Role Name: AFL_CIVIL_SERVICE

Priority: 1

Friendly Name: Civil Service Employee

Definition: Any active employee who has a primary job record associated with any of the following ‘in list’ empl classes from the Job Record – CSN, CSE, CEI.

Owner: Human Resources

Directory Account(s): Both

O365 License: O365-Lite

LDAP Group(s): app_adobe_license_base_apps, afl_employee, afl_civil_service

AD Group(s): afl_employee, afl_civil_service (group)

CS Query: GitLab

Role Name: AFL_AP_STAFF

Priority: 2

Friendly Name: Administrative Professional Employee

Definition: All staff who hold primary job records of both “active” and within the employee classes of APX, APC, APN, APY.

Owner: Human Resources

Directory Account(s): Both

O365 License: O365-Lite

LDAP Group(s): app_adobe_license_base_apps, afl_employee, afl_ap_staff

AD Group(s): afl_employee, afl_ap_staff

CS Query: GitLab

Role Name: AFL_FACULTY

Priority: 3

Friendly Name: Faculty Employee

Definition: All employees at ISU with a current HR status of ‘Active’ - which is inclusive of those on leaves/sabbaticals and layoffs, but not those who have terminated or left the university – who also meet one of the following criteria:

1. Active employee of any employee class with a current academic rank of Professor, Associate Professor or Assistant Professor in order to bear the ‘faculty’ affiliation.
2. A person bears the ‘faculty’ affiliation if they belong to one of the following employee classes: NTT 12 Month, NTT Regular, Tenure-Track Faculty, Summer Tenure-Track Faculty, Summer NTT, Overload AP, Overload Civil Service,  Faculty Associate Cont, Faculty Associate Non Cont or Overload Faculty Associate.

*Role originates in HCM

Owner: Human Resources

Directory Account(s): Both

O365 License: O365-Lite

LDAP Group(s): app_adobe_license_base_apps, afl_employee, afl_faculty

AD Group(s): afl_employee, afl_faculty

CS Query: Gitlab

Role Name: AFL_FACULTY_ASSOCIATE

Priority: 4

Friendly Name: Faculty Associate

Definition: Teachers in the Laboratory Schools of Illinois State University are designated by the title Faculty Associate. The role of Faculty Associates is defined by the four-part mission of the Laboratory Schools: Teacher education, research, teaching, and service to the profession. This type of employee is typically housed in either Thomas Metcalf School or in University High School. Non-continuous faculty associates are designated in PeopleSoft HCM by the FA2 code. Continuous (either tenure-eligible/tenure-track or tenured) are designated by the FA1 code. These individuals in the latter category also have tenure and rank tracked in the EG_Tenure table. 

Owner: Human Resources

Directory Account(s): Both

O365 License: O365-Lite

LDAP Group(s): app_adobe_license_base_apps, afl_employee, afl_faculty_associate

AD Group(s): afl_employee, afl_faculty_associate

CS Query:  Gitlab

Role Name: AFL_GRAD_STUDENT

Priority: 5

Friendly Name: Graduate Student

Definition: Person is in the GRAD career in campus solutions and meets one of the following criteria:

1. Before and on census day of the current semester (not summer) a student is considered active if they are term activated for a term that has an end date greater than or equal to 180 days in the past.
2. After census day of the current semester (not summer) a student is considered active only if they are/were enrolled in classes in a term that has an end date greater than or equal to 180 days in the past.
3. In summer semester a student is considered active if they are term activated for a term that has an end date greater than or equal to 180 days in the past.

Owner: Office of the University Registrar

Directory Account(s): Both

O365 License: O365-Stu

LDAP Group(s): afl_active_student, afl_grad_student

AD Group(s): afl_active_student, afl_grad_student

CS Query: GitLab

Role Name: AFL_UGRD_STUDENT

Priority: 6

Friendly Name: Undergraduate Student

Definition: Person is in the UGRD career in campus solutions and meets one of the following criteria:

1. Before and on census day of the current semester (not summer) a student is considered active if they are term activated for a term that has an end date greater than or equal to 180 days in the past.
2. After census day of the current semester (not summer) a student is considered active only if they are/were enrolled in classes in a term that has an end date greater than or equal to 180 days in the past.
3. In summer semester a student is considered active if they are term activated for a term that has an end date greater than or equal to 180 days in the past.
4. A student with a Term Withdrawal or Term Cancellation entry for the current term is not a current student, except those with a reason of LEAV (for Leave of Absence), and except those who are registered for classes in a future term.

