Search this forum:
To join the discussion you need to register first. (Registration is free!) If you are already a registered user please login to join the discussion.
Page 3 of 3 << < 123
 Last Post
3 Replies and 1861 Views HR and PR duties segregated?  1861  3 Started by  may If you are trying to segregate the HR functions&160;from payroll functions&160;such&160;that&160;for example a user cannot create an employee and also process payroll&160;for them, I'm thinking the forms you don't want&160; the user to have are HR:&160;(forms HR.11.1 and PA52.1) and PR: (forms PR 30.1, PR32, PR33, PR35, PR36, PR37 and PR38). Can someone tell me if I'm I missing something Thanks, May &160;
3 1861
by  MattMJump to last post
02/24/2010 8:31 AM
2 Replies and 1506 Views Running a Job as Another User - Which security?  1506  2 Started by  Randall &160;Hi all, I tried a search through the forums, but didn't really find what I'm looking for. &160;We have security setup to limit users to be able to see companies that pertain to the region(s) they work in. &160;A request came in for our west region to be able to run a report off of east data, but this usually doesn't get approved. So, I was wondering, if I setup a job with another user's username (logged in as myself, but changing the username on the job definition), will it use that us...
2 1506
by  RandallJump to last post
02/18/2010 3:57 PM
5 Replies and 1597 Views Identifying managers for loadusers self-service portal role  1597  5 Started by  Deleted User I am working to automate the initial 'loadusers' user load and maintain it on a daily basis (using input from&160;Lawson&160;HR and Lawson RM).&160;&160;I will have two&160;portal roles, one for manager self-service and the other for employee self-service.&160;&160;I have recently learned that some non-managers will be using manager self-service (e.g. Executive secretaries, Administrative staff).&160; Has anyone automated their user RM maintenance, and if so, how do you identify which em...
5 1597
by  John HenleyJump to last post
02/18/2010 11:44 AM
6 Replies and 3906 Views LSDUMP from one profile to another  3906  6 Started by  Jay2 I am in the process of copying all of my security from one profile to another on my development box. I&160;have run the LSDUMP/LSLOAD for the profile &160; Now I have all the security classes under the new profile and I can see all the ROLES under the new profile, as they are on the same box, but none of the security classes are associated with the roles. Do I need to go in and add them all manually or is there an easier way
6 3906
by  MattMJump to last post
02/11/2010 11:52 AM
4 Replies and 1820 Views LAUA and Merge  1820  4 Started by  Greg Moeller Anyone have a quick/easy way to merge 2 existing LAUA security classes together to come up with a brand new security class I&160;can merge one with the other, but then it is left in the target security class which is still needed in it's unmerged state. Anyone&160; Thanks much!!! -Greg
4 1820
by  Greg MoellerJump to last post
02/02/2010 4:42 PM
12 Replies and 6516 Views Dumping out Identity information for users in Lawson Security  6516  12 Started by  John Cunningham Has anyone had any luck dumping out identity information, specifically requester identities from the Lawson Security Module. &160;
12 6516
by  TeriKJump to last post
02/02/2010 8:46 AM
2 Replies and 1211 Views Limit a users to run CB175 with update No only  1211  2 Started by  John Crudele We are on LS security. The CB175 Bank Transaction posting job has update options of Yes or No We want to grant access to some users to run this job but only have the update option of No. Can this be done in LS security, if so how would you set this up &160; Thanks JC &160;
2 1211
by  John CrudeleJump to last post
02/01/2010 7:01 AM
4 Replies and 1105 Views Security Issue with ESS  1105  4 Started by  Greg Moeller Hi all!&160; Hope everyone is having a GREAT week!! Question-&160; We are trying to nail down which table the Goalview 'Completion Comments' resides in. I suspect it's one of those darn L&160;underscore tables, but as to which one it is baffling me. Any help would be appreciated. -Greg
4 1105
by  wintergreenJump to last post
01/27/2010 3:05 PM
2 Replies and 1193 Views ESS Security and GoalView  1193  2 Started by  Greg Moeller Trying to figure out which table the Goalview 'Completion Comments'&160;are stored in. I suspect its one of those darned L&160;underscore tables, but cannot figure out which one. Any help would be appreciated. -Greg
2 1193
by  Greg MoellerJump to last post
01/25/2010 3:40 PM
3 Replies and 2013 Views Adding Privileged Identity on Iseries  2013  3 Started by  Louis Brockinton Since RD30 is no longer used in version 9.0.1 on the Iseries, we don't know how to link Company and Employee to the user id.&160; Does anyone have experience doing this on the Iseries&160; We keep running across the loadusers -g username Qshell command but are not confident in how it works.&160; Any suggestion would be appreciated.
