefits Notifications, Time Off, Student Recruiting, etc.). * Selected **English (United States)** as Stephanies preferred user language. The action was performed under the “Edit Workday Account” transaction, and it completed successfully on that same day.
## Joseph DeSiervi
**[EVT-0040]** - On January8,2026 at 3:46PM Eastern Standard Time, JosephDeSiervi (user ID1003153) performed an administrative action in Workday. He edited a Business Process Security Policy and added the “Approve” permission to that policy for the role “ProcurementDataEntrySpecialist.” The change was recorded as eventEVT0040. The new entry time for the policy was set to 12:46PM Pacific Time (2026010812:46:39.163-0800). The XML file contents of the policy were excluded from the audit log, so only the timestamp and the fact that the “Approve” permission was added are visible. No other attributes were changed or removed, and no attachments were added. The action was completed by JosephDeSiervi as an administrator.
**[EVT-0040]** - On January8,2026 at 3:46PM EST, JosephDeSiervi (user ID1003153) edited a Workday businessprocess security policy. In that edit he added the “Approve” permission to the policy, linked it to the “Edit Business Process Security Policy” task behavior, and assigned that permission to the “ProcurementDataEntrySpecialist” security group. The change was recorded as a new entry moment and the XML contents of the policy were updated (the file contents themselves are not shown in the audit). No items were removed. The event was logged under event IDEVT0040.
**[EVT-0041]** - On January8,2026 at 3:48PM (EST) JosephDeSiervi performed an administrative action in Workday. He activated a pending securitypolicy change that added the “Procurement Data Entry Specialist” role the ability to approve any purchaseorder change orders (the change is referenced as INC0164817/CHG0037156). The activation was logged under the task “Activate Pending Security Policy Changes” and applied to the tenant named “gallaudet.” The event was recorded as EVT0041. No other attributes were changed, and no attachments or additional relationships were added beyond the securitypolicy activation.
**[EVT-0041]** - On January8,2026 at 3:48PM (EST) JosephDeSiervi activated a pending securitypolicy change. The activation added the “Procurement Data Entry Specialist” role with permission to approve any BP purchaseorder change orders (INC0164817/CHG0037156). The policy activation was logged as part of the “Activate Pending Security Policy Changes” transaction, and it updated the tenants security timestamps. The change was made by JosephDeSiervi (user ID1003153) and recorded under eventEVT0041.
## Julie Longson
**[EVT-0057]** - On January6,2026 at 4:11p.m. (UTC8) Julie Longson, a Workday administrator, ran an **AssignRoles** workflow. The workflow added several new role assignments for a group of 21 users, including: * **Shelby Bean** given the “Financial Aid Counselor” role and additional access to unofficial student transcripts, a financialaid specialist role, and two levels of studentassistant roles. * **JohnDavis** assigned the “Director, Outreach” role effective January6,2026. * Other staff such as Amanda Jackson, Dylan Westbury, Na Zhuo, Sydney Padgett, Robert Sanchez, Patrick Rolfe, Keith Grant, Zeshan Shafiq, Gemma Gabor, Caroline Pezzarossi, Lindsay Buchko, Caroline Finklea Vizzuto, Michael Tota, Khadijat Rashid, Emelia Beldon, Mercedes Olson, Corey Burton, Shanna Cooley, and Vicki Cheeseman received the same set of roles that Shelby Bean was granted. The event completed automatically with no manual intervention required after the workflow started. No roles were removed; all changes were additions to the users existing role sets. The transaction was logged under event ID **EVT0057** and recorded as an “AssignRoles Add/Remove” action.
**[EVT-0057]** - On January6,2026 at 4:11p.m. (EST) Julie Longson performed an “Assign Roles” transaction in Workday. She added several role assignments to the user **Shelby Bean (P004080)**, giving her: * Unofficial Student Transcript Viewer RBSGC and RBSGU * Financial Aid Specialist RBSGC (effective 01/06/2026) * Financial Aid Student Assistant LevelI RBSGC (effective 01/06/2026) * Financial Aid Student Assistant LevelII RBSGC (effective 01/06/2026) * Financial Aid Student Assistant SFS Access RBSGU (effective 01/06/2026) The transaction also updated the role assignment snapshot for Shelby Bean and affected membership of the corresponding tenanted security groups. No roles were removed; only additions were recorded. The event was logged under IDEVT0057 and involved 147 rows of audit data.