Owner: Office of the University Registrar

Directory Account(s): Both

O365 License: O365-Stu

LDAP Group(s): afl_active_student, afl_ugrd_student

AD Group(s): afl_active_student, afl_ugrd_student

CS Query: GitLab

Role Name: AFL_CNED_STUDENT

Priority: 7

Friendly Name: Continuing Education Student

Definition: Person is in the CNED career in campus solutions and meets one of the following criteria:

1. Before and on census day of the current semester (not summer) a student is considered active if they are term activated for a term that has an end date greater than or equal to 180 days in the past.
2. After census day of the current semester (not summer) a student is considered active only if they are/were enrolled in classes in a term that has an end date greater than or equal to 180 days in the past.
3. In summer semester a student is considered active if they are term activated for a term that has an end date greater than or equal to 180 days in the past.

Owner: Office of the University Registrar

Directory Account(s): Both

O365 License: O365-Stu

LDAP Group(s): afl_active_student, isu_cned_students

AD Group(s): afl_active_student, isu_cned_students

CS Query: GitLab

Role Name: AFL_INSTRUCTOR

Priority: 8

Friendly Name: Instructor Employee

Definition: Any person who is listed as the instructor for a course for the current, or upcoming semester

Owner: Registrars Office

Directory Account(s): Both

O365 License: O365-Lite

LDAP Group(s): app_adobe_license_base_apps, afl_employee, afl_instructor

AD Group(s): afl_employee, afl_instructor

CS Query: GitLab

Role Name: AFL_LAB_SCHOOL_EMP

Priority: 9

Friendly Name: Lab School Employee

Definition: All active employees (HR Status = A) with appointment in iPeople and department in one of the following: 07010000, 07050000, 07100000, 07000000.

Owner: Human Resources

Directory Account(s): Both

O365 License: O365-Lite

LDAP Group(s): app_adobe_license_base_apps, afl_employee, afl_lab_school_emp

AD Group(s): afl_employee, afl_lab_school_emp

CS Query: GitLab

Role Name: AFL_UNIV_HIGH_STUDENT

Priority: 10

Friendly Name: University High School Student

Definition: All active enrolled students at University High School.

Owner: University High School

Directory Account(s): Both

O365 License: O365-GBL

LDAP Group(s): afl_univ_high_student

AD Group(s): afl_univ_high_student

CS Query: GitLab

Role Name: AFL_METCALF_STUDENT

Priority: 11

Friendly Name: Metcalf Student

Definition: All active enrolled students at the Thomas Metcalf School.

Owner: Thomas Metcalf School

Directory Account(s): Both

O365 License: O365-GBL

LDAP Group(s): afl_metcalf_student

AD Group(s): afl_metcalf_student

CS Query: CS Guest Table

Role Name: AFL_GA_EMPLOYEE

Priority: 12

Friendly Name: Graduate Assistant Employee

Definition: All active graduate students who hold primary job records of both “active” and within the salary admin plan of GRA, GRH.

Owner: Human Resources

Directory Account(s): Both

O365 License: O365-Stu

LDAP Group(s): app_adobe_license_base_apps, afl_employee, afl_ga_employee

AD Group(s): afl_employee, afl_ga_employee

CS Query: GitLab

Role Name: AFL_STUDENT_EMPLOYEE

Priority: 13

Friendly Name: Student Employee

Definition: All active students who hold primary job records of both “active” and within the employee classes of SRG, GRA, GRH, GRN.

Owner: Human Resources

Directory Account(s): Both

O365 License: O365-Lite

LDAP Group(s): afl_employee, afl_student_employee

AD Group(s): afl_employee, afl_student_employee

CS Query: GitLab

Role Name: AFL_CONTINGENT_WRKR

Priority: 14

Friendly Name: Contingent Worker Employee

Definition: Coded as CWR Person_Type (as opposed to EMP for employee). Adjunct that is unpaid. Job code 707002. NTD as Empl Class. Maybe: "Any active employee with jobcode 707002 and PER_ORG of CWR."

Owner: Human Resources

Directory Account(s): Both

O365 License: O365-Lite

LDAP Group(s): app_adobe_license_base_apps, isu_contingent_wrkr, afl_employee (group)

AD Group(s): afl_employee (group)

CS Query: GitLab

Role Name: AFL_RETIRED_EMPLOYEE

Priority: 15

Friendly Name: ISU Retired Employee

Definition: When the employee/payroll status equals retiree, then employees bear this affiliation type. When a person has earned an employee status of Retired on the Job record the Retiree affiliation type will remain attached to the person, even if they attain employment with ISU in the future.