3 2013
by  Louis BrockintonJump to last post
01/19/2010 4:37 PM
0 Replies and 1360 Views pr260 lock down to two depts only  1360  0 Started by  Deleted User I'm trying to lock down the PR260 report for one of my security classes so that they&160;only pull for&160;two depts. I could not find where I could write a condition for the pr260. I'm using LAUA security with lsf. Is this possible
0 1360
01/19/2010 4:10 PM
3 Replies and 1820 Views Lawson-supplied MSS Role  1820  3 Started by  Deleted User Would anyone be able to provide me with the Lawson-supplied MSS rule for the Employee table&160; I changed the rule by mistake while working on a class based on it, and really don't feel like unpacking all of those classes again. &160; TIA. &160; Frank Z.
3 1820
by  Deleted UserJump to last post
01/07/2010 3:15 PM
2 Replies and 3269 Views Who's on the system?  3269  2 Started by  MattD Greetings, Is there any way to&160; determine who (a number of users) is logged into Lawson at any one point&160; We are currently using Lawson Security 9 (checkLS=Y) so many users do not have a LAUA (or UNIX) account.&160; So we cannot use AIX&160;features to audit this information.&160; Any ideas on how to retrieve this info. &160; Thanks. Matt
2 3269
by  Frank LiggioJump to last post
01/02/2010 4:12 AM
10 Replies and 4425 Views Migrating from LAUA to LSA security  4425  10 Started by  Greg Moeller We are trying to get a handle on LSF9 security (moving away from LAUA).&160;&160;We have been to training, and had a consultant here for a week.&160; We also purchased the FastTrack security templates, but still seem to be having issues. Situation:&160; We need to restrict certain roles from seeing exec&160;pay-rate by process level (900 &&160;950).&160; We have the HRFFAFileAccess opened wide up (as delivered) and assigned to a role that should be able to see pay rate for everyone.&...
10 4425
by  Greg MoellerJump to last post
12/28/2009 4:27 PM
4 Replies and 4562 Views Lawson Security with Process flow  4562  4 Started by  wintergreen We modified the time entry form, when users click on the update button at the tim entry forms, supervisors will receive email noticications.&160; It worked when we use LAUA secuity. But it doesn't work when I'm working the new Lawson security. The new security is working fine on the time entry forms&160;but the process flow just didn't&160; kick off for notification.&160; I don't understand why&160;it is related to process flow&160; We modified the 'timentryperiodwindow.js' , to trigge...
4 4562
by  Shane JonesJump to last post
12/28/2009 12:12 PM
1 Replies and 1870 Views Add Payment Terms to AP10.1  1870  1 Started by  Brian3T We use Lawson AP v 7.07 on a UNIX platform. For one security class, the drop dow list of Payment Terms can't be selected and assigned to a vendor. It is located on the Defaults tab in the AP10.1 screen. How and what forms do I add Payment Terms&160;to this security class Is there a process that needs to be run Thank you.
1 1870
by  mark.cookJump to last post
12/18/2009 2:44 PM
8 Replies and 1620 Views LAUA Security Condition?  1620  8 Started by  This_Guy I need to restrict a Security Class: 'Volunteer' from accessing any Employee records in HR11 that do not belong to a particular Emp Status and/or Range of Employee Numbers. For Example: Condition 1: When ((&91;FIELD&93; Employee Status = &91;VALUE&93;'ZX' And &91;FIELD&93;Employee Status = &91;VALUE&93; 'ZC)) -OR- I've tried the range of Employee Numbers When ((Field &91;EMPLOYEE&93; > &91;VALUE&93; '810000' and Field &91;EMPLOYEE&93; It sort of works - wit...