**[EVT-0058]** - JulieLongson, an administrator at Gallaudet University, performed a roleassignment action on January6,2026. She added the Financial Aid Specialist (View Only) Gallaudet University” role to employee JohnDavis, making the assignment effective on that same day. The event was recorded as an “AssignRoles” transaction, completed automatically at 13:12:23EST. The audit shows the role was added to JohnDaviss profile, with no roles removed or changed. The action was logged under event IDEVT0058 and captured in the Workday audit trail.
**[EVT-0058]** - Julie Longson, a Workday administrator, performed an “Assign Roles” transaction on January62026. She added the role **Financial Aid Specialist (View Only) Gallaudet University** to employee **JohnDavis**. The role assignment became effective on January62026, and the event was automatically completed at 13:12:23 on that day. The transaction created a roleassignment event and snapshot, recorded in the system as “Assign Roles for P001809 Director, Outreach effective 01/06/2026.” No roles were removed. The action was logged under event IDEVT0058 and completed successfully.
**[EVT-0059]** - On January6,2026 at 4:15PM EST, Julie Longson (user ID1004645) added JohnDavis to the “Financial Aid Specialist UBSG U” userbased security group. The action was performed through the “Assign Users to UserBased Security Group” transaction, which created a new group membership event. The change took effect immediately (effective date 1:15PM) and was logged as event IDEVT0059. No users were removed, and no attachments were added. The audit shows the new membership was recorded in the systems security group tables and logged for compliance purposes.
**[EVT-0059]** - On January6,2026 at 4:15PM EST, Julie Longson (user ID1004645) assigned JohnDavis (user ID1102491) to the “Financial Aid Specialist UBSG U” userbased security group. The action was recorded as a “UserBased Group Change Event Lite Type” and the transaction was logged under the task “Assign Users to UserBased Security Group.” No users were removed, and the change was completed successfully.
## Kristinn Bjarnason
**[EVT-0042]** - On January7,2026 at 12:03PM EST (09:03AM PST), Kristinn Bjarnason, a Security Administrator, created a new assignable role called “Manage Course Offerings.” The role was given the internal IDASSIGNABLE_ROLE3517 and was added to the Academic Unit hierarchy. The role is administered by a Tenanted Security Group, restricted by Role Usage metadata, and the transaction was processed for task behavior. The roles base language is set to English (United States). No prior value existed, and no items were removed. The event was logged as EVT0042 with eight attributes recorded.
**[EVT-0042]** - On January7,2026 at 12:03PM EST, KristinnBjarnason created a new assignable role called **“Manage Course Offerings.”** The role was given the internal ID **ASSIGNABLE_ROLE3517** and was added to the **Academic Unit Academic Unit Hierarchy**. The role is governed by Workdays security framework: it is **administered by a Tenanted Security Group** and its use is **restricted by RoleUsage metadata.** The transaction that created the role was part of the **Maintain Assignable Roles** task, which is a standard administrative operation. The roles language setting was set to **English (United States)**, and the action was recorded under the event IDEVT0042. No prior values were changed, and no items were removed in this operation.
**[EVT-0043]** - On January7,2026 at 12:04PM Eastern Standard Time, Kristinn Bjarnason created a new security group in Workday. The group was named “Manage Course Offerings RBSGC” and received the internal IDROLEBASED_SECURITY_GROUP__CONSTRAINED_-3-452. The creation event recorded the entry moment (2026010709:04:30.3060800) and the groups name, ID, and XML definition (the XML file contents were not included in the audit). No prior values existed because this was a new object. The action was logged under event IDEVT0043 and involved the “Create Security Group” transaction. No relationships were removed or added beyond the standard processing instance and language settings.
**[EVT-0043]** - On January7,2026 at 12:04PM EST, KristinnBjarnason created a new security group in Workday. The group was named “Manage Course Offerings RBSGC” and received the system ID **ROLE-BASED_SECURITY_GROUP__CONSTRAINED_-3-452**. The creation event was logged as transaction “Create Security Group” and the users language setting (English(United States)) was recorded. No prior values existed because this was a new object, and nothing was removed. The audit shows the transaction was processed successfully under the task behavior for creating a security group.
