39 KiB
Security Admin Audit Event Log
Dennis Cregan
[EVT-0001] - On January 6, 2026 at 6:51 AM EST, Workday administrator Dennis Cregan edited the user account for Casey Spelman. He changed Casey’s account expiration date to January 6, 2026 and configured a large number of user‑notification settings for Casey. The new settings enabled email and mobile push notifications for dozens of Workday event categories (e.g., Academic Advising, Accounting Center Job Process, Birthdays, Benefits Notifications, Time Off, etc.). The transaction was completed successfully as part of the “Edit Workday Account” workflow. No other changes were recorded.
[EVT-0002] - On January 6, 2026 at 9:40 AM EST, Workday administrator Dennis Cregan edited the record for student DNU Eva DNU Silva‑Ewan. He changed the student’s Universal ID from the old value “1115670” to the new value “DNU1115670.” The edit was performed as part of an “Edit Universal Id” transaction. No other attributes were altered, and no relationships were removed; the only additions recorded were the new Universal ID value and the transaction label. The action was logged under event ID EVT‑0002.
[EVT-0003] - Dennis Cregan (user 1000054) launched a background job called “Student Prospect Update Event (Default Definition)” on January 7, 2026 at 07:43 AM EST. The job was started by the Integration Administrator and ran as a batch process that matched student records. During this run, the system added two new Custom Identifier References to the prospect record for Foluso Adeluola: 1. PSID – a new internal student ID. 2. SlateID – an external system identifier. These identifiers were added to the record under the “Custom Identifier Reference.for Custom Identifier” relationship. The job also removed the previous set of identifiers (0306632, 495870520, and 647589765) that had been associated with the prospect. No other user‑initiated changes were made; the entire update was performed automatically by the integration process.
[EVT-0004] - On January 7, 2026 at 07:44 AM EST, Workday administrator Dennis Cregan (user ID 1000054) performed an “Edit Other IDs” transaction for the student Kyra Dinkins. During this edit, a new custom identifier reference was added to Kyra’s record: CUSTOM_IDENTIFIER_REFERENCE‑3‑19695. The log shows that the previous custom identifier reference (CUSTOM_IDENTIFIER_REFERENCE‑3‑5003) was removed. The transaction also added the student’s PSID (Personal Student ID) to her list of identifiers and removed an earlier “Reconciled” status from the record. The change was part of a background process launch for the “Student Prospect Update Event” batch job that runs student prospect updates. The event was logged as EVT‑0004 and involved 86 rows of data being processed.
[EVT-0005] - On January 7, 2026 at 8:08 AM EST, Workday administrator Dennis Cregan edited the universal ID for employee Sarah Little. He changed her Student Universal ID from 1117191 to 1117192, and updated the corresponding entry moment timestamp. The edit was recorded as an “Edit Universal Id” transaction applied to Sarah Little, and the change was logged under event ID EVT‑0005. No other attributes were modified or removed during this transaction.
[EVT-0006] - On January 7, 2026 at 8:09 AM EST, Workday administrator Dennis Cregan edited the Student ID for Sarah Little. The system changed her Student ID from 1117191 to 1117192 and updated the associated entry moment timestamp. The edit was recorded as part of the “Edit Student ID” transaction and applied to Sarah Little’s record in the ASL Connect program. The change was logged under event ID EVT‑0006 and involved no attachments or removals.
[EVT-0007] - On January 7, 2026 at 8:09 AM EST, Workday administrator Dennis Cregan (user ID 1000054) edited the Workday account for employee Sarah Little. The edit created a new user‑notification configuration (new value 1117192) that added 21 notification settings for Sarah Little. These settings enabled both email and mobile‑push notifications for a wide range of Workday events—including academic advising, accounting center jobs, activity comments, benefits notifications, birthdays, bonus and compensation reviews, business‑process general alerts, inventory updates, learning campaigns, onboarding plans, open enrollment for benefits, time‑off requests, and many others. The change was part of the “Edit Workday Account” transaction and was successfully completed by Dennis Cregan.
[EVT-0008] - Dennis Cregan edited the security segment for two integration systems in Workday. On January 7, 2026 at 1:03 PM EST he applied the “Edit Integration System Security Segment” action to the integration systems named ISSS Financial Aid Integrations, SINT100 Slate Financial Aid Packages Outbound, and SINT100b Slate Financial Aid Packages FSFSA Outbound. The change was recorded in the audit log under event EVT‑0008, showing that the integration system security segment was updated for those three integrations.
