Search this forum:
Search
To join the discussion you need to register first. (Registration is free!) If you are already a registered user please login to join the discussion.
Page 1 of 612345 > >>
Topics
 Replies
 Views
 Last Post
16 Replies and 10957 Views Questions about the Lawson Delivered ESS Security Class    10957  16 Started by  alincoln Hello all, We're a new Lawson deployment in the mist of setting up ESS and MSS for our employees. Right now, we are trying to build our security classes based off of the Lawson delivered templates and I'm getting conflicting information on this method. When attending a recent Lawson Security class (and in my Lawson System Foundation class) I was told that we should be using the Lawson delivered classes for our Self-Service security roles.&160; However, I was told recently by Lawson Sup...
16 10957
by  Joe O'TooleJump to last post
04/18/2016 10:06 AM
25 Replies and 13162 Views LSF9 - deactivate user accounts?    13162  25 Started by  Anya We are migrating to LSF9 and using ADAM ldap. I know there is no Lawson command yet to &160;mass delete user accounts from ADAM. But I was wondering if there is a simple way to de-activate the accounts Thanks!
25 13162
by  AnyaJump to last post
08/03/2010 2:08 PM
5 Replies and 6409 Views Inactivating Security in LSF9    6409  5 Started by  SharonM We will be going LIVE with S3 financials on November 1,2009.&160;&160; We are using LSF9 Security with LDAP bind.&160; I am wondering if there is a way to inactivate a user's security when they leave the organization or do we depend on the Acitve Directory account being disabled which would prevent the user from logging into the Portal.&160; Is this typically good enough for the auditors
5 6409
by  Ellen MeltonJump to last post
11/11/2009 11:37 AM
2 Replies and 17232 Views Function Code definitions ?!    17232  2 Started by  Deleted User Hi, I've done a bunch of internet searches and can't nail down all of the Lawson function codes. Here's what I've figured out so far. Please correct me if I'm wrong on any of them and add any others that I don't mention... I – Inquire S – Scroll P – Previous - - Previous N – Next - Next A – Add C – Change D – Delete X – M – O – Thanks a lot!
2 17232
by  RandallJump to last post
09/11/2009 5:40 PM
4 Replies and 7008 Views LSF9 and Security Fast Track    7008  4 Started by  MattD Has anyone implemented LSF9 and Lawson Security Fast Track at the same time If so I was wondering how the implementation went. Did you have any major problems that we should look out for. Would you recommend doing these two installs at the same time. What were your reasons for doing both at the same time Any information you can provide would be greatly appreciated. We are currently on 8.0 Env and 8.1 apps. Moving to 9.0 Env, 8.1 Apps, with Lawson Security. Thanks again. Matt
4 7008
by  John HenleyJump to last post
10/01/2008 1:48 PM
1 Replies and 153 Views Debug Conditional Rule Access v9 / v10  153  1 Started by  edison Hello, We upgraded LSF from v9 to v10. We're having an issue where users can edit their own records. We don't want users to edit their own record, it is working on v9 but not in v10.   I've narrowed it down to the Security Class - Conditional Rule Access. this line: if((user.getCompany()==lztrim(form.COMPANY))&&(user.getEmployeeId()!=lztrim(form.EMPLOYEE)))    'ALL_ACCESS,' else    'NO_ACCESS,'   The above rule always default to false. I've tried d...
1 153
by  JimYJump to last post
11/14/2017 6:19 AM
0 Replies and 90 Views GL290 Conditional Rule for Company_Group  90  0 Started by  MikeCos Is there a way to write a rule for GL290 to limit a user's access based on the companies in their user CompanyControl attribute versus the companies in the Company_Group So, if the user enters a 'Company Group' (that's been defined on GL11.1), the rule would compare the companies in the user's CompanyControl and allow access to GL290 if all the companies in the Company Group are present in the user's CompanyControl attribute.   For example, the user enters 'GL Close' in the 'Compan...
0 90
11/01/2017 3:34 PM
5 Replies and 606 Views How to determine security requirements to run a batch program  606  5 Started by  JasonP Hi-   I have heard there is a unix/lid command we can run on a form that will report out what table and form security it rquires.  For example if I ran it on form AP520, it might return to me apcinvoice and apcdistrib.  Anyone know this command or have a good method on how to determine what security is needed for each program.   Thanks.  
5 606
by  Dave AmenJump to last post
10/22/2017 8:28 AM
0 Replies and 121 Views Monitor IFS Sync  121  0 Started by  SurvivorAC Has anyone automatically monitored the IFS Sync  I would like some thoughts. 
0 121
09/18/2017 11:23 AM
2 Replies and 1623 Views Limit LSF9 security by Security Location  1623  2 Started by  RachelM Currently, our LSF9 security structure is set up as&160;Corp HR, West HR and East HR.&160; Corp HR = corporate payroll (they do not handle tasks such as hiring, status changes, comp reports, etc.&160; They do have access to all employees irregardless of their location) East/West HR = handle all hiring, status changes, reports, ability to answer employee questions for their respective locations. There is a process level (PL100) that spans both the East &&160;West HR&160;groups.&160; ...
2 1623
by  SHAWNPJump to last post
09/01/2017 1:02 PM
1 Replies and 308 Views PR13.3: Security Violation  308  1 Started by  maalimsimo We are converting to Lawson Security as we upgrade to Lawson 10. Our HR Admin  is testing HR11 for New Hires functionality and after she's done with the TAX tab, she gets a 'security violation' error for PR13.3 on 'Add'. Meanwhile, she has been granted 'all' access to both HR11 and PR13. What could be going wrong in this scenario
1 308
by  Kwane McNealJump to last post
08/29/2017 2:55 PM
2 Replies and 453 Views Just wondering what everyone else does...  453  2 Started by  CindyW When you create your security classes, do you generally have much overlap as far as the forms/tokens  Do you try to minimize that  Is it a headache to have much duplication  We are still testing our security and hope to be using it in production soon, but I am still trying to wrap my head around the best methods.  It's such a beast!