**[EVT-0044]** - On January7,2026 at 12:04PM (EST) KristinnBjarnason added a new rolebased security group called **“Manage Course Offerings RBSGC”** to the Workday instance. The action was performed through the **“Edit RoleBased Security Group (Constrained)”** task. The group was created with the setting **“Applies To Current Organization And Unassigned Subordinates”** and its XML definition was excluded from the audit log. The new group is now part of the **“Manage Course Offerings”** security framework and will define membership for the rolebased group “RBSGC.” No other changes were made.
**[EVT-0044]** - On January7,2026 at 12:04PM Eastern Standard Time, KristinnBjarnason edited a rolebased security group called **“Manage Course Offerings RBSGC.”** During that edit he added the **“Edit RoleBased Security Group (Constrained)”** role to the group, thereby granting members of this group permission to modify other constrained security groups. The change was recorded as eventEVT0044 and involved four attribute updates, all of which were added to the groups membership configuration. No roles or members were removed.
**[EVT-0045]** - On January7,2026 at 12:05PM EST (09:05AM PST), KristinnBjarnason edited the security settings for a Workday domain. He added new permissions that allow the Manage Course Offerings RBSGC” and “Manage: Mass Course Offerings” roles to view and modify course offerings. These changes granted the corresponding security groups access to the domain and its policies, and updated the transaction logs for the task behavior. No items were removed or attached; the action was recorded under event IDEVT0045.
**[EVT-0045]** - On January7,2026 at 12:05PM EST, KristinnBjarnason (user ID1003966) edited the security settings for a Workday domain. He added a new permission called **“Edit Domain Security Policy Permissions”** to the *Manage Course Offerings RBSGC* domain. The edit granted that permission to the **“Manage: Mass Course Offerings”** group, allowing members of that group to view and modify the domain. The permission also gave access to the *Domain Security Policy* itself, and it enabled the policys members to grant domain access to other members of the *Tenanted Security Group*. In short, Kristinn updated the domain security policy so that users in the “Manage: Mass Course Offerings” group can edit and view course offerings, and he set up the policy to allow those users to further grant access to other members of the same security group. This change was recorded as eventEVT0045 and involved seven individual relationship updates.
**[EVT-0046]** - On January7,2026 at 12:06PM (EST) a Workday administrator named KristinnBjarnason performed an action that activated pending security policy changes. The change created a new security group called **“Manage Course Offerings RBSGC”** and granted it permission to view and modify the **“Manage: Mass Course Offerings”** domain. This update was logged as eventEVT0046 and included a comment that the group was created for the purpose of managing course offerings (incident INC0165358/CHG0037144). The action removed an earlier entry dated December19,2025 at 7:36AM that had referenced the same “gallaudet” tenant, effectively replacing it with the new security group. No additional attributes or attachments were added beyond this policy activation.
**[EVT-0046]** - On January7,2026 at 12:06PM (EST) KristinnBjarnason activated the pending securitypolicy changes for the “Manage: Mass Course Offerings” domain. During that activation he created a new security group called **RBSGC** so that users in that group could view and modify the “Manage: Mass Course Offerings” domain (this was logged as partof incidentINC0165358/CHG0037144). The activation also removed the earlier securitytimestamp that had been set on December19,2025. The event was recorded under the transaction “Activate Pending Security Policy Changes” and logged with event IDEVT0046.
**[EVT-0047]** - On January7,2026 at 9:09AM (Eastern Time), Workday administrator **KristinnBjarnason** processed a request from **ErickaBrown** to give **BethGibbons** the “Manage Course Offerings” role for two academic units: 1. **Continuing Education Academic Unit** (P000506 Associate Dean, Graduate Education) 2. **Dean of Faculty Academic Unit / Graduate** (P000506 Associate Dean, Graduate Education) The role assignment was set to take effect on January7,2026. The transaction was recorded as an “Assign Roles Add/Remove” event (EVT0047) and was automatically completed. No roles were removed, and the change was logged for both BethGibbons (the role recipient) and ErickaBrown (the requester).
**[EVT-0047]** - On January7,2026 at 12:09AM (EST) KristinnBjarnason added the “Associate Dean, Graduate Education” role to user **bethgibbons**. The assignment was made in response to a request from **ErickaBrown** (ticket INC0165358/CHG0037144). The role grants bethgibbons the ability to manage course offerings for two academic units: * Continuing Education Academic Unit * Dean of Faculty Academic Unit / Graduate The change was recorded in the Workday “AssignRoles Add/Remove” transaction and completed automatically. No roles were removed, and the action was logged under event IDEVT0047.