[EVT-0009] - On January 8, 2026 at 3:25 PM EST, Dennis Cregan created a new universal identifier for the employee Phillip Hight. The system generated the ID “1117202” and recorded it as Phillip Hight’s Student Universal ID. The action was performed through the “Create Universal Id” transaction, and the new identifier was added to Phillip Hight’s record. No previous value existed for this field, and no relationships were removed. The event was logged as EVT‑0009 with seven audit rows capturing the details of the creation.
[EVT-0010] - On January 8, 2026 at 3:26 PM EST, Workday administrator Dennis Cregan edited the account for employee Phillip Hight. He changed Phillip’s Workday user ID to 1117202 and set the account creation date to midnight on that day. During the same transaction, Dennis configured a large number of user‑notification settings for Phillip, adding email and mobile push notifications for dozens of Workday categories (e.g., Gigs, Academic Advising, Accounting Center Job Process, Birthdays, Benefits, Time Off, etc.). The transaction was completed successfully and logged as “Edit Workday Account.”
[EVT-0011] - On January 8, 2026 at 3:26 PM EST, Workday administrator Dennis Cregan edited the Student ID for Phillip Hight. The system replaced Phillip’s temporary student identifier “TEMP_STUDENT_0002670” with the new ID “1117202”. The change was made as part of an “Edit Student ID” transaction that updated the student’s financial period record and entry moment. The audit shows Dennis Cregan as the user who performed the edit, affecting Phillip Hight’s record.
[EVT-0012] - On January 8, 2026 at 3:47 PM EST, user Dennis Cregan (ID 1000054) performed an “Edit Permissions” transaction in Workday. He removed the Self‑Service: Dining Dollar (diningDollar_wspzsl) permission from the “Student as Self” role and removed the associated “View Only” and “View Only for Self‑Service: Dining Dollar (diningDollar_wspzsl)” permissions. He then added the “Edit Permissions” permission to that same Self‑Service role, effectively granting students the ability to edit their Dining Dollar account. The change was applied to the “Student as Self” security group, and the transaction updated several domain‑security policy relationships accordingly. The event was logged as EVT‑0012 and recorded 7 related relationship changes.
[EVT-0013] - On January 8, 2026 at 12:47 PM (Pacific Time), Workday administrator Dennis Cregan approved a pending security‑policy change. The approval activated the “Activate Pending Security Policy Changes” transaction, which in turn published a new security timestamp for the Self‑Service: Dining Dollar (diningDollar_wspzsl) domain. As part of this change, the Student as Self security group was removed from that domain, temporarily revoking students’ access to the Dining Dollar application until the new version is promoted to production (change request CHG0037158). The transaction also updated the tenant’s security timestamps and recorded the approval action in the audit log.
[EVT-0014] - On January 8, 2026 at 4:00 PM (EST) Dennis Cregan activated a pending security‑policy change. The action removed the “Student as Self” security group from the Self‑Service: Dining Dollar (diningDollar_wspzsl) domain, effectively revoking students’ access to the Dining Dollar application until a new version is promoted to production (CHG0037158). The change was processed under the “Activate Pending Security Policy Changes” transaction and logged as a security‑timestamp event for the tenant. The removal was recorded at 12:46 PM, and the activation took place at 12:59 PM. No other users or objects were affected.
[EVT-0015] - On January 9, 2026 at 12:48 PM EST, Workday administrator Dennis Cregan created a new Universal Identifier for the student “Jr. Kang.” The system recorded that the person now has a Universal Identifier (Person.has Universal Identifier) and linked this identifier to the student’s record in the “Kang” instance. The new Universal ID value was 1117211, and it was added to the student’s profile under “Universal Identifier.for Person.” The transaction, labeled Create Universal Id, was executed as part of the “Create Universal Id” task behavior. No values were removed, and the change was logged under event ID EVT‑0015 with a total of 28 rows affected.