2 453
by  Russell SpreemanJump to last post
08/25/2017 10:25 AM
0 Replies and 143 Views No Security Reports Listed  143  0 Started by  pops When I go into the Lawson Security Administrator  (version 10) in our production environment, I then go to Report Maintenance and none of the reports are shown.  I even tried to create a report but it doesn't save it.  At the bottom of the screen it says 'Lawson Security Error: Please check log files for details'.  Has anyone seen this before and know the resolution  I'm not sure what log files to check and the Lawson environment seems OK.   Thank you! Allen
0 143
08/15/2017 10:27 AM
6 Replies and 1138 Views Random sudden security violations  1138  6 Started by  Ronnie Ok,   I am new to a company i just started working for. Within the past two days users have started sudden getting security violations when inquiring and returning data on PR forms ...example PR36 now gets security violation. Yesterday the apps system was rebooted and this seemed to resolve issues for users. This morning users are getting security violations again.   Users have been able to return data with no issue in the past and no changes have been made to my knowledge.  ...
6 1138
by  Kwane McNealJump to last post
08/07/2017 6:49 AM
0 Replies and 146 Views Reports from LSF  146  0 Started by  Bev Edwards Is there a way to run a report on only ACTIVE users in LSF that have access to Lawson   I know how to run a report that pulls all of the User assigned roles, but its pulling users who are no longer employees.,    Is there a way to filter these out and only pull those who would have an active AD acct
0 146
07/18/2017 4:44 PM
29 Replies and 4990 Views RSS and restrictions  4990  29 Started by  Greg Moeller I'm just relatively OK with this new Lawson security product. I've tried rules like: On the POR-PO-NUMBER field in PO30.1 if(trim(getDBField('POLINESRC','REQUESTER',form.POR_COMPANY,form.POR_PO_NUMBER))==user.getRequesterId()) 'ALL_ACCESS,' else 'NO_ACCESS' But it never seems to take effect. What am I missing here Is there a better way to do it I know I also have to limit the drills, but wanted to get the form portion of this working first. Thanks in advance for any he...
29 4990
by  thanefJump to last post
06/30/2017 2:53 PM
0 Replies and 280 Views PA21 security  280  0 Started by  RickyY How do I write a security rule on PA21 that only allow user to add a new competency to itself. I was able to restrict the security to self only but it will not allow to add.
0 280
06/20/2017 6:25 PM
3 Replies and 564 Views BATCH compile producing a security violation using pgmdef  564  3 Started by  Demichener Nothing in security reports or logs. Admin account is receiving a security violation in pgmdef when attempting to compile ANY batch program, not 'online' program. The violation appears in place of the 'options' window. I am trying to locate the specific access granted to the delivered SuperAdminRole for each profile, class and object. I believe the object 'might' be element type in ADM. I say 'might' because my security class has it defined, But it can not locate the object r...
3 564
by  JimYJump to last post
06/16/2017 5:09 AM
3 Replies and 670 Views Hide Pay Rate in HR11 based on Job Code  670  3 Started by  jbaisch Is there a way to setup rules in LS9 so Pay Rates of individuals with certain Job Codes can be hidden    We need the ability for our HR and Payroll people to process and work in HR11, but only allow the managers of those departments to see the pay of executives.  All of the executives have job codes above 8000 and are present in multiple companies and process levels.    
3 670
by  jbaischJump to last post
06/09/2017 3:16 PM
4 Replies and 655 Views Environment commands for Portal security  655  4 Started by  Margie Gyurisin Prior to Lawson 10, we had were solely LID users and could manage many items, recdef, distribution group maintenance/additions/view members, etc.   When on laua security, it would take them directly to the menu and the tasks could be performed by typing recdef in the form transfer.   Now that we are on 10, the decision to not allow LID access as been made and everyone is LS security.  The issue is maintaining distribution groups or even see members of the groups through Portal...
4 655
by  ErikJump to last post
05/24/2017 11:38 AM
0 Replies and 171 Views Mass Deactivation of Lawson Users  171  0 Started by  AG7 Hello, We are moving from Lawson to Oracle HCM and need to deactivate around 130 Users in Lawson and also delete the 10,000 inactive users profiles.  I am new to Lawson. Could you please let me know how to mass 130 deactivate the Users in Lawson and delete the 10000 Users. Any Help is highly appreciated. Thanks!
0 171
05/18/2017 3:48 PM
1 Replies and 436 Views How to run a report for Portal Role?  436  1 Started by  Ronnie Ok, I am needing a report of all users who have a certain Portal Role assigned on their setup.   I know I can narrow those users down using the filter in the security console, but there is no way to export the huge list.    I did not see an option in the security reports lawson offers either. Is there any other way
1 436
by  misneraJump to last post
05/01/2017 7:17 AM
1 Replies and 409 Views How to create security groups in bulk  409  1 Started by  Jey Hi,  I understand we can creating a security group using Lawson RM administrator tool .I have to create 350 groups in security . Is there an automated way or utility to do this  
1 409
by  Kwane McNealJump to last post
04/20/2017 7:20 PM
2 Replies and 398 Views Counting license usage  398  2 Started by  CMNew We recently had an Infor audit and were found to be out of compliance for several of  the modules we purchased FINPRO,GMHRP and MRBAC.   We bought some Inquiry licenses and new licenses but we are struggling with a way to monitor usage.   Does anybody know of any good tools to monitor Full and Inquiry license usage for FINPRO, GMHRP and MRBAC
2 398
by  Brian AllenJump to last post
03/31/2017 10:58 AM
0 Replies and 219 Views Global HR/Talent Management security  219  0 Started by  Jey Hi,  I understand that with every landmark application the security roles are pre-delivered . How many roles does GHR has Does the delivered roles are always sufficient to meet the security needs   Regards Jey
0 219
03/29/2017 6:09 PM
13 Replies and 937 Views Trying to use the mass assignment RM tool for 10 upgrade  937  13 Started by  Ronnie We are currently working on implementing out system from 9 to 10. I have many users I am needing to assign roles to because in 9 most of our users were set up with no roles in LS, and inheriting security from a lawsoness ONLINE privileged user that was set up in LAUA. I am going into the mass assignment tool and trying to add roles to all users such as the ESSrole. The mass assignment tool says that the operation completed successful, but when I go and look at any users in LSA tool there are ...