**[EVT-0048]** - On January6, 2026 at 9:00PM a Workday “RoleBased Group Change Event Lite” was created. This event prepared the assignment of a new role for an associate dean. On January7, 2026 at 12:00AM (Eastern Time) the role “P000506 Associate Dean, Graduate Education Beth Gibbons (+1)” was added to the “Manage Course Offerings” security group for both the Continuing Education Academic Unit and the Dean of Faculty Academic Unit / Graduate. This change was part of a broader roleassignment workflow that had been triggered earlier. At 9:10AM on the same day, KristinnBjarnason (user ID1003966) executed an “Assign Roles Add/Remove” transaction. He added the role of **Assistant Dean, Graduate Education (P007153)** to MaryPerrodinSingh. The assignment was made effective on January7, 2026, and the action was performed at 9:10:29.967AM. The request came from ErickaBrown (incident INC0165358/CHG0037144), and the change was automatically completed by the system. In summary, KristinnBjarnason added MaryPerrodinSingh to the Assistant Dean role for Graduate Education, effective January7, 2026, following a request from ErickaBrown. The change was part of an automated workflow that also updated related security groups earlier on January6 and 7.
**[EVT-0048]** - On January7,2026 at 9:10AM (Eastern Time), KristinnBjarnason added the “Assistant Dean, Graduate Education” role to MaryPerrodinSingh. The assignment was made effective on 01/07/2026 and was performed at the request of ErickaBrown (incident INC0165358 / change CHG0037144). The role assignment linked Mary to the “Continuing Education Academic Unit” and the “Dean of Faculty Academic Unit / Graduate” units, which are managed by Associate Dean BethGibbons. The action was recorded in the Workday audit log under event ID EVT0048 and completed automatically.
**[EVT-0049]** - On January12,2026 at 8:50AM (Workday system time), administrator **Kristinn Bjarnason** performed a roleassignment update. He added the security group or role **INC0165902** back into the system and then assigned the user **MarlenaDemmon** to the position of **Residence Education Coordinator (P007401)** effective that same day. The change was recorded as part of the “AssignRoles Add/Remove” transaction and completed automatically. No roles were removed, only the new assignment was added. The event is logged under IDEVT0049 and shows that the action took place in the Gallaudet University tenant.
**[EVT-0049]** - On January12,2026 at 5:50AM (Eastern Time), Workday administrator **KristinnBjarnason** performed a roleassignment action. He added the **Residence Education Coordinator** role (P007401) to employee **MarlenaDemmon** at Gallaudet University. The assignment became effective immediately on that date. No other roles were removed or changed in this transaction.
**[EVT-0050]** - On January12,2026 at 11:42AM (local time), Workday administrator **KristinnBjarnason** processed a request from **BethGibbon** (INC0165359) to give **MaryPerrodinSingh** the role of *Assistant Dean Graduate Education*. The assignment was created in the system with an effective date of **January12,2026**. The event was logged as “Assign Roles Add/Remove” and recorded under the workflow definition for role assignment. No roles were removed or changed for any other user in this transaction. The action was completed automatically and the event record shows it finished successfully on the same day.
**[EVT-0050]** - On January12,2026 at 11:42AM (Pacific Time), KristinnBjarnason added the “Assistant Dean Graduate Education” role to MaryPerrodinSingh. The assignment was made at the request of BethGibbon, as noted in incident INC0165359. The role change became effective on January12,2026 and was completed automatically by the system. No other users or roles were affected in this transaction.