8 1620
by  NormJump to last post
12/09/2009 3:15 PM
2 Replies and 1350 Views Logout Shortcut and login screen edit  1350  2 Started by  Deleted User Has anyone have experience in trying to edit the portal xml file, so you remove the logout function (forcing users to close IE from the browser - clicking the x or file - exit) &160; Also has anyone edited the main login screen, to add a shortcut to external site...for us we would like to put&160; a link on the login screen so users who have forgotten their password can click the link and be redirected to another screen that would submits a reset password request to our help desk.
2 1350
by  JudeBacJump to last post
12/09/2009 2:19 PM
6 Replies and 1744 Views Security breach when using 2 IE screens  1744  6 Started by  Deleted User I have noticed that if I login to portal using my own login...then open another IE window and login using my ESS login (we still use LAUA...lock down for application login and have generic security class for ESS users) first&160;login session is going - but the security used is from my second login. For security does not allow corporate access - but when I open that second IE browser window (staying logged into the first window) and login using ESS login (which, of course, has to ...
6 1744
by  Deleted UserJump to last post
12/09/2009 12:54 PM
2 Replies and 3459 Views wtsubmit in LSF9 Security  3459  2 Started by  Woozy Can anybody tell me where to find the wtsubmit executable (for submitting batch jobs from the command line) in LSF9 security&160; I've been able to find jqsubmit, which does almost (but not quite) the same thing, but not wtsubmit. I found jqsubmit in ENV>Executables>Batch Job Scheduling, but wtsubmit isn't there. We have a user that needs to be set up under the new security, and they need to have access to this tool, but we can't find it.&160; Jqsubmit really isn't adequate in this case.&1...
2 3459
by  WoozyJump to last post
12/04/2009 9:11 AM
1 Replies and 1341 Views LDAP Failover  1341  1 Started by  mark.cook We had a situation this week where our LDAP server failed. We do not have failover set up to stay running in a situation like this. Our security resources have asked if there is any special needs Lawson has with setting up failover. Has anyone done this and can you share any special items to keep in mind as we build this out.
1 1341
by  MattMJump to last post
11/30/2009 9:39 AM
3 Replies and 1821 Views Security reporting  1821  3 Started by  Susan We are LSF, 8.1 apps, and LBI; We use laua and haven't gone to Lawson Security 9 although we do utilize Lawson Security Administrator (LSA) since RD30 is gone and some Portal support moved to LSA.&160; We are interested in writing Crystal Reports that marry security data from LDAP, laua/GEN, and LBI databases.&160; That's two db2 databases and one SQL database.&160; In the past we've been led to believe that querying LDAP and GEN are undesirable and that it's safer to du...
3 1821
by  mark.cookJump to last post
11/20/2009 7:12 AM
2 Replies and 1409 Views Securing by HR11 Sec-Location  1409  2 Started by  Deleted User Multi-State company that locks access based on geographical location using HR11 Security Location. Goal:&160;On a global level or close to a global level, a rule that will allow a user with&160;assigned 'CompanyControl' custom values of M & P in&160;their RMid&160;to only see employee records with a HR11 Security Location of M & P. I've tried Element Groups, element group rules, get db rules, etc.&160;and nothing seems to work unless I go down to the specific form and table level ...
2 1409
by  Deleted UserJump to last post
11/18/2009 3:02 PM
4 Replies and 3255 Views jobdef Security Violation  3255  4 Started by  cmoul &160; I'm having an issue setting up a job in jobdef using a token I set up in tokendef.&160; I have several questions about this whole thing.&160; I will try to explain:&160;&160; I set up a token called send_mail in a category called SCRIPTS.&160; We see 2 catagories one of which is SCRIPTS.&160; (How do we get more catagories to be displayed if there are any)&160; The token points to a unix script to send a simple e-mail to me when executed '/vg01lvol1/lsf/scripts/'.&160...
4 3255
by  NormJump to last post
11/18/2009 2:03 PM
0 Replies and 1342 Views Max number of RMID Groups assigned  1342  0 Started by  Ellen Melton Is there a maximum number of groups that can be assigned to an individual RMID&160; We are implementing a LBI report with many 'parts' and management wants to restrict leaders to certain 'parts' which looks like quite a few group assignments.&160; I wanted to check to see if I will hit a limit at some point.