13 937
by  JeyJump to last post
03/29/2017 6:03 PM
1 Replies and 566 Views how to remove add, change delete ect  566  1 Started by  rmoe ew to lawson, have lawson security admin vers 10, would like to no how do i limit what ALL end users can see in PO20.1, would like to be inquiry only, any help to accompolish this would be helpful.
1 566
by  jpisareJump to last post
02/03/2017 1:25 PM
1 Replies and 523 Views not sure how to go about this security task  523  1 Started by  Ronnie I got sent an email:   'Is it possible to have access to salaried information for the clinics but exclude Corporate.  With the new insurance benefit for employees making less $20 an hour one of the questions that Employee A and B are asked when they do an enrollment is whether the employee makes less than $20 an hour.  Im considering how to give them that information and I would feel more comfortable with them not having access to corporate salaries.  Let me know if this is...
1 523
by  JLeonardJump to last post
02/02/2017 2:45 PM
0 Replies and 157 Views how to remove add, change delete ect  157  0 Started by  rmoe ew to lawson, have lawson security admin vers 10, would like to no how do i limit what ALL end users can see in PO20.1, would like to be inquiry only, any help to accompolish this would be helpful.
0 157
01/31/2017 1:03 PM
1 Replies and 484 Views Lawson Security for viewing others print jobs  484  1 Started by  Ronnie Where is it in Lawson Security that determines that someone can see someone elses print job etc I know in LAUA there is also the parameter you can change for delete update jobs. Where is this in LS as well     Thanks in advance.
1 484
by  jpisareJump to last post
01/30/2017 10:38 AM
1 Replies and 536 Views Security on Invoked Programs  536  1 Started by  SurvivorAC I stumbled on a list of programs not in the security setup.  A large number of them are invoked programs, so I looked for security classes with them to figure out what the naming convention/strategy was.  The last time I migrated from LAUA to LSF9 security, we had a plan, but I do not remember what we did with invoked programs.  I think we put them in their own security class by system code and assigned them every time we assigned the files for the system code because the invoked ...
1 536
by  Dave AmenJump to last post
01/24/2017 2:01 PM
0 Replies and 329 Views Security With DB Connection Failures  329  0 Started by  SurvivorAC A couple of weeks ago, we had reports that the security was not not working properly.  We have the following in a rule: getDBFieldByIdx('EMPLOYEE','PROCESS-LEVEL','EMPSET1',COMPANY,EMPLOYEE) The reasoning for this piece is that employee information for employees in specific process levels is restricted to a small number of individuals.  The LASE and LADB logs were filling up with errors stating there was a database connection failure, and the error even points to getDBField.   ...
0 329
01/23/2017 11:18 AM
0 Replies and 426 Views Security With DB Connection Failures  426  0 Started by  SurvivorAC A couple of weeks ago, we had reports that the security was not not working properly.  We have the following in a rule: getDBFieldByIdx('EMPLOYEE','PROCESS-LEVEL','EMPSET1',COMPANY,EMPLOYEE) The reasoning for this piece is that employee information for employees in specific process levels is restricted to a small number of individuals.  The LASE and LADB logs were filling up with errors stating there was a database connection failure, and the error even points to getDBField.   ...
0 426
01/23/2017 11:17 AM
2 Replies and 527 Views Spouse employment..what am I missing?  527  2 Started by  Ronnie I am working on a section of ESS where there is a life events section. One of them is 'spouse employment' From what I can tell it appears that an employee can update if a spouse gets employeed, changes, or is termed from somewhere. They can update the name of employer and address etc.   It looks like it uses the spouse tab on HR11 and writing to ES10 for the family change.   I have ES10 working and updating when an employee makes a change, but for some reason I can not get it to t...
2 527
by  RonnieJump to last post
01/23/2017 9:01 AM
23 Replies and 7521 Views ESS and Portal Security from 8.03 to 9.0  7521  23 Started by  Joe O'Toole We're implementing LSF9 and I'd like to understand what the 'best practices' setup is for ESS users if you do not want to maintain a LAUA record for everyone. In 8.03 I beleive the necessary security was inherited by defining a RD30 record and assigning the user to a ESS group that had the application assigned to it. In LSF9 we are getting Logan security errors when logging into ESS if the Domain user in Identity Manager is&160;blank or&160;not defined in LAUA security as having access to Loga...
23 7521
by  John HenleyJump to last post
01/16/2017 9:18 AM
0 Replies and 425 Views SecAdmin LS9 Conditional Rule  425  0 Started by  K. Hopkins Hello,  I have been asked to secure the reason codes when a process level a specific value in order to prevent users from using an invalid reason code. Essentially: If ProcLvl = 'XX' then reason code in ('1','2','3','4','5'), then allowed (ALL_ACCESS), otherwise deny (NO_ACCESS).   I am trying to avoid creating a Group for this. Has anyone done anything like this and/or have some tips   Thanks!    
0 425
12/07/2016 4:22 PM
4 Replies and 1156 Views LSA Allow users access to other's batch jobs by group  1156  4 Started by  haddixst Hello, we are implementing LSA as part of our V10 upgrade.  We are having issues trying to allow users access to other user's batch jobs.  What we would like to do is to have for example a member of the payroll department have access to their own jobs, plus access to jobs of other members of the payroll department.  I'm guessing this would maybe be implemented using groups  Any advice is appreciated.  Thanks
4 1156
by  haddixstJump to last post
11/25/2016 11:27 AM
2 Replies and 755 Views Lawson security Exceptions  755  2 Started by  Sameer Singh We are receiving Lawson security exceptions while updating any records through LSA. Although changes are being reflected in the system. Attaching screen shot for the exceptions. We have recently mitigated to LAWSON V10. Our platform is ISereis. Any help will be highly appreciated. LASE server log is showing below exceptions. Attaching screen shot for reference.   16-11-01 09:39:57:135 2073 default.SEVERE server.events.ServerRMDataAccessEvent.RMDATA( ): java.lang.NullPointerException St...