**[EVT-0051]** - On January14,2026 at 12:16PM EST, Workday administrator **Kristinn Bjarnason** performed an “Edit Workday Account” transaction for user **VeronicaTovarCervantes**. During that transaction, Kristinn added a large set of notification categories to Veronicas usernotification settings. The categories include, but are not limited to: Academic Advising, Accounting Center Job Process, Activity Comments, Ad Hoc Worker Communications, Add Employee to Comp Process, Admissions, Anniversaries, Background Error Notifications, Benefits Notifications, Birthdays, Bonus/Comp/Stock/Merit review, Business Process General Notifications, CheckIns, Consignment Usage Requisitions Notification, Create Inventory Waves, Customer Central, Drive Access Additions/Changes/Removals, E&G Committee Invitation, Evidence of Insurance, Extended Enterprise Campaigns, Financial Aid Disbursements/General/Packages, General Notifications, Give Feedback, Goal Notes, Integrations, Interview Schedule Communications, Inventory Average Daily Usage/Count Notification/Preferred Supplier Lead Time/Replenishment, Learning Campaigns/Expiration Periods, Manage Individual Benefit Rates, Marketplace Opportunity Promotion, Metric Review Notification, Onboarding Plan Notifications/Setup, Open Enrollment for Benefits, Par Average Daily Usage/Lead Time/Recommended Reorder Point, Passive Enrollment Event, Prism Data Acquisition Notification/Wbucket Complete Notification, Remote Form I9 Authorized Representative Notification, Repository Document, Request for Quote Notifications, Review Supplier Synchronization Errors, Schedule Distribution (Request Time Off/Review Time Off), Scheduled Future Processes, Scheduled Live Report Completion, Scheduled Report Completion, Share Career Development Opportunity/Path Notification Category, Share notifications, Student Engagement Monitoring, Student Financials, Student Records, Student Recruiting Marketing/Transactional, Supplier Contract Expiration/Renewals, Surveys, System Monitor Notifications, Talent Pool Notifications, Time Off, Upcoming Shift, Voluntary SelfIdentification of Disability, Workbook Access Additions/Removals, Workbook Comments/Conversations, Workbook Import Failures/Successes, Workbook Live Data Scheduled Updates, Workbook Notify If Function Notifications, Workbook Tasks, Worker Communications, and the “~Gigs~” category. The transaction also set some account attributes: an account expiration date of 20260114, a session timeout of 30 minutes, and enabled reset challenge questions. No notifications were removed; all changes were additions to Veronicas notification configuration. The event was logged under event ID **EVT0051** and involved 503 rows of audit data.
**[EVT-0051]** - On January14,2026 at 12:16PM EST, Workday administrator KristinnBjarnason edited the account for user VeronicaTovarCervantes. The edit set several account properties: a new account ID of 1004184, an expiration date of January15,2026, a graceperiod login count of 30, and a session timeout of 5minutes. The transaction also updated the users notification settings, configuring a long list of systemwide notifications (e.g., Academic Advising, Accounting Center Job Process, Benefits Notifications, Time Off, etc.) for VeronicaTovarCervantes. The change was performed under the “Edit Workday Account” workflow and completed successfully on that date.
**[EVT-0052]** - On January15,2026 at 11:22AM (EST) KristinnBjarnason edited the Workday account for user VeronicaTovarCervantes. During that transaction he removed a long list of notification categories (such as Academic Advising, Accounting Center Job Process, Birthdays, etc.) from Veronicas notification settings and then readded them with specific delivery channels. The new configuration enabled email, mobile push, or both for each category, depending on the setting. In short, Kristinn updated Veronicas notification preferences to ensure she receives alerts via email and/or mobile push for all listed Workday events.
**[EVT-0052]** - [LLM ERROR] Error code: 400 - {'error': 'The number of tokens to keep from the initial prompt is greater than the context length. Try to load the model with a larger context length, or provide a shorter input'}
**[EVT-0053]** - On January21,2026 at 5:54AM Eastern Time, Workday administrator KristinnBjarnason removed the “School Director” role from TeresaBlankmeyerBurke (employee ID P000681) at the Arts and Humanities School. The removal was performed in response to Teresas request (incident INC0166411). At the same time, the system added the “Professor” role to BrianGreenwald (employee ID P000679) for the Arts and Humanities School, effective January21,2026. The transaction was logged under the “Assign Roles Add/Remove” process and completed automatically with no manual approval required. The event was recorded as EVT0053 in the audit log.
**[EVT-0053]** - On January21,2026 at 5:54AM Eastern Time, KristinnBjarnason processed a Workday workflow that removed TeresaBlankmeyerBurkes “School Director Arts and Humanities School” role. The removal was carried out at the request of Teresa herself, as noted in the comment “Removed School director role per Teresa Blankmeyer Burke's request (INC0166411). At the same time, the workflow assigned BrianGreenwald to the “Professor P000679” role effective January21,2026. The event was logged as a “Role Assignment Event” and completed automatically with no manual intervention required. Thus, KristinnBjarnason executed a roleremoval for Teresa and a roleassignment for Brian on the same day, completing both actions automatically under the “Assign Roles Add/Remove” transaction.