0 1342
11/11/2009 11:40 AM
0 Replies and 1342 Views AR17 secure change and delete using LAUA in LASF90 env  1342  0 Started by  Deleted User Hello We currently use LSF90 and LAUA security in Portal.&160; Currently the user can go to AR17 screen and click on existing comments to open the comment edit window.&160; In this edit window, the user have full access to change and / or delete the existing comment.&160; We tried locking the AR17.1 in LAUA but this does not lock the functionality on the comment detail window.&160; The comment detail window has not index number and is not linked to the LAUA to restrict the user access. We ...
0 1342
11/11/2009 10:05 AM
1 Replies and 1362 Views Upgrade to Apps 9 with Laua requiring revamp of sec classes?  1362  1 Started by  Deleted User on LSF9.0.0.7 with 8.1 apps on windows. Upgrading apps to 9.0.0, keeping laua for now From my forum research I concluded that since we're required&160;to change the prodline name, we therefore have to recreate ALL laua security classes based on the new prod line. When I asked our consultant if this was true, they told me no...that the security could be copied over with secdump and secload and then we would just have to make some changes to databases or forms that have reportedly changed. I qu...
1 1362
by  John HenleyJump to last post
11/05/2009 6:17 PM
0 Replies and 1468 Views LSGATE Servlet LSF9.0.0.x APPS 8.1  1468  0 Started by  Pasa Anyone have documentation for the LSGATE&160;Servlet We are looking to automating account creation/deletion as we are not LDAP bound and we&160;could not find any documenation from Lawson on the LSGATE Servlet.
0 1468
11/05/2009 4:44 PM
23 Replies and 4416 Views Using record level security in LSF9 Security for HR  4416  23 Started by  Toni We currently&160;have/use&160;record level security in LAUA for limiting HR User Access to not see&160;people within their&160;department or&160;users higher than them.&160;Has anyone written any rules or conditional logic that makes use of this record level security without creating anything new for LSF9 Security.
23 4416
by  Andrew PJump to last post
11/03/2009 7:35 AM
3 Replies and 2612 Views LAUA GL account security  2612  3 Started by  riegerj We are using LAUA security and received a request to lock down user access to specific accounts (not accounting units).&160; The only way I know of to do this is to apply record level security to each table that has account number in it for each security class.&160; Has anyone done something like this and know of a better way to do this&160; Thanks!
3 2612
by  riegerjJump to last post
10/27/2009 10:58 AM
2 Replies and 1605 Views Password Problem - possible LDAP bind issue  1605  2 Started by  MattD Hello, We are currently on Lawson Security 9 (CheckLS=Y).&160; When logging into portal our users are able use their current password or previous password.&160; Our Lawson LDAP&160;is bound to our Corporate LDAP&160;so all passwords come from the Corporate LDAP.&160; None of our other non-Lawson systems bound to LDAP&160;have this issue so my theory is that it is a problem with our bind settings or setup.&160; Anyone have any ideas how to correct the problem &160; This can be a big s...
2 1605
by  MattDJump to last post
10/26/2009 10:45 AM
3 Replies and 1505 Views LSF9 - Conditional Rule Based On Current Product Line  1505  3 Started by  JayGee I'm using the same security profile in our live product line (PRODUCTION) as well as our test environment (PRODCOPY) because we usually want the same security in both areas.&160; There is one area that we're testing so we want to give them access in the test product line only.&160; I&160;was hoping to just use a conditional securiy rule that would check the product line and then grant access or deny access.&160; Does anyone know how you check the product line in a conditional security rule
3 1505
by  MattDJump to last post
10/22/2009 4:03 PM
1 Replies and 1342 Views Edit RM Information  1342  1 Started by  KerriR When editing a user's RM information in Lawson Security Administrator 9.0, there's a flag called Access.&160; Can anyone tell me what that flag controls
1 1342
by  Peter WilmotJump to last post
10/16/2009 4:12 PM
2 Replies and 1534 Views Employee Drill Around - Health, Safety Incidents  1534  2 Started by  KerriR Can anyone tell me what tables I&160;need to grant access to to allow a manager to see 'Health, Safety Incidents' when drilling around on an employee&160; I&160;have granted access to OSHA, PACOMMENTS, PAFOLLOWUP, PAINCICOST, OSHESTAB, PCODES, PCODESDTL, PRSYSTEM, DEPTCODE, EMPLOYEE, HRSECLEV, HRSUPER, INSTCTRYCD, JOBCODE,&160; and PCODESDTL (all of the tables the Technical Text for PA document states that PA90 uses) but when I click on Health, Safety Incidents on the drill around, it state...