2 755
by  Sameer SinghJump to last post
11/02/2016 8:58 AM
2 Replies and 738 Views Secure 'Product Line' Parameter  738  2 Started by  Demichener I have been asked to grant an end user full access to use IMDBB.  IMDBB is in the IF system code.  Without hard-coding a product line value, are there any global functions or security rules available that would secure the product line parameter to the user's 'DataArea/ID' We are operating on 10.0.9 core, 10.0.6 apps.
2 738
by  DemichenerJump to last post
10/31/2016 11:53 AM
15 Replies and 5664 Views S3 LSF9 Securing User drops in Print Manager and on Jobs  5664  15 Started by  LeslieP I have been unable to successfully secure the print files and user drop downs. I do not want an AP bookkeeper to see the check files created by a PR User.&160;I do want supervisors in departments to see their group but do not want the members of the group to access other members. I have approached it with rules on gen tables, rules on My security is complex having multiple companies and multiple productlines and users with different hats for different combinations of prodline, company and proce...
15 5664
by  LesliePJump to last post
10/27/2016 3:53 PM
2 Replies and 743 Views Cloud User Setup  743  2 Started by  SurvivorAC I am familiar with setting up users on premise.  If I have a batch user, I setup the environment identity.  How is that different in the Cloud
2 743
by  SurvivorACJump to last post
10/25/2016 12:35 PM
9 Replies and 8177 Views Lawson Security Reports  8177  9 Started by  Arvin Ojales I implemented a Lawson Security Reporting that is viewable via Web browser. With a simple XSL transformation, HTML and JavaScripting I created a web site that will&160;render the&160;RM informations to a web browser.&160; I was able to report the ff informations: Roles, Security Classes, Rules, Roles attached to a user, all security policies for a user, all users that has access to specific form and the type of access, date stamp and userid when a security class was last modified. See&160;...
9 8177
by  Jeff ShumateJump to last post
10/14/2016 12:03 PM
3 Replies and 1598 Views Buyer Security  1598  3 Started by  riegerj We are trying to find a way to keep buyers from keying POs to any other buyer code except their own.  We found a lawson KB article that says you can add PROC LEVEL BUYER-CODE to your security.cfg and maintain it through LAUA but that concept seems very labor intensive to me.  We would have to create a security class for every user!  We are instead considering a user exit that will stop them if the buyer code is not theirs.  Has anyone tried doing this in security or any other...
3 1598
by  xxxxxttysfhJump to last post
10/06/2016 7:37 PM
1 Replies and 658 Views Auditing ESS and RQC users  658  1 Started by  xxxxxttysfh Hello    Do we need to add lawprod and environment identities for users just for ESS and RQC for auditing  
1 658
by  JimYJump to last post
10/04/2016 12:17 PM
0 Replies and 370 Views CloudSuite and IFS  370  0 Started by  SurvivorAC What are CloudSuite and IFS doing for me  How does it fit in with ISS
0 370
10/04/2016 8:29 AM
5 Replies and 933 Views List all users Batch Jobs  933  5 Started by  pops Hello! We are running Lawson 10 and today users went to submit some batch jobs and they all went in the waiting queue.  There is a job that is running that is preventing anyone else from submitting a job.  How do you see a list of all user jobs running and their size  We need to kill this job as it is effecting the production environment.  Is there a way to do this using LID.  We connect to LID by select connecting to NT Server.  Any help that you could provide wo...
5 933
by  Greg MoellerJump to last post
08/16/2016 8:19 AM
2 Replies and 933 Views Losing data after timeout in Lawson 10  933  2 Started by  Brian Veldhouse In previous versions of Lawson, the user is returned to the screen they were using with their data intact after a timeout by re-entering their password.  Buyers using PO20 and Accounts Payable, using AP20 are frustrated with losing their PO and invoice data when they are interrupted. Anyone else have this issue I entered an enhancement request for this (ER 9223).  In my opinion this is a defect, not an enhancement, since it worked perfectly in prior versions.
2 933
by  Brian VeldhouseJump to last post
08/08/2016 9:05 AM
1 Replies and 738 Views ISS security error when adding new user  738  1 Started by  JohnH Good morning, I am new to the Lawson product and environment and still in the early stages of learning how it is set up.  We are having an issue when trying to add an actor via ISS.  We get all the fields entered and click on Save Actor and get a white box with an Exclamation Point and it only says Infor Security Administrator but does not display an error message (see end of thread).   We are able to add the user via Lawson Security Administrator and it will show up in ISS. &n...
1 738
by  JimYJump to last post
08/05/2016 6:10 AM
0 Replies and 504 Views ISS security error when adding new user  504  0 Started by  JohnH Good morning, I am new to the Lawson product and environment and still in the early stages of learning how it is set up.  We are having an issue when trying to add an actor via ISS.  We get all the fields entered and click on Save Actor and get a white box with an Exclamation Point and it only says Infor Security Administrator but does not display an error message (see end of thread).   We are able to add the user via Lawson Security Administrator and it will show up in ISS. &n...
0 504
08/04/2016 10:37 AM
4 Replies and 613 Views Definition Data Source - have you ever changed it?  613  4 Started by  CindyW We are testing the LSF security (still use LAUA in production) and I am learning as I go.  I have a question about the Definition Data Source. We've created a fairly complete security setup on our test server and we have users testing it out.  We have a single application profile, and we use that one profile for all of our test product lines/data areas.  (FWIW, we have always had about 5 or 6 product lines in TEST, due to different users testing different scenarios, and patch tes...
