All user authentications in PeopleSoft use the PeopleTools User Repository. This repository is the key to all user profile resources including Roles, Permission Lists and Access Times. You can apply security to all users, including employees, managers, customers, contractors, and suppliers. You group your users according to roles to give them different degrees of access. For instance, there might be an Employee role, a Manager role, and an Administrator role. Users who belong to a particular role require a specific set of permissions, or authorizations, within your system, so that they can complete their daily tasks.
The User Id is the ID associated with the individual user logging onto the PeopleSoft application, via PeopleTools. It requires no DB Server security definition or table access. Validation of this ID is performed by PeopleTools at log-in time, by virtue of verifying that a row has been defined in the user repository table for this ID.
The Connect Id is the actual ID that makes the initial log-on connection to the database. This Id does require definition in the DB Server security software, and it requires SELECT ONLY access to four tables: PS.PSDBOWNER, PSSTATUS, PSOPRDEFN, and PSACCESSPRFL.
The Symbolic Id is not really an Id at all, but is referred to as such in the PeopleTools configuration. The Symbolic Id provides the "link" between the row containing the User Id in user repository table and the row containing the corresponding Access Id and Password in access profile table. The Symbolic Id field is a column in the user repository table and the key field on access profile.
The Access Id is the ID under which all DML is initiated. This Id requires definition in the DB Server security software. The Access Id is allowed very liberal database access, and has the potential to do anything the Owner of an object can do, including dropping that object.