[EVT-0016] - On January 9, 2026 at 12:49 PM EST, Workday administrator Dennis Cregan edited the account of user Jr. Kang (user ID 1117211). During that edit, Dennis configured a large number of notification preferences for Jr. Kang, enabling both email and mobile‑push notifications for dozens of Workday event categories (such as “Gigs,” “Academic Advising,” “Accounting Center Job Process,” “Benefits Notifications,” “Time Off,” “Workbook Access Additions,” etc.). The changes were made as part of the “Edit Workday Account” transaction and were recorded under event ID EVT‑0016. No notifications were removed; only new notification settings were added for Jr. Kang’s account.
[EVT-0017] - On January 9, 2026 at 12:49 PM EST, Workday administrator Dennis Cregan performed an “Edit Student ID” transaction for the student Jr. Kang (applying to “Kang”). The system changed Jr. Kang’s student identifier from the temporary value TEMP_STUDENT_0002621 to the new permanent ID 1117211. The audit records show that this edit was recorded in the “Student ID” attribute and that the transaction was logged under event EVT‑0017. No other attributes were altered, and no attachments or removals occurred during this action.
[EVT-0018] - On January 16, 2026 at 5:40 AM EST, Workday administrator Dennis Cregan edited the user account for Dale Shepard. During that transaction, he added a large set of notification preferences to Dale’s account—configuring email and mobile‑push alerts for dozens of Workday events (such as “Anniversaries,” “Benefits Notifications,” “Time Off,” “Student Records,” etc.). The changes were recorded under the “Edit Workday Account” workflow and completed successfully. No items were removed; only new notification settings were added to Dale’s profile.
[EVT-0019] - On January 17, 2026 at 6:18 AM EST (UTC‑08:00), Dennis Cregan added the “Edit Permissions” permission to the Self‑Service role Dining Dollar (diningDollar_wspzsl) for the user group Student as Self. This change granted students who are acting on their own account the ability to edit permissions for the Dining Dollar self‑service application, while also giving them view‑only access to that same application. The action was recorded as an “Edit Permissions” transaction in the Workday audit log.
[EVT-0020] - Dennis Cregan updated the “ISSG Dining Dollar Extend” security group on January 17, 2026 at 6:19 AM EST. He added several permissions to the group: * Granted the “View Only” permission for the “Reports: Student Financial Account” report. * Added the “Maintain Permissions for Security Group” task behavior to the group, allowing it to manage other security groups. * Assigned the “View Only for Reports: Student Financial Account” permission, giving read‑only access to that specific report. These changes were recorded under the event ID EVT-0020 and involved updating domain security policy permissions for the group. No items were removed, and no attachments were added.
[EVT-0021] - On January 17, 2026 at 6:21 AM EST, Workday administrator Dennis Cregan activated pending security policy changes for the Gallaudet tenant. The activation added two new domain‑level permissions: 1. Reports: Student Financial Account – the “ISSG Dining Dollar Extend” security group was granted view‑only access. 2. Self‑Service: Dining Dollar (diningDollar_wspzsl) – the “Student as Self” role was granted view‑only access. These changes were recorded in the audit log with a comment referencing change request CHG0037161. The activation replaced an earlier processing instance dated January 8, 2026 and updated the tenant’s security timestamp. No other objects were modified.
[EVT-0022] - Dennis Cregan (user ID 1000054) edited the Workday account for employee Kelby Brick on January 17, 2026 at 06:45 AM EST. During that transaction he updated Kelby’s user‑notification settings, adding a long list of notification categories (e.g., “Gigs,” “Academic Advising,” “Accounting Center Job Process,” “Birthdays,” “Benefits Notifications,” “Time Off,” etc.) and specifying that each of those notifications should be sent via Email and, for many categories, also via Mobile Push Notification. The change was recorded as part of the “Edit Workday Account” transaction and completed successfully. No other attributes were changed or removed.
[EVT-0023] - On January 17, 2026 at 6:56 AM EST, Workday administrator Dennis Cregan (user ID 1000054) edited Gabrielle Vidmar’s Universal ID. The change replaced the old Student Universal ID “1117251” with a new value of “1117249”. The edit was performed as part of the “Edit Universal Id” transaction. No other attributes were altered, and no attachments were added or removed. The event was logged as EVT‑0023.