4 613
by  CindyWJump to last post
08/02/2016 9:58 AM
5 Replies and 827 Views Auditing User Activity  827  5 Started by  TBonney Does anybody know if either Infor/Lawson or a third party vendor has a tool to monitor a user's activity within Lawson S3 Portal (Ming.le) We have had Human Resources inquire if we can monitor and track a user's activity within Lawson. I know we can track actual changes to the data on multiple forms/tables by way of the 'last modified' information in the database tables, However, we are unaware of any product to allow us to simply track screen/data view activity only. Is anyone else...
5 827
by  TBonneyJump to last post
07/27/2016 10:41 AM
3 Replies and 1186 Views Orphaned Identity  1186  3 Started by  pops I am running Lawson 10 with Landmark installed and I needed to delete a user due to an incorrect actor id.  Here is the process I followed:   Removed use from Lawson System Foundation Deleted user from Lawson Security Administrator In the Landmark Rich Client I did the following: Found the user Double clicked on the user and went to the roles tab and removed all roles Went to the identities tab and removed the two identities (lawprod10x and SSOP) Exited out of the that and ...
3 1186
by  JimYJump to last post
07/12/2016 5:21 AM
3 Replies and 1401 Views Who changed a reocrd?  1401  3 Started by  Wade-T I am looking for a way to find out what user changed an employee's PR12 record The HR/PR staff are under LID security. Is there an easy way to find that out
3 1401
by  Greg MoellerJump to last post
07/11/2016 3:39 PM
8 Replies and 3065 Views Mass Load Users - ldusers.pl  3065  8 Started by  Deleted User We are a 10.0 LSF and LMK shop with ISS Federation - LSF as PSA. Trying to use ldusers.pl script to mass load users for the LSF side, then run ISS Federation sync to pull into LMK side. Need to add WFUser and OLEDB fields to XML if possible. Does anyone know 1. If these parms can be added and 2. What would be the names needed in the XML Gail   
8 3065
by  Jay2Jump to last post
06/29/2016 10:12 AM
1 Replies and 1043 Views Lawson Security Best Practices - HELP  1043  1 Started by  dilettante Hello all and HELP, I've been working in security for several years and am at a new job where i've been tasked to lead a major remediation effort on a lawson enviroment, unfortunatly while i've got a lot of security background no lawson background.  After meeting with the existing Lawson ERP team, it's clear that due to a lack of training and resources many of the common things that i would have expected to be in place aren't, and in many cases the team didn't even know they existed (like...
1 1043
by  Kwane McNealJump to last post
06/16/2016 5:35 PM
12 Replies and 3792 Views Company Level Security  3792  12 Started by  Deleted User Using the new Lawson security is there a quick way to setup company level security so only certain users can see a company&160;
12 3792
by  LKEN2002Jump to last post
06/06/2016 3:34 PM
4 Replies and 1361 Views User Token Security in Lawson 10  1361  4 Started by  Todd Mitchell We are upgrading to Lawson 10 and in our testing via Portal (Ming.le) we (the developers and the business users) are not able to access or create jobs that include User tokens.   i have reviewed the Lawson Security Administrator and the tokens are there and assigned to a security class that the user has been granted.  I added an Environment token via the multi-step job (just to verify I could add other tokens) and that worked. Any ideas on what may be missing in our environment or sec...
4 1361
by  Todd MitchellJump to last post
05/11/2016 2:08 PM
0 Replies and 580 Views Add/Change Batch report with data security  580  0 Started by  Carolyn Lee Hi, we ran into an issue with data security allowing GL inquire only access to a company. When trying to add a GL240 report with that company in the parameter it gives a Security Violation. Has anyone run into this and how did you allow to add/change that company parameter to a report (GL240) when it's inquire only Thanks.
0 580
05/05/2016 5:43 PM
2 Replies and 1738 Views EMSS, Lawson Security, Search box, SuperUser, Portal – how do you do it?  1738  2 Started by  kim We are in the process of implementing Lawson Security for our super user community.  EMSS users are already using Lawson Security.  EMSS has custom rules and validation built and is the “preferred” method for performing updates. EMSS has a set of required programs that the EMSS role(s) have been granted access.  As we all know, with Lawson Security the user has a single login, which means those super users not only have access to EMSS but also the Infor application.&...
2 1738
by  kimJump to last post
04/06/2016 10:46 AM
2 Replies and 1778 Views Read Only Role  1778  2 Started by  Alex I need to create a role that has read only access to the all HR, BN, LP, PA,PR,IF forms in production.   I am really hoping that I do not have to create a hundred new security classes with read only access. Is there a way that I can globally grant them read only access to all forms in a productline or environment   Thanks Alexandra    
2 1778
by  rhcoJump to last post
04/01/2016 11:04 AM
1 Replies and 875 Views LP balance view on ESS paychecks  875  1 Started by  Margie Gyurisin Can someone point me in the direction regarding what I need to add to the self service role so that employees can see the balances on their ESS paychecks, please We are currently migrating to  apps and EMSS 10.   I appreciate any help you can provide.  
1 875
by  JimYJump to last post
03/22/2016 9:23 AM
2 Replies and 1073 Views Anyone remember the difference between LAUA, and LAUA -o?  1073  2 Started by  CindyW I am working on the new LSF security, and wanted to use an old existing accounts for testing.  The particular account was an account that I only used for ESS testing, but now am adding the full access so that I can test out the new security models we have created.  I added environment service/identity info in LS, but can only see this account with the straight 'LAUA' command.  Normally, I use LAUA -o...which is much faster.  I remember something about different domains m...