Owner: Human Resources

Directory Account(s): Both

O365 License: O365-ANT

LDAP Group(s): isu_retired_employee

AD Group(s): isu_retired_employee

CS Query: GitLab

Role Name: AFL_INTERNATIONAL_SCHOLAR

Priority: 16

Friendly Name: International Scholar

Definition: Foreign national visiting the university to conduct research, lecture, teach, observe or consult.

Owner: International Student and Scholar Services

Directory Account(s): Both

O365 License: O365-GST

LDAP Group(s): afl_international_scholar

AD Group(s): afl_international_scholar

CS Query: CS Guest Table

Role Name: AFL_VISITING_SCHOLAR

Priority: 17

Friendly Name: Visiting Scholar

Definition: 

Owner: 

Directory Account(s): Both

O365 License: O365-GST

LDAP Group(s): isu_visiting_scholar

AD Group(s): n/a

CS Query: n/a

Role Name: AFL_SENIOR_PROFESSIONAL

Priority: 18

Friendly Name: Senior Professional

Definition: Senior Professionals is a membership-based organization of retired and semi-retired individuals from Central Illinois with backgrounds in various fields, including business, education, social service, trades, health care, volunteerism and more. To be a member, no prior association with Illinois State is required.

Owner: Conference Services

Directory Account(s): Both

O365 License: O365-Lite

LDAP Group(s): afl_senior_professional

AD Group(s): afl_senior_professional

CS Query: CS Guest Table

Role Name: AFL_SPONSORED_TRUSTEE

Priority: 19

Friendly Name: Board of Trustees

Definition: A member of the Board of Trustees

Owner: Office of Identity and Access Management

Directory Account(s): Both

O365 License: O365-Lite

LDAP Group(s): afl_sponsored_trustee

AD Group(s): afl_sponsored_trustee

CS Query: CS Guest Table

Role Name: AFL_SPONSORED_INTO

Priority: 20

Friendly Name: INTO Employee

Definition: Sponsored account of an INTO Employee who is not employed by ISU

Owner: International Pathways

Directory Account(s): Both

O365 License: O365-EQU

LDAP Group(s): afl_sponsored_into

AD Group(s): afl_sponsored_into

CS Query: CS Guest Table

Role Name: AFL_SPONSORED_AUDITOR

Priority: 21

Friendly Name: Sponsored Auditor Account

Definition: Affiliation given to Auditors

Owner: Office of Identity and Access Management

Directory Account(s): Both

O365 License: O365-NONE

LDAP Group(s): afl_sponsored_guest, afl_sponsored_auditor, isu_sponsored_account

AD Group(s): afl_sponsored_guest, afl_sponsored_auditor

CS Query: CS Guest Table

Role Name: AFL_SPONSORED_PREHIRE

Priority: 22

Friendly Name: Sponsored prehire

Definition: AFL_SPONSORED_PREHIRE is sponsored by HR representative and granted access to ISU resources for the purpose of orientation and preparation before employment start date.

Owner: Human Resources

Directory Account(s): Both

O365 License: O365-EQU

LDAP Group(s): afl_sponsored_prehire

AD Group(s): afl_sponsored_prehire

CS Query: CS Guest Table

Role Name: AFL_SPONSORED_GUEST

Priority: 23

Friendly Name: Sponsored Guest Account

Definition: Affiliation used for the accounts of guests of the university

Owner: Office of Identity and Access Management

Directory Account(s): Both

O365 License: O365-Lite

LDAP Group(s): isu_sponsored_account

AD Group(s): isu_sponsored_account

CS Query: CS Guest Table

Account Sponsor: Full-time faculty or staff member

Role Name: AFL_ITI_TUTOR

Priority: 24

Friendly Name: Illinois Tutoring Initiative Tutor

Definition: Tutors in the Illinois Tutoring Initiative program

Owner: College of Education

Directory Account(s): Both

O365 License: O365-Lite

LDAP Group(s): afl_iti_tutor

AD Group(s): afl_iti_tutor

CS Query: CS Guest Table

Role Name: AFL_SPONSORED_ACCOUNT

Priority: 25

Friendly Name: Sponsored Account

Definition: An affiliation assigned to incoming employees by HR. Provisions directory accounts to allow for the direct support team to onboard the user's permissions. 