2 1534
by  KerriRJump to last post
10/05/2009 1:44 PM
1 Replies and 1608 Views Help with ida.exe message  1608  1 Started by  Deleted User We were on lsf9 and upgraded to Apps 9 two weeks ago.&160; All of our LBI users are unable to drill on back office reports such as GL291 and AP275.&160; When they drill on GL291 and AP275 they get the security message 'Lawson Users are not supported in IDA.exe'.&160; Has anyone ever seen this error message before
1 1608
by  John HenleyJump to last post
10/03/2009 6:12 PM
5 Replies and 1973 Views Update User groups Record using loadusers  1973  5 Started by  Roger French Hello, I can't find the syntax used in the XML when updating/reloading groups for users using the loadusers command. Does anyone know what it is In the XML there is a line in the XML for a user which is stated (I think)&160; 'UPDATE=TRUE'. But, I&160;don't know the exact syntax, and I&160;can't find any documentation on it. This is AIX, with LSF9.0.0.5 Anyone know what it is Thanks in advance, Roger
5 1973
by  John HenleyJump to last post
10/03/2009 6:12 PM
6 Replies and 2051 Views Print Manager in LSF9  2051  6 Started by  mrdey Users are able to see other people's print job by selecting the drop down in print manager. Any suggestions on how to resolve this issue. Thank you.
6 2051
by  John HenleyJump to last post
10/03/2009 6:12 PM
14 Replies and 2661 Views Domain Trusts  2661  14 Started by  klive Hello, I&160;hope your Lawson Paradise is going great today...I&160;have a perplexing question to ask.&160; Has anyone setup domain trusts and authenticated through Lawson&160; I&160;would like to speak at length with someone on this topic.&160;
14 2661
by  kliveJump to last post
09/30/2009 10:08 AM
4 Replies and 2479 Views LS9 ESS/MSS Security Quandary  2479  4 Started by  Fernando Labrada Normal 0 unctuationKerning /> false false false oNotPromoteQF /> EN-US X-NONE X-NONE ontGrowAutofit /> ontVertAlignCellWithSp /> ontBreakConstrainedForcedTables /> ontVertAlignInTxbx /> MicrosoftInternetExplorer4 ...
4 2479
by  Elizabeth ArditoJump to last post
09/16/2009 7:52 AM
1 Replies and 1548 Views Securing Batch Update Jobs in LS 9  1548  1 Started by  Deleted User Is there a way to keep users from deleting batch update jobs within Lawson Security 9.0&160;
1 1548
by  John CrudeleJump to last post
09/10/2009 7:36 AM
0 Replies and 1215 Views Securing Change and Release over XXXX amount on MA66.3  1215  0 Started by  Deleted User Good afternoon, all. LSF9 NT Our PO group has approached me about the possibility of blocking users from changing and releasing items on the MA66.3 for amounts over 1500USD unless it is being forwarded to their manager.&160; I contend that this should be a function of PFI, and not security.&160; I have looked over this over this form in LSA, and cannot easily think of a way to accomplish this, except for a statment that says if MAG-AMOUNT > 1500 && MAG_FORWARD_TO != '' t...