2 1073
by  CindyWJump to last post
03/11/2016 3:42 PM
1 Replies and 876 Views Delivered Security Role Install Issue  876  1 Started by  Joe O'Toole I'm running the LS delivered role install script below and it just comes back with the syntax but does not create the roles. We have a Profile ID in Sec Admin called PRD and the data source assigned to is PROD9. Has anyone run into this Thanks. run from \lctprod\gen\install perl install-rnr.pl -PROF=PRD -PL=PROD9 perl install-rnr.pl -PROF=&ltprofile&gt -PL=&ltapp productline&gt
1 876
by  Joe O'TooleJump to last post
03/09/2016 2:01 PM
1 Replies and 758 Views Unable to change object(<userid>), security violation. Object is secured  758  1 Started by  JimY I am attempting to disable a user using Process Automation.  I want to change the value of isDisabled to 'YES'.  This did work in test, but when I try it in production I receive the error:   &91;code&93; Error code: 22 Information code: 1   Return message: Unable to change object(), security violation. Object is secured. &91;/code&93; I am not sure what object I need to grant access to in Lawson Security so that this works.  Thank you.  
1 758
by  JimYJump to last post
03/07/2016 12:28 PM
2 Replies and 1161 Views RM Groups in Version 10  1161  2 Started by  SurvivorAC What is the version 10 equivalent of RM groups
2 1161
by  SurvivorACJump to last post
02/12/2016 8:43 AM
0 Replies and 638 Views Rules for DT0  638  0 Started by  Jay2 When writing rules against the DT0 section of a form ie. AP52.3, do I only need to apply the rule to the object type FLD or do should I also apply the rule to the object type HDN.  The problem is when I run a UserSecurityReport in one of my test data areas the Object Info column reports the line as HDN - DT0, In my other test data area it reports it as HDN -AP52.3, when I am expecting it to report as HDN - AP52.3,AMI-AU-GROUP like it shows it in the security class.
0 638
02/10/2016 10:02 AM
1 Replies and 1183 Views New DN error in Tivoli directory server  1183  1 Started by  rkm210 i have created suffix through idsxcfg window and I am creating empty DN for lsf10 from TDS Web Administration tool ... got an error when trying to add new entry under directory management.. environment is TDS 6.3 and Red hat 6.   Error GLPWDM003E  An error occurred while adding entry cn=lsf,dc=company,dc=org : &91;LDAP: error code 65 - Object Class Violation&93;.   any help from community is appreciated..
1 1183
by  Roger FrenchJump to last post
02/10/2016 9:20 AM
4 Replies and 4215 Views LSDUMP/LSLOAD PROFILE  4215  4 Started by  Jay2 I am running LSF 9.0.1.5 I ran lsdump -f uat.xml PROFILE UAT -addRoleMapping I then ran lsload PROFILE uat.xml -p INT -addRoleMapping Now the problem I see is Profile description in the Security Administrator tool show User Acceptance Testing, How do I go about changing it to Integrated Testing. Is there a way to change it through SSOCONFIG
4 4215
by  Greg MoellerJump to last post
01/29/2016 11:35 AM
1 Replies and 1214 Views How to restrict peer to peer access within HR  1214  1 Started by  Eric Morris We have HR employees that need to see pay information as part of their jobs. However, we want to restrict them from seeing their coworker's pay who also work in HR. Has anyone done this Any solutions to how this can be done Our desired result is to be able to do this directly in HR11 without creating a customized program that points to a restricted view, but we also have to take into account the performance issues that complex rules can somtimes cause. Thanks in advance!
1 1214
by  Kwane McNealJump to last post
01/06/2016 3:05 PM
2 Replies and 1785 Views SSO login issue  1785  2 Started by  Anishkumar Hi all, Greetings!!!  Please help in solving the below issue.I can able to understand that multiple identities are mapped to the lawson user but i dont know where to delete the mapped identities where i am unable to login to the SSO itself C:\lsfdev>ssoconfig -c No upgrade available for Version 1.2 &91;WARNING&93; Unable to retrieve security context!... com.lawson.lawsec.authen.LSFSecurityAuthenException:There are more than one iden tity 0 using this OS user LOCAL\lawson. Please ch...
2 1785
by  JimYJump to last post
01/04/2016 11:29 AM
3 Replies and 2464 Views Lawson Security Administrator 10.0.1.0  2464  3 Started by  Maureen Castor I recently installed Lawson Security Administrator 10.0.1.0; however, when I attempted to launch the application, I received this error:  ActiveX component can't create object. I've tried uninstalling and re-installing on two different PCs always with the same result.  Infor directed me to KB article 1616661, which did not resolve the issue.  Researching the error only yields info specific to MS Windows applications; however, some of the information is leading me to the suspicion ...
3 2464
by  Maureen CastorJump to last post
12/08/2015 8:23 AM
4 Replies and 1784 Views Security Class Rules - table grey color  1784  4 Started by  Karen Ploof I know green is full access, red is no access and blue is conditional.  Never saw a table completely greyed out.  
4 1784
by  Greg MoellerJump to last post
12/04/2015 4:33 PM
3 Replies and 1531 Views ISS and email addresses  1531  3 Started by  JLeonard We've recently upgraded from LAUA to Lawson Security, and we're processing our new users via the loadusers utility and then syncing them.  For the most part, this is going very well (thankfully!)--but it's not syncing the email address to LTM, though it's there in ISS and syncs to LSA.  I thought/hoped it would update LTM as well, since that's where we really need it.  (It does update the roles and other information, just not the email address.)  Is this normal  Do...
3 1531
by  Peter OJump to last post
10/28/2015 1:57 PM
1 Replies and 1153 Views privuser  1153  1 Started by  Lawson Moose We're on 9.0.1.1, UNIX platform.   Here and there we have a user name of 'privuser' show up on reports, Personnel Actions, various things.  But we need to find out the actual user behind these cases.  Can someone give an explanation of the origin of privuser, and any handling/investigation process that would help us  We have no idea where this is coming from.
1 1153
by  Kwane McNealJump to last post
10/23/2015 12:41 PM
1 Replies and 1116 Views ESS forms accessed by FN/SC Users  1116  1 Started by  Peter Maynard Has anyone found a way to keep Finance and Supply Chain users from accessing ESS forms from the search box  Forms like the HR11, PR12, etc.