[EVT-0024] - On January 17, 2026 at 6:57 AM EST, Workday administrator Dennis Cregan edited the Student ID for Gabrielle Vidmar. The student’s ID was changed from 1117251 to 1117249. This change was recorded as part of the “Edit Student ID” transaction and applied to Gabrielle Vidmar’s record for the Fall 2026 term (and related program entries). The audit shows that the transaction was processed and executed, with no other relationships added or removed. No attachments were added. The event (EVT‑0024) logged 12 rows of data related to the edit.
[EVT-0025] - On January 17, 2026 at 6:58 AM EST, Workday administrator Dennis Cregan edited the account for user Gabrielle Vidmar. During that transaction, he configured a large number of notification settings for Gabrielle’s user profile—adding email and mobile‑push notifications for dozens of Workday event categories (such as “Academic Advising,” “Benefits Notifications,” “Time Off,” “Student Recruiting – Marketing,” etc.). The edit was performed as part of the standard “Edit Workday Account” workflow, and the changes were applied to Gabrielle Vidmar’s account. No items were removed; only new notification configurations were added.
[EVT-0026] - On January 21, 2026 at 12:18 PM (EST) the integration administrator Dennis Cregan launched a background process that updated student prospect records. The process started the “Student Prospect Update Event (Default Definition)” workflow for the prospect Jay C. Sink and ran the batch job “Match Students.” During that workflow a new custom identifier was created for Jay C. Sink: the system added the reference CUSTOM_IDENTIFIER_REFERENCE‑3‑21093 to his record. The identifier was added as a “Custom Identifier Reference” for the custom ID type “SlateID.” The audit shows that the event moved through several steps—initiation, approval by the integration administrator, batch/job execution, and completion. The process logged that it was “In Progress” and later marked the job as “Successfully Completed.” No attachments were added, and no other fields were changed except the creation of this custom identifier. The event is recorded under event ID EVT‑0026 and involved 68 rows of data.
[EVT-0027] - On January 23, 2026 at 8:25 AM EST, Workday administrator Dennis Cregan edited the account for employee Emily Wolski. During that transaction he configured a large number of user‑notification settings for her, adding email and mobile‑push notifications for dozens of event categories (such as Gigs, Academic Advising, Accounting Center Job Process, Activity Comments, Comp Process additions, Admissions, Anniversaries, Background Error Notifications, Benefits, Birthdays, Bonus/Comp reviews, Business Process General notifications, Check‑Ins, Consignment Usage Requisitions, Customer Central, Drive Access changes, E&G Committee invitations, Evidence of Insurance, Extended Enterprise Campaigns, Financial Aid disbursements and packages, General notifications, Give Feedback, Goal Notes, Integrations, Interview Schedule communications, Inventory alerts, Learning campaigns and expirations, Marketplace promotions, Metric reviews, Onboarding plan notifications, Open Enrollment for benefits, Par usage alerts, Passive enrollment events, Prism data acquisition, Remote Form I‑9 notifications, Repository documents, Request for Quote alerts, Supplier synchronization errors, Scheduled processes and reports, Schedule distribution requests, Share career development opportunities, Student engagement monitoring, Student financials and records, Supplier contract expirations and renewals, Surveys, System monitor alerts, Talent pool notifications, Time Off, Upcoming shift, Voluntary self‑identification of disability, Workbook access changes, workbook comments and conversations, import failures/successes, live data updates, function notifications, and worker communications. All of these were added to Emily Wolski’s notification preferences during that edit transaction.
[EVT-0028] - On January 23, 2026 at 10:59 AM EST, user Dennis Cregan (ID 1000054) created a new security group in the Gallaudet and Clerc HR – UBSG tenant. The group was given the name “USER‑BASED_SECURITY_GROUP‑3‑237” and its creation was recorded as a “Create Security Group” transaction. The event was logged in English (United States) language and the group’s entry moment timestamp is 2026‑01‑23 07:59:56.571 –0800. No prior values existed, and no relationships were removed; the only changes recorded are the addition of the new group.
[EVT-0029] - On January 23, 2026 at 11:02 AM EST (08:02 AM PST), Dennis Cregan edited the “Gallaudet and Clerc HR – UBSG” security group. He added a comment that the group will be used by intersection security groups to exclude Gallaudet and Clerc HR employees who hold specific roles such as Manager or UI. The edit was performed through the “Edit User-Based Security Group” transaction, and Dennis Cregan is listed as both the user who performed the action and the administrator. No items were removed, and no attachments were added. The event is recorded as EVT‑0029.