0 1215
09/09/2009 12:43 PM
2 Replies and 1486 Views ESP 7 Security Issues  1486  2 Started by  MattD Greetings Gurus, We are preparing to install ESP 7.&160; Does anyone have any additional info outside of the info provided in the release notes on ESP 7.&160; Before we go live with ESP 7 we want to make sure no other clients have had any bad experiences with ESP 7.&160; I&160;would specifically like to know if it has caused any problems with Lawson Security 9.&160; Any insight you can provide would be fantastic. Cheers, Matthew
2 1486
by  mark.cookJump to last post
09/08/2009 12:20 PM
3 Replies and 2947 Views getDBField Syntax  2947  3 Started by  Garry Ferwerda Hi:&160;&160; Maybe someone can tell what I am doing wrong with this statement written against the GLMASTER table: user.isMemberOf('RSS-SHOPPING-IT') && trim(getDBField('GLACCMXVAL','MX-VALUE',getDBField('GLCHARTDTL','OBJ-ID',table.CHART_NAME,table.ACCOUNT,table.SUB_ACCOUNT),'RSS-ACCOUNT')) == 'Y' I am trying to limit access to accounts based on an attribute value.&160; I have tried numerous combinations of trim, lztrim and no matter what I have tried no acccounts are ever acces...
3 2947
by  Garry FerwerdaJump to last post
08/27/2009 1:42 PM
3 Replies and 3158 Views LDAP Bind - Change Domain Controller  3158  3 Started by  John Crudele How do you change the LDAP to bind&160; to a different Domain Controller
3 3158
by  des123Jump to last post
08/25/2009 8:59 AM
14 Replies and 2777 Views Auto Resetting of SSOP Password  2777  14 Started by  Saurabh Hi We are on a W2003, SQL2005&160;backend , LSF9.1, App 8.1. We are looking to implement some facility to give the end user the flexibility to reset their SSO password / have a lost password facility , rather than logging a call with the service desk to get it reset. Has anyone implemented anything similar and is willing to share the info Regards Saurabh
14 2777
by  Joe O'TooleJump to last post
08/19/2009 2:39 PM
3 Replies and 2347 Views Auditing Changes to Lawson Environment  2347  3 Started by  PZ Our company is using LSF 9 and we are trying&160;to implement a program that will allow us to&160;audit changes made&160;to our Lawson environment.&160;&160;Someone was kind enough to provide us with&160;the syntax to run a&160;UNIX command which pulls a list of all files that have been modified in the 'lsfprod' folder for the period we specify.&160;&160;We have taken that output and filtered the results by file extension but aren't really sure what types of files we should be focusing ...
3 2347
by  Ganram1Jump to last post
08/19/2009 6:06 AM
2 Replies and 1916 Views Prod and Test: Can they be the same?  1916  2 Started by  MattD Greetings Lawsons Gurus, I&160;have a simple, yet somehow complicated quesiton.&160; Has anyone figured out a way to create an exact copy of their production environment in a test environment.&160; I ask with Lawson Security in mind.&160; We are currently utilizing Lawson Security 9.0 (CheckLS=Y), but there seems to be no good way to make sure our Prod and Test environments stay identical without making changes in both all the time.&160; The lsload and lsdump feature do no allow you to cop...
2 1916
by  MattDJump to last post
08/13/2009 10:55 AM
0 Replies and 2044 Views OIM (Oracle Identity Management)  2044  0 Started by  Deleted User Has anyone used (integrated) OIM with their Lawson Software Applications&160; We are just starting this effort.&160; Is there a specific connector available between the two
0 2044
08/11/2009 8:33 AM
9 Replies and 3597 Views LSF9 upgrade LAUA security - ALL Functions available, but page down isn't  3597  9 Started by  Sherry Shimek We are about to transition to lsf9 but have discovered a&160; interesting form function issue.&160; We are intending to use LAUA security until next year. On GL90.1 and AC90.2, some of our security classes have ALL functions&160;iindicated in LID&160;for the form,&160;&160;but when the form is accessed in portal they do not have the pagedown option.&160; They can only pagedown when the message in the lower left says More Records Exist - Use Page Down and hit inquire subsequent times.&...
9 3597
by  Sherry ShimekJump to last post
08/06/2009 10:10 AM
2 Replies and 2125 Views Access Audit Reports  2125  2 Started by  MattD Greetings, Does anyone have a good way to create an Access Report out of Lawson Security&160; Every six months we complete an access audit.&160; I would like to retrieve the below fields.&160; The RM User report does not include all the below fields but it would be a good start, however it does not allow you to select all users.&160; You have to select each one individually.&160; We have 5,000 users so that would take me eons of clicking to accomplish creating the report. &160; ID F...