1 1116
by  Tim CochraneJump to last post
10/21/2015 9:49 AM
0 Replies and 613 Views Global limitation by vendor class  613  0 Started by  CMNew If I want to do a global limitation by vendor class, can I (a) do it at the element level  or (b) table level APVENMAST - or do I need to limit multiple tables or (c) do I need to do it at the form level also. It seems to be working by just doing it at the table APVENMAST level on Inquiry security classes but perhaps I am overlooking something. Can anybody point me to a good document outlining advanced security rules
0 613
10/19/2015 12:49 PM
0 Replies and 613 Views Global limitation by vendor class  613  0 Started by  CMNew If I want to do a global limitation by vendor class, can I (a) do it at the element level  or (b) table level APVENMAST - or do I need to limit multiple tables or (c) do I need to do it at the form level also. It seems to be working by just doing it at the table APVENMAST level on Inquiry security classes but perhaps I am overlooking something. Can anybody point me to a good document outlining advanced security rules
0 613
10/19/2015 12:49 PM
2 Replies and 2209 Views ldifgen returning zero byte file  2209  2 Started by  Chad Dirst While running the ldifgen command using the XmlToDataLdif option I am receiving a zero byte file.  I am running this command to convert our XML data file to an ldif format. I have successfully run this command in the past without issue, however, it is now not returning any results. The syntax for the command that I am using is: ldifgen XmlToDataLdif -f /tmp/sourceldapfile.ldif /tmp/sourcexmldata.xml The above command is returning zero byte for for /tmp/sourceldapfile.ldif. ...
2 2209
by  This_GuyJump to last post
10/08/2015 3:35 PM
4 Replies and 2307 Views Read-only access to LSA  2307  4 Started by  Leonard Courchaine Hi, Wondering if anyone out there has had success with setting up a read-only view of LSA   We have some functional superusers that would like to be able to use the tool to view attributes of users in their department but don't want/need to change anything. So far, I've had **some** sucess in that I created the following roles: - ADM Profile - set up one security class (SuperInquiry) with Deny All for all objects except SERVER. For SERVER I have I and InqTypeRole. (otherwise you can't...
4 2307
by  Leonard CourchaineJump to last post
09/25/2015 12:08 PM
1 Replies and 1189 Views Block users from seeing data related to certain AP Vendor Types  1189  1 Started by  mikefortuna I have an AP vendor class of 'ETE'.  I am trying to block users from seeing vendors of this class on AP10, but also any invoices for these vendors on AP90 or any other screen where they might find this.  I am trying to be able to do this with one global rule. I tried setting on the Element VEN-CLASS: if(VEN_CLASS=='ETE')    'NO_ACCESS,' else    'ALL_ACCESS,'   This doesn't do anything for me.    I can set the rule on AP10 and block those vend...
1 1189
by  GregSlJump to last post
09/18/2015 10:35 AM
1 Replies and 1127 Views LSF9 security logs  1127  1 Started by  MBCI I need to know the path containing the security logs for LSF9 on iSeries to track down an access issue .  Can anyone help me with this
1 1127
by  JimYJump to last post
09/04/2015 5:43 AM
4 Replies and 1514 Views Renaming user ID's  1514  4 Started by  Ricardo Does any one know how to rename (change ID and carry over its history) accounts in LSF9 (LAUA)  MSS and ESS access  Is it possible Where does this takeplace
4 1514
by  Greg MoellerJump to last post
09/02/2015 11:50 AM
1 Replies and 937 Views LSA Security - RQ10  937  1 Started by  SheilaClark Currently in RQ10, the user logged into Lawson can enter any requester's ID and submit an order.  How do I restrict the RQ10 to only accept the requester ID for the user logged into Lawson  Our requester ID's are the same as the user ID's.
1 937
by  Kat VJump to last post
09/01/2015 1:18 PM
0 Replies and 798 Views compare AD to HR11 termed users  798  0 Started by  Jared Lytle We are attempting to do some clean up in Lawson Security / Active Directory. I don't have much experience with querying against AD or ATOMS in LDAP, but has anyone developed a sql query that allows visibility of users that have been termed in HR11 in the last 30 days then compare that to any LDAP information so we can display what AD accounts should be inactivated Currently, we use a manual process in which we take a similar query below and security manually inactivates users in ActiveDirecto...
0 798
08/19/2015 4:22 PM
17 Replies and 7993 Views ldusers.pl - script to convert .csv file into .xml file for loadusers  7993  17 Started by  Anya Hello! We've been given (by Lawson consultant, who no longer works with us)&160;a Perl script to convert .csv file into .xml file to mass-load users into ADAM with loadusers routine. It worked fine on 9.0.2 platform, but on 9.0.3 one, the loadusers chocked because it seems like one of the field names changed - from 'Firstname' to 'FirstName'. It's no big deal to tweak the Perl script, but I was wondering if there was a place this script is maintained and can be downloaded from Thanks!
17 7993
by  xxxxxttysfhJump to last post
08/12/2015 2:36 PM
2 Replies and 1025 Views Way to see what security classes have certain token granted?  1025  2 Started by  Ronnie We have tons of security classes in our security. Instead of going and browsing each one, is there a way or report to run where I can see which security classes have access granted to a certain form token I am looking for instead of going through each one
2 1025
by  RonnieJump to last post
08/12/2015 9:16 AM
1 Replies and 1601 Views LSA Security  1601  1 Started by  GalionGal In our non-production environment, our security administrators noticed LSA security was turned off.  They turned it on and noticed that they could not update security as the fields contained asterisks.  The security administrators have the SuperAdminRole which has the AllRMAccess and AllADMAccess security classes.  The role and the security classes look like production.  Security reports can be kicked off but do not run even with the lawson user ID when security is on.  ...