[EVT-0030] - Dennis Cregan added seven employees to the “Gallaudet and Clerc HR – UBSG” user‑based security group on January 23, 2026 at 11:04 AM EST. The users added were: * Becky Whittington * Anthony Balogh * Christina Shen‑Austin (appears as “Christina Shen” in the applied list) * Rachel Parker * Yunhe Bai * Ololade Olasanoye * Kelly Fournier * Stephanie Bettencourt The action was recorded as a “Assign Users to User‑Based Security Group” transaction, and the event log shows that the group membership was updated for each of those users. No users were removed, and the change was performed by Dennis Cregan (user ID 1000054).
[EVT-0031] - On January 23, 2026 at 11:04 AM Eastern Standard Time, Dennis Cregan created a new security group called “Non‑HR Manager – ISG.” The action was performed through the Workday “Create Security Group” transaction. The group’s internal ID is INTERSECTION_SECURITY_GROUP‑3‑21 and the entry moment recorded was 2026‑01‑23 08:04:33.219 –0800 (UTC‑8). No other changes were made to the group at that time.
[EVT-0032] - On January 23, 2026 at 11:05 AM EST, user Dennis Cregan (ID 1000054) edited the “Intersection Security Group” named Gallaudet and Clerc HR – UBSG. He added the role Manager to this group and set it to exclude all employees who are both in the Gallaudet and Clerc HR tenant and have the Manager role. The change was recorded as part of the “Edit Intersection Security Group” transaction, and a comment noting that this intersection security group is used to exclude all Gallaudet and HR employees with the Manager role was added. No items were removed, and no attachments were added. The event ID for this action is EVT‑0032.
[EVT-0033] - On January 23, 2026 at 11:05 AM Eastern Standard Time, user Dennis Cregan (ID 1000054) created a new security group in Workday. The group was given the internal ID INTERSECTION_SECURITY_GROUP‑3‑22 and the display name “Non‑HR Unit Initiator – ISG.” The creation transaction was recorded as a “Create Security Group” event (EVT‑0033). No other attributes were changed, and the action was performed in the default English (United States) language setting. No attachments were added, and no relationships were removed. The audit shows the transaction was processed successfully for the task behavior and associated with the user’s language setting.
[EVT-0034] - On January 23, 2026 at 11:06 AM (EST) Dennis Cregan edited the “Intersection Security Group” that is used to exclude employees from certain security permissions. In that edit he added three items to the group: “Gallaudet and Clerc HR – UBSG”, “Non‑HR Unit Initiator – ISG”, and the role “Unit Initiator”. The change was recorded as part of the transaction “Edit Intersection Security Group” and is intended to prevent all Gallaudet and HR employees who hold the Unit Initiator role from receiving the permissions granted by this security group.
[EVT-0035] - On January 26, 2026 at 6:35 AM EST, Dennis Cregan (user ID 1000054) edited the Universal ID for employee Andrew Greenman. The change updated Andrew’s Universal ID from 1117188 to 1108237. The edit was recorded as the “Edit Universal Id” transaction and applied to Andrew Greenman’s record. The audit shows the entry moment timestamp, the new Universal ID value, and notes that XML file contents were excluded from the audit. No other attributes or relationships were altered.
[EVT-0036] - On January 26, 2026 at 06:36 AM EST, Workday administrator Dennis Cregan edited the Workday account for employee Andrew Greenman. During that “Edit Workday Account” transaction, Dennis configured Andrew’s user‑notification settings. The change added a long list of notification categories for Andrew, enabling both email and mobile‑push alerts for each category (for example, Gigs, Academic Advising, Accounting Center Job Process, Activity Comments, Benefits Notifications, Birthdays, Bonus/Comp review, Business Process General notifications, Check‑Ins, Student Recruiting – Marketing, Time Off, Upcoming Shift, and many others). The transaction completed successfully with no removals or attachments added.