Owner: Office of Identity and Access Management

Directory Account(s): Both

O365 License: O365-GST

LDAP Group(s): isu_sponsored_account

AD Group(s): isu_sponsored_account

CS Query: n/a

Role Name: AFL_SPONSORED_STWRKR

Priority: 26

Friendly Name: Sponsored Student Worker Account

Definition: Affiliation used for the work accounts of student workers

Owner: Office of Identity and Access Management

Directory Account(s): Both

O365 License: O365-Lite

LDAP Group(s): isu_sponsored_account

AD Group(s): isu_sponsored_account

CS Query: n/a

Account Sponsor: Full-time employee that is also the student employee's supervisor

Role Name: AFL_SPONSORED_SERVICE

Priority: 27

Friendly Name: Sponsored Service Account

Definition: Affiliation used for Service Accounts

Owner: Office of Identity and Access Management

Directory Account(s): Both

O365 License: None, can be added if requested

LDAP Group(s): afl_sponsored_emulator

AD Group(s): afl_sponsored_emulator

CS Query: n/a

Account Sponsor: Full time employee or team alias

Role Name: AFL_SPONSORED_EMULATOR

Priority: 28

Friendly Name: Sponsored Emulator Account

Definition: Affiliation used for emulator accounts. Typically used to allow instructors to have an account that emulates the student experience in their ReggieNet courses.

Owner: Office of Identity and Access Management

Directory Account(s): Both

O365 License: O365-Lite

LDAP Group(s): afl_sponsored_emulator

AD Group(s): afl_sponsored_emulator

CS Query: CS Guest Table

Account Sponsor: Primary Identity of the User

Role Name: AFL_SPONSORED_PRIVILEGED

Priority: 29

Friendly Name: Sponsored Privileged Account

Definition: Affiliation for Privileged and Administrative Accounts

Owner: Office of Identity and Access Management

Directory Account(s): Both

O365 License: None, can be added if requested

LDAP Group(s): isu_sponsored_account

AD Group(s): isu_sponsored_account

CS Query: n/a

Account Sponsor: 

Employees: primary identity of the user

Students: Full-time employee that is also the supervisor

Role Name: AFL_GRACE_EMPLOYEE

Priority: 30

Friendly Name: Grace Period Employee

Definition: Person that was previously an active employee and has a termination date that is less than one year in the past. This affiliation is to provide reduced access to former employees for a period of time after they leave the university.

Owner: Office of Identity and Access Management

Directory Account(s): Both

O365 License: O365-Work

LDAP Group(s): isu_grace_employee

AD Group(s): isu_grace_employee

CS Query: GitLab

Role Name: AFL_TEACH_CHICAGO

Priority: 31

Friendly Name: Teach Chicago Tomorrow

Definition: Participants in the Teach Chicago Tomorrow program

Owner: Office of Identity and Access Management

Directory Account(s): Both

O365 License: O365-NONE

LDAP Group(s): afl_teach_chicago

AD Group(s): afl_teach_chicago

CS Query: CS Guest Table

Role Name: AFL_GRACE_STUDENT

Priority: 32

Friendly Name: Grace Period Student

Definition: Person that was previously an active student and has an inactive date that is less than one year in the past. Includes students on a registrar approved leave of absence. This affiliation is to provide reduced access to former students for a period of time after they leave the university.

Owner: Office of Identity and Access Management

Directory Account(s): Both

O365 License: O365-Stu

LDAP Group(s): isu_grace_student

AD Group(s): isu_grace_student

CS Query: GitLab

Role Name: AFL_ADMIT_PROSPECT

Priority: 33

Friendly Name: Admitted Prospective Student

Definition: An active admit for the current term or a future term, who has a ULID

Owner: Office of Admissions

Directory Account(s): Both

O365 License: O365-Prospect

LDAP Group(s): isu_admit_prospect

AD Group(s): n/a

CS Query: GitLab

Role Name: AFL_SPONSORED_LEGACY

Priority: 34

Friendly Name: Sponsored Legacy Account

Definition: Affiliation used to onboard AD only accounts into our IDM

Owner: Office of Identity and Access Management

Directory Account(s): LDAP

O365 License: None, AD account is not managed by OIM

LDAP Group(s): isu_sponsored_account

AD Group(s): n/a

CS Query: n/a

Account Sponsor: 

Employees: primary identity of the user

Students: Full-time employee that is also the supervisor