1 1601
by  Brian AllenJump to last post
07/31/2015 12:24 PM
0 Replies and 749 Views Renaming user ID's  749  0 Started by  Ricardo Does any one know how to rename (change ID and carry over its history) accounts in LSF9 (LAUA)  MSS and ESS access  Is it possible Where does this takeplace
0 749
07/15/2015 3:02 PM
2 Replies and 1798 Views LSA tables for creating a report  1798  2 Started by  Kate Liamero I want to create a security report to see which users are active along with their email , who has add-ins, the RMID, SSOP id and requester name.  I need info from all 3 segments RM, Identities and Environment.  Can anyone tell me what tables I need  Thanks Kate
2 1798
by  Greg MoellerJump to last post
05/29/2015 9:26 AM
3 Replies and 1619 Views All of a sudden our secuirty is not working and no one is able to acces any form , omce they logon  1619  3 Started by  xxxxxttysfh Hello all   We had an issue with server and I rebooted the server and all of a Sudden, the secuirty is not working ,fo any of the users
3 1619
by  Greg MoellerJump to last post
05/18/2015 11:42 AM
1 Replies and 1325 Views GL45 conditional rule for HOLD_CODE  1325  1 Started by  Alex Shklovsky  Hello everyone I'm trying to write a conditional rule for GL45 to allow user change one hold code, but no change if attempts to change other hold codes. Getting a security violation message on a hold code that should be accessible based on my rule. Would you guys advise on what am I doing wrong  trim(getDBField('GLCONTROL','HOLD_CODE',form.GLC_COMPANY,form.GLC_FISCAL_YEAR,form.GLC_ACCT_PERIOD,form.AB_GLC_SYSTEM,form.AB_GLC_JE_TYPE,form.AB_GLC_CONTROL_GROUP,form.AB_...
1 1325
by  Alex ShklovskyJump to last post
05/08/2015 3:39 PM
0 Replies and 911 Views Security Role access to PDLs  911  0 Started by  Xin Li I have two PDLs under one environment. How do I create a role and assigned to user so that user will have access to both PDLs   Thanks in advance.
0 911
05/01/2015 3:57 PM
0 Replies and 957 Views GL45 conditional rule for Hold-code  957  0 Started by  Alex Shklovsky Posted earlier a conditional rule for a hold_code in GL45. Is it possible to get one working using getDBfield function in multi line form like GL45 What might be other approach to accomplish it with a conditional rule. Any ideas Thanks Alex
0 957
04/30/2015 6:55 AM
1 Replies and 1123 Views All of a sudden our secuirty is not working and no one is able to acces any form , omce they logon  1123  1 Started by  xxxxxttysfh Hello all   We had an issue with server and I rebooted the server and all of a Sudden, the secuirty is not working ,fo any of the users
1 1123
by  Leonard CourchaineJump to last post
04/26/2015 11:51 AM
2 Replies and 1358 Views How to secure AC through activity group, security_cd and structure.  1358  2 Started by  Kyric Need help, any advise in securing AC through conditional rules. If the user go to AC00.1 he will only see Activity group belongs to the user. Any help or tips thank you.
2 1358
by  KyricJump to last post
04/05/2015 11:07 AM
0 Replies and 831 Views Lawson Security Reports  831  0 Started by  Daniel I am trying to run an attribute report in Lawson Security that needs to include criteria for an attribute(Role) that is blank. I cannot seem to come up with a criteria within Lawson Security reports that will allow me to exclude users with their 'role' attribute blank. I am trying to create a  query that will allow me to update just the users with a particular 'portal role' but their 'role' cannot be 'blank'. I am using the 'is not' function within the report. Any help is appreciated.
0 831
03/24/2015 10:45 AM
4 Replies and 1788 Views Lawson Security changes not taking effect  1788  4 Started by  Shaun C We just upgraded to Lawson 10.0.6 and when I add or take away a ROLE in ISS it doesn't seem to be taking affect.  I cleared IOS cache and the server cache in LSA.  I've had it sit all night and in the morning still not in effect.  Once I bounce WAS then it finally will take and work.  I'm at a lost at this point.  The ROLE is showing in both ISS and LSA and ran a report in LSA and it also shows the ROLE is attached to user.  Then you go into Portal can't access form...
4 1788
by  Jimmy ChiuJump to last post
03/24/2015 8:13 AM
24 Replies and 8072 Views Batch Jobs  8072  24 Started by  KerriR Does anyone have the exact setups that are needed to allow users to submit batch jobs&160; We are using LS9 and some of our users are getting 'security violation' errors when trying to inquire on their jobs (HR170, PR260, PA490 are some examples).&160; If they wait about 10 minutes, they can then inquire and run the job without any problem.&160; I find this very interesting because in my mind, security is either on or off, there's no in between.&160; So why would it NOT work one minute but ...
24 8072
by  randysJump to last post
03/20/2015 10:54 AM
3 Replies and 2711 Views Printers in Portal and LS Security  2711  3 Started by  Roger French I'm doing some work with printer issues in Lawson portal. Some users are using LS Security and when they're in Portal and running jobs such as CU201, when they actually want to print the report, the report shows up in print manager find, and it displays fine on screen, but when they want to send to printer and click on the drop down of the Printer field to list all of the printers, NO printers appear.  These users DO have the BatchRole in their LS Security. I've checked the BatchRole for...
3 2711
by  Dave AmenJump to last post
03/19/2015 6:39 PM
1 Replies and 1358 Views Prevent User from submitting more than 2 jobs  1358  1 Started by  Gina When multiple PR295 jobs are submitted one right after the other, it forces other users jobs into a waiting status. This creates issues when we are trying to peform the ACH Payment cycle. Is there a way that we can prevent a specific user from submitting more than 2 jobs at a time
1 1358
by  Jimmy ChiuJump to last post
03/04/2015 2:52 PM
To join the discussion you need to register first. (Registration is free!) If you are already a registered user please login to join the discussion.
Page 1 of 612345 > >>


RSS Feed Available