2 2125
by  MattDJump to last post
08/05/2009 10:32 AM
4 Replies and 2669 Views Lawson Security and LBI integration  2669  4 Started by  Deleted User Hello,&160; I am new to lawsonguru.&160; We have our users on LSF9 and Lawson Security.&160; We are&160;implementing LBI&160;and want to know if anyone has any&160;ideas on how to make security maintenance in LBI&160;less labor intensive.&160; I would like to use groups instead of individual user ids in LBI reports and LBI&160;rights administration.&160; Any input will be most appreciated!! Joanna Bledsoe Lawson AC, AM, AP, FB, GL, MA, RW
4 2669
by  Greg WiklundJump to last post
08/03/2009 1:07 PM
9 Replies and 3175 Views LS Reporting  3175  9 Started by  Deleted User Good day, all. I have been browsing and searching and here for two days looking for a simple answer to question for my auditors.&160; We are on LSF9, using LS security, and our auditors hate the reporting functionality that comes with LS Administrator.&160; They would like a smart note or bursted report to come out every day with changes made to users' roles and classes.&160; Our security implementation is in its toddler stages, so there are still quite a few kinks and SOD issu...
9 3175
by  Deleted UserJump to last post
07/25/2009 4:40 PM
0 Replies and 1287 Views leaving paper for user admin  1287  0 Started by  MichaelA Hi We have increased the number of standard lawson users at our company drastically the last year. Before it was easy to keep track of the users by a simple paper form that we let the users supervisor sign.&160; Then we put the users in security classes and put the paper in a binder sorted alfabethically. I feel the need for a more sophisticated solution. Maybe a database in access with scanned papers, or an eletronic form in lawson that uses process flow for approval of what people are...
0 1287
07/22/2009 10:10 AM
2 Replies and 2469 Views Turning Lawson security on and not being able to log in  2469  2 Started by  KerriR We are in the process of implementing LS9 and have run into an issue where when we change CheckLS to Yes the user can no longer log into Lawson.&160; This error displays...'The Portal cannot load becuase the Profile service returned an error:&160;An unknown error occurred.&160; Please contact your system admin.' Has anyone else seen this error and if so, what was the resolution Thanks!
2 2469
by  KerriRJump to last post
07/17/2009 1:39 PM
5 Replies and 2324 Views Process Level  2324  5 Started by  wintergreen We are going to implement lawson security. Can anyone share your experience about locating user's process levels Do you customize an attribute to store user's process levels, or use structures to define the hierarchical porcess levels, or any methods to locate user's process levels&160; Any input would be much appreciated. Thanks!
5 2324
by  Derek CzarnyJump to last post
07/16/2009 11:47 AM
8 Replies and 3282 Views Conditional Access Rules on tables  3282  8 Started by  John Costa We are on environment and Apps; I am trying to create a security class to provide access to the 'Personal Profile' link in Employee Self-Service. According to the technical documentation for Employee/Manager Self-Service, I need to provide access to the PAEMPLOYEE table of my product line database. However, I found I also needed to grant access to the EMPLOYEE table as well (documentation error I suspect). So I created a security class that provides full uncondition...
8 3282
by  John CostaJump to last post
07/16/2009 9:54 AM
1 Replies and 1342 Views Security Administrator won't connect.  1342  1 Started by  Jimmy Chiu Once in a while, security administrator won't connect. We are running windows/webpshere/SQL/ enviroment/9.0.1MSP1 application Attempt to stop the websphere appserver fails and a server reboot needed to enable connection for security adminsitrator. Meanwhile, all the lawson programs work fine. Any idea
1 1342
by  Jimmy ChiuJump to last post
07/13/2009 2:21 PM
1 Replies and 1774 Views Progam versus Token Security  1774  1 Started by  John Costa We are in the process of defining our LSF9 security structure and I have waht I hope is a simple question. When defining security classes for an online object, what is the difference between granting access to a program versus granting access to a token, and why would I use one versus the other In other words, why would I grant access to program AC10 versus granting access to token AC10.1&160; Do I need to grant access to the AC10 program in order to also grant access to token AC10.1&...