**[EVT-0054]** - On January21,2026 at 8:57a.m. (EST), Workday recorded that KristinnBjarnason added TeresaBlankmeyerBurke back to her role as Professor and School Director of the Arts and Humanities School. The change was made because Teresa had returned from a sabbatical (incidentINC0166411). The role assignment became effective on January21,2026. No roles were removed; the action simply added Teresa to the appropriate security groups for her position. The event was logged under event IDEVT0054 and completed automatically by the system.
**[EVT-0054]** - On January21,2026 at 5:57AM Eastern Time, Workday administrator **Kristinn Bjarnason** (user ID1003966) added a role assignment for **Teresa Blankmeyer Burke**. The action gave Teresa the title of **Professor School Director** in the **Arts and Humanities School**. The assignment was created as part of the “Assign Roles” workflow, which automatically completed at 5:27AM that same day. The change was logged as a “Role Assignment Event” and recorded in the systems event log (event IDEVT0054). The note accompanying the assignment states that Teresa was added because she has returned from her sabbatical (incidentINC0166411). No roles were removed, and the change was fully completed by 5:57AM.
**[EVT-0055]** - On January22,2026 at 9:19AM (EST) a Workday administrator named KristinnBjarnason added new permissions to the “Student Finance Administrator UBSG” security group. The change created a set of domainlevel permissions that allow the group to view student data, specifically the “Student Transcript and “Withdrawal and Leave” records. The permissions were added as “View Only” access for those two data sets, and the transaction was recorded under the event IDEVT0055. No permissions were removed, and no other users or attachments were involved in this action. The audit log shows the new permission entries, their XML representation was excluded from the audit details, and the transaction was part of the “Maintain Domain Permissions for Security Group” task.
**[EVT-0055]** - On January22,2026 at 9:19AM EST, KristinnBjarnason (user ID1003966) performed a “Maintain Domain Permissions for Security Group” transaction. He added several permissions and viewonly access rules to the domain security policy for a specific security group. The changes included granting the group access to student transcript and withdrawal/leave data, assigning a “Student Finance Administrator UBSG” role, and adding viewonly permissions for those data sets. No items were removed. The event was logged as EVT0055 and involved 11 rows of permission changes.
**[EVT-0056]** - On January22,2026 at 9:20AM (EST) a Workday administrator named **Kristinn Bjarnason** (user ID1003966) activated pending security policy changes for the **gallaudet** tenant. The activation updated the **Student Finance Administrator UBSG security group** so that it now has view access to two domains: * **Student Data: Withdrawal and Leave** * **Student Data: Student Transcript** The change was recorded in the audit log as a transaction titled “Activate Pending Security Policy Changes.The event (EVT0056) shows the new security timestamps and notes that the XML file contents were excluded from the audit. The action replaced an earlier instance dated January17,2026 at 3:20AM.
**[EVT-0056]** - KristinnBjarnason (user ID1003966) activated the pending securitypolicy changes for the Gallaudet tenant on January22,2026 at 9:20AM EST. The activation added the Student Data domains “Student Transcript” and “Withdrawal and Leave” to the UBSG security group that manages Student Finance Administrator access. The change was recorded as part of the “Activate Pending Security Policy Changes” transaction, and the new security timestamps for the tenant were updated accordingly.
## Thad Ferguson
**[EVT-0039]** - On January12,2026 at 2:06PM Eastern Standard Time, Workday admin **Thad Ferguson** (user ID1000998) edited the student record for **Jennifer Ceyanes**. He changed her Student ID from the temporary value **TEMP_STUDENT_0002694** to the new permanent ID **1117210**. The change was recorded in the “Student Financials Period Record StudentID (Denormalized)” field and logged as part of the “Edit Student ID” transaction. No other attributes were altered, and no attachments were added or removed during this update.
**[EVT-0039]** - On January12,2026 at 2:06PM EST, Workday administrator **Thad Ferguson** (user ID1000998) edited the student record for **Jennifer Ceyanes**. He changed her Student ID from the temporary value **TEMP_STUDENT_0002694** to the new permanent ID **1117210**. The edit was recorded as part of the “Edit Student ID” transaction and applied to Jennifers Fall2026, Fall2027, Fall2028, Spring20262029, and Summer20262028 enrollment records. The change was logged in the “Student Financials Period Record Student ID (Denormalized)” attribute, and the audit captured the entry moment timestamp “20260112110631537-0800”. No other attributes were altered.