[EVT-0037] - On January 28, 2026 at 10:15 AM EST, Workday administrator Dennis Cregan (user ID 1000054) performed an “Edit Other IDs” transaction for the student prospect Mark Killian. During this transaction, a new custom identifier reference was added to Mark’s record: CUSTOM_IDENTIFIER_REFERENCE‑3‑21213. This identifier was created as part of the “Student Prospect Update Event (Default Definition)” background process that launched a batch job called Match Students. The event was initiated by the Integration Administrator and progressed through approval, batch processing, and completion stages. No other identifiers were removed or changed; the only removal noted was a prior identifier “376542395 681374436” that had been reconciled earlier. The transaction logged 69 rows of audit data and was recorded under event ID EVT‑0037.
[EVT-0038] - On January 28, 2026 at 2:06 PM EST, Workday administrator Dennis Cregan edited the Workday account of user Stephanie Baran. During that edit, Dennis changed several attributes on Stephanie’s account: * Set the Account Expiration Date to 2026‑01‑28. * Updated various workflow and transaction timestamps (e.g., “Completed Date,” “Creation Date,” “Due Date,” etc.). * Configured a large number of User Notification Settings for Stephanie, enabling both email and mobile‑push notifications across dozens of Workday categories (e.g., Academic Advising, Accounting Center Job Process, Birthdays, Benefits Notifications, Time Off, Student Recruiting, etc.). * Selected English (United States) as Stephanie’s preferred user language. The action was performed under the “Edit Workday Account” transaction, and it completed successfully on that same day.
Joseph DeSiervi
[EVT-0040] - On January 8, 2026 at 3:46 PM EST, Joseph DeSiervi (user ID 1003153) edited a Workday business‑process security policy. In that edit he added the “Approve” permission to the policy, linked it to the “Edit Business Process Security Policy” task behavior, and assigned that permission to the “Procurement Data Entry Specialist” security group. The change was recorded as a new entry moment and the XML contents of the policy were updated (the file contents themselves are not shown in the audit). No items were removed. The event was logged under event ID EVT‑0040.
[EVT-0041] - On January 8, 2026 at 3:48 PM (EST) Joseph DeSiervi activated a pending security‑policy change. The activation added the “Procurement Data Entry Specialist” role with permission to approve any BP purchase‑order change orders (INC0164817/CHG0037156). The policy activation was logged as part of the “Activate Pending Security Policy Changes” transaction, and it updated the tenant’s security timestamps. The change was made by Joseph DeSiervi (user ID 1003153) and recorded under event EVT‑0041.
Julie Longson
[EVT-0057] - On January 6, 2026 at 4:11 p.m. (EST) Julie Longson performed an “Assign Roles” transaction in Workday. She added several role assignments to the user Shelby Bean (P004080), giving her: * Unofficial Student Transcript Viewer – RBSG‑C and RBSG‑U * Financial Aid Specialist – RBSG‑C (effective 01/06/2026) * Financial Aid Student Assistant Level I – RBSG‑C (effective 01/06/2026) * Financial Aid Student Assistant Level II – RBSG‑C (effective 01/06/2026) * Financial Aid Student Assistant – SFS Access – RBSG‑U (effective 01/06/2026) The transaction also updated the role assignment snapshot for Shelby Bean and affected membership of the corresponding tenanted security groups. No roles were removed; only additions were recorded. The event was logged under ID EVT‑0057 and involved 147 rows of audit data.
[EVT-0058] - Julie Longson, a Workday administrator, performed an “Assign Roles” transaction on January 6 2026. She added the role Financial Aid Specialist (View Only) – Gallaudet University to employee John Davis. The role assignment became effective on January 6 2026, and the event was automatically completed at 13:12:23 on that day. The transaction created a role‑assignment event and snapshot, recorded in the system as “Assign Roles for P001809 Director, Outreach effective 01/06/2026.” No roles were removed. The action was logged under event ID EVT‑0058 and completed successfully.
[EVT-0059] - On January 6, 2026 at 4:15 PM EST, Julie Longson (user ID 1004645) assigned John Davis (user ID 1102491) to the “Financial Aid Specialist – UBSG – U” user‑based security group. The action was recorded as a “User‑Based Group Change – Event Lite Type” and the transaction was logged under the task “Assign Users to User‑Based Security Group.” No users were removed, and the change was completed successfully.
