Login
Register
Search
Home
Forums
Jobs
LawsonGuru
LawsonGuru Letter
LawsonGuru Blog
Worthwhile Reading
Infor Lawson News Feed
Store
Store FAQs
About
Forums
Infor / Lawson Platforms
S3 Security
Auditing?
Home
Forums
Jobs
LawsonGuru
LawsonGuru Letter
LawsonGuru Blog
Worthwhile Reading
Infor Lawson News Feed
Store
Store FAQs
About
Who's On?
Membership:
Latest:
Chris Radcliffe
Past 24 Hours:
0
Prev. 24 Hours:
0
Overall:
5187
People Online:
Visitors:
335
Members:
0
Total:
335
Online Now:
New Topics
S3 Customization/Development
Cobol - Extract Current Time
4/24/2024 7:21 PM
How do you extract just the Current System Time in
Lawson Landmark
LPL INSTR Functions
4/5/2024 8:32 PM
I'm writing a simple report using the Create R
Infor SCM
Translating 856 to get the ~ REF^CN^ field
4/3/2024 8:24 PM
We are trying to get the tracking number which is
IPA/ProcessFlow
Sample XML file create Flow
4/3/2024 3:43 PM
Hello everyone, I am new to creating XML files
Lawson S3 HR/Payroll/Benefits
bn105 error message
3/26/2024 6:40 PM
I need to change some of the set ups in our Life I
IPA/ProcessFlow
IPA executing Job
3/13/2024 7:08 PM
New to the IPA world and was wondering, can an IPA
Lawson S3 HR/Payroll/Benefits
Life Age Reduction on benefits plans
3/12/2024 7:15 PM
For our optional life we have an age based coverag
Lawson S3 HR/Payroll/Benefits
BN53.1 Add-In
3/7/2024 3:31 PM
We are migrating to Solstice. They require a
Lawson Business Intelligence/Reporting/Crystal
Domain Name Change
3/5/2024 7:45 PM
Our domain name needs to change and was hoping I c
S3 Customization/Development
Cobol calling Shell Script
2/29/2024 1:27 PM
Has anyone created or modified a Lawson Cobol prog
Top Forum Posters
Name
Points
Greg Moeller
4184
David Williams
3349
JonA
3288
Kat V
2984
Woozy
1973
Jimmy Chiu
1883
Kwane McNeal
1437
Ragu Raghavan
1351
Roger French
1311
mark.cook
1244
Forums
Unanswered
Active Topics
Most Liked
Most Replies
Search Forums
Search
Advanced Search
Topics
Posts
Prev
Next
Forums
S3 Security
Auditing?
Sort:
Oldest First
Most Recent First
You are not authorized to post a reply.
Author
Messages
MattD
Veteran Member
Posts: 94
9/16/2010 5:27 PM
Howdy Gurus,
Any ideas on ways to audit user activity? I have discussed this with Lawson and they can only audit activity in the LSA tool. I want to audit actual users of the system. Any ideas on Lawson functionality or custom processes to audit this kind of activity. I would like to know of what your companies due to handle this or if there is just not a need for it.
Many thanks for any replies.
Matt
MattD
Veteran Member
Posts: 94
9/16/2010 7:40 PM
In chapter 12 of the Resource and Security guide it talks about using user_ids for database authentication instead of a privileged ID. Has anyone done this and if so how well does it work?
Dave Amen
Veteran Member
Posts: 75
9/16/2010 11:25 PM
Hi Matt,
As you probably know, Lawson Security 9 can audit these:
- Changes made to the security configuration
- Access denials (such as invalid attempts to use HR11)
The security logs in $LAWDIR/system will track user activity, but you have to turn auditing on for that user and read through these rather challenging log files (thousands of lines can be generated for pulling up a list of vendors and viewing an invoice, for example).
I understand that this information is also captured in WebSphere logs, but there is still the issue of how to collect useful information out of the masses of logged data.
Other than those, I’ve looked for years and haven’t been able to find anything delivered by Lawson for this.
If you’re interested in tools written by a Lawson partner company, Kinsey & Kinsey has software that does this:
The Listener (used as part of Kinsey’s automatic Lawson Security build) tracks who connects to which screens and what function code they used, with security classes and a variety of reports showing all of that.
Transaction Auditing – captures before and after values for any field in any screen that you wish to track, together with who, how they connected, date, time, etc.
Best regards,
Dave
(303) 773-3535
You are not authorized to post a reply.