Kristinn Bjarnason
[EVT-0042] - On January 7, 2026 at 12:03 PM EST, Kristinn Bjarnason created a new assignable role called “Manage Course Offerings.” The role was given the internal ID ASSIGNABLE_ROLE‑3‑517 and was added to the Academic Unit – Academic Unit Hierarchy. The role is governed by Workday’s security framework: it is administered by a Tenanted Security Group and its use is restricted by Role‑Usage metadata. The transaction that created the role was part of the Maintain Assignable Roles task, which is a standard administrative operation. The role’s language setting was set to English (United States), and the action was recorded under the event ID EVT‑0042. No prior values were changed, and no items were removed in this operation.
[EVT-0043] - On January 7, 2026 at 12:04 PM EST, Kristinn Bjarnason created a new security group in Workday. The group was named “Manage Course Offerings – RBSG‑C” and received the system ID ROLE-BASED_SECURITY_GROUP__CONSTRAINED_-3-452. The creation event was logged as transaction “Create Security Group” and the user’s language setting (English (United States)) was recorded. No prior values existed because this was a new object, and nothing was removed. The audit shows the transaction was processed successfully under the task behavior for creating a security group.
[EVT-0044] - On January 7, 2026 at 12:04 PM Eastern Standard Time, Kristinn Bjarnason edited a role‑based security group called “Manage Course Offerings – RBSG‑C.” During that edit he added the “Edit Role‑Based Security Group (Constrained)” role to the group, thereby granting members of this group permission to modify other constrained security groups. The change was recorded as event EVT‑0044 and involved four attribute updates, all of which were added to the group’s membership configuration. No roles or members were removed.
[EVT-0045] - On January 7, 2026 at 12:05 PM EST, Kristinn Bjarnason (user ID 1003966) edited the security settings for a Workday domain. He added a new permission called “Edit Domain Security Policy Permissions” to the Manage Course Offerings – RBSG‑C domain. The edit granted that permission to the “Manage: Mass Course Offerings” group, allowing members of that group to view and modify the domain. The permission also gave access to the Domain Security Policy itself, and it enabled the policy’s members to grant domain access to other members of the Tenanted Security Group. In short, Kristinn updated the domain security policy so that users in the “Manage: Mass Course Offerings” group can edit and view course offerings, and he set up the policy to allow those users to further grant access to other members of the same security group. This change was recorded as event EVT‑0045 and involved seven individual relationship updates.
[EVT-0046] - On January 7, 2026 at 12:06 PM (EST) Kristinn Bjarnason activated the pending security‑policy changes for the “Manage: Mass Course Offerings” domain. During that activation he created a new security group called RBSG‑C so that users in that group could view and modify the “Manage: Mass Course Offerings” domain (this was logged as part of incident INC0165358/CHG0037144). The activation also removed the earlier security‑timestamp that had been set on December 19, 2025. The event was recorded under the transaction “Activate Pending Security Policy Changes” and logged with event ID EVT‑0046.
[EVT-0047] - On January 7, 2026 at 12:09 AM (EST) Kristinn Bjarnason added the “Associate Dean, Graduate Education” role to user beth gibbons. The assignment was made in response to a request from Ericka Brown (ticket INC0165358/CHG0037144). The role grants beth gibbons the ability to manage course offerings for two academic units: * Continuing Education Academic Unit * Dean of Faculty Academic Unit / Graduate The change was recorded in the Workday “Assign Roles – Add/Remove” transaction and completed automatically. No roles were removed, and the action was logged under event ID EVT‑0047.
[EVT-0048] - On January 7, 2026 at 9:10 AM (Eastern Time), Kristinn Bjarnason added the “Assistant Dean, Graduate Education” role to Mary Perrodin‑Singh. The assignment was made effective on 01/07/2026 and was performed at the request of Ericka Brown (incident INC0165358 / change CHG0037144). The role assignment linked Mary to the “Continuing Education Academic Unit” and the “Dean of Faculty Academic Unit / Graduate” units, which are managed by Associate Dean Beth Gibbons. The action was recorded in the Workday audit log under event ID EVT‑0048 and completed automatically.
[EVT-0049] - On January 12, 2026 at 5:50 AM (Eastern Time), Workday administrator Kristinn Bjarnason performed a role‑assignment action. He added the Residence Education Coordinator role (P007401) to employee Marlena Demmon at Gallaudet University. The assignment became effective immediately on that date. No other roles were removed or changed in this transaction.
[EVT-0050] - On January 12, 2026 at 11:42 AM (Pacific Time), Kristinn Bjarnason added the “Assistant Dean – Graduate Education” role to Mary Perrodin‑Singh. The assignment was made at the request of Beth Gibbon, as noted in incident INC0165359. The role change became effective on January 12, 2026 and was completed automatically by the system. No other users or roles were affected in this transaction.
[EVT-0051] - On January 14, 2026 at 12:16 PM EST, Workday administrator Kristinn Bjarnason edited the account for user Veronica Tovar Cervantes. The edit set several account properties: a new account ID of 1004184, an expiration date of January 15, 2026, a grace‑period login count of 30, and a session timeout of 5 minutes. The transaction also updated the user’s notification settings, configuring a long list of system‑wide notifications (e.g., Academic Advising, Accounting Center Job Process, Benefits Notifications, Time Off, etc.) for Veronica Tovar Cervantes. The change was performed under the “Edit Workday Account” workflow and completed successfully on that date.
[EVT-0052] - [LLM ERROR] Error code: 400 - {'error': 'The number of tokens to keep from the initial prompt is greater than the context length. Try to load the model with a larger context length, or provide a shorter input'}
[EVT-0053] - On January 21, 2026 at 5:54 AM Eastern Time, Kristinn Bjarnason processed a Workday workflow that removed Teresa Blankmeyer Burke’s “School Director – Arts and Humanities School” role. The removal was carried out at the request of Teresa herself, as noted in the comment “Removed School director role per Teresa Blankmeyer Burke's request (INC0166411).” At the same time, the workflow assigned Brian Greenwald to the “Professor – P000679” role effective January 21, 2026. The event was logged as a “Role Assignment Event” and completed automatically with no manual intervention required. Thus, Kristinn Bjarnason executed a role‑removal for Teresa and a role‑assignment for Brian on the same day, completing both actions automatically under the “Assign Roles – Add/Remove” transaction.
[EVT-0054] - On January 21, 2026 at 5:57 AM Eastern Time, Workday administrator Kristinn Bjarnason (user ID 1003966) added a role assignment for Teresa Blankmeyer Burke. The action gave Teresa the title of Professor – School Director in the Arts and Humanities School. The assignment was created as part of the “Assign Roles” workflow, which automatically completed at 5:27 AM that same day. The change was logged as a “Role Assignment Event” and recorded in the system’s event log (event ID EVT‑0054). The note accompanying the assignment states that Teresa was added because she has returned from her sabbatical (incident INC0166411). No roles were removed, and the change was fully completed by 5:57 AM.
[EVT-0055] - On January 22, 2026 at 9:19 AM EST, Kristinn Bjarnason (user ID 1003966) performed a “Maintain Domain Permissions for Security Group” transaction. He added several permissions and view‑only access rules to the domain security policy for a specific security group. The changes included granting the group access to student transcript and withdrawal/leave data, assigning a “Student Finance Administrator – UBSG” role, and adding view‑only permissions for those data sets. No items were removed. The event was logged as EVT‑0055 and involved 11 rows of permission changes.
[EVT-0056] - Kristinn Bjarnason (user ID 1003966) activated the pending security‑policy changes for the Gallaudet tenant on January 22, 2026 at 9:20 AM EST. The activation added the Student Data domains “Student Transcript” and “Withdrawal and Leave” to the UBSG security group that manages Student Finance Administrator access. The change was recorded as part of the “Activate Pending Security Policy Changes” transaction, and the new security timestamps for the tenant were updated accordingly.
Thad Ferguson
[EVT-0039] - On January 12, 2026 at 2:06 PM EST, Workday administrator Thad Ferguson (user ID 1000998) edited the student record for Jennifer Ceyanes. He changed her Student ID from the temporary value TEMP_STUDENT_0002694 to the new permanent ID 1117210. The edit was recorded as part of the “Edit Student ID” transaction and applied to Jennifer’s Fall 2026, Fall 2027, Fall 2028, Spring 2026‑2029, and Summer 2026‑2028 enrollment records. The change was logged in the “Student Financials Period Record Student ID (Denormalized)” attribute, and the audit captured the entry moment timestamp “2026 01 12 11 06 31 537 -0800”. No other attributes were altered.