1 1774
by  Maris FislerJump to last post
07/10/2009 4:14 PM
3 Replies and 3308 Views User 'lawson' SSO Password  3308  3 Started by  DianaE Hello all. When LPS did our Lawson installation they used&160;different passwords&160;for the 'lawson' user. The OS&160;user's password is different than the SSOP (portal)&160;password.&160; I want to change the&160;SSOP password with ssoconfig -c and I understand that process.&160; I will not be changing the OS password. My concern comes with when I install environment/application patches. I know that the 'lawson' user ID is used during patch installations.&160; It also appears tha...
3 3308
by  DianaEJump to last post
07/02/2009 1:26 PM
2 Replies and 1616 Views Sarbox Compliance  1616  2 Started by  John Crudele We are converting our users over to LS9 security. The canned security reports are not providing all of the information our auditors are requesting for Sarbox compliance. WIndows/SQL2005/LDAP BIND What other reporting tools is can be used for reporting on security Regards JC
2 1616
by  mark.cookJump to last post
07/02/2009 7:40 AM
1 Replies and 2030 Views LSF9 Security - GL290  2030  1 Started by  kelsch I&160;have an issue that I&160;need assistance in resolving.&160; &160; Two&160;new LSF9 users have had a problem with getting filtered entries when they run GL reports. We have been notified this happens when users try to run GL290, GL190, GL291, etc., as well as GL90.&160;&160; I&160;have the two users on the same profile as a user who has had no difficulties at all. &160;If I&160;turn off the LSF9 security (and revert to LAUA), they can run the reports just fine....all the data...
1 2030
by  Jimmy ChiuJump to last post
06/18/2009 11:52 AM
0 Replies and 1384 Views Lp security  1384  0 Started by  Deleted User When we try using LP31...'next' button brings up next employee number - but it displays the wrong name. When you hit inquire is refreshes to the correst display name When we do not filter through process level and leave wide open - then data and display name fills in correectly. We are on LAUA...env how can i get the display name to match up with employee id - without having to hit refresh everytime
0 1384
06/17/2009 10:40 AM
0 Replies and 1213 Views LSF9 Security - Action Pairs  1213  0 Started by  Al Miller I need to limit a security class to only one 'C'hange function on the AP25.1 form. I only want them to have 'R'elease. Any idea how I would limit the line function to 'R' when ever form function is 'C' Thanks, Al
0 1213
06/10/2009 2:16 PM
2 Replies and 1654 Views LP security  1654  2 Started by  wintergreen problem was resolved. Please ignore this question. Thanks!
2 1654
by  wintergreenJump to last post
06/10/2009 12:31 PM
2 Replies and 2062 Views LDAP Binding Problem  2062  2 Started by  sk Hi All, We are doing a 8.03 to 9.0.1 both environment and application upgrade.. We are not using Lawson Security, we are still continuing with LAUA...we are using Tivoli Directory Server v6.1for LDAP We need to setup a tivoli user, who needs to have access to the whole tree (including base root) of the ldap directory.The reason we say a 'tivoli user' is, he won't be accessing ldap through Lawson, instead he is going to access LDAP through 3rd party java application.. However this user sho...
2 2062
by  Ben CoonfieldJump to last post
06/09/2009 4:20 PM
2 Replies and 1411 Views View Full structure in Resource Management  1411  2 Started by  wintergreen I created&160;a structure in RM and then view the Full&160;structure but it pops up the error message when I click the full structure in RM: Run-time error '399': Component 'PrnFlow5.ocx' or one of its dependencies not correctly registered; a file is missing or invalid Any help will be much appreciated. Thanks!
2 1411
by  wintergreenJump to last post
06/09/2009 8:43 AM
4 Replies and 1819 Views Create a new DN with IBM Tivoli - how to  1819  4 Started by  DQ Phan Hi All, i posted this topic on the S3 Sys admin forum, but did not get reply, i hope that on Secu forum i will have more chance. ----- During the Lawson Core technology LSF9 installation, there is a step for 'Configuring Resource Management' where a valid DN is required. We have created a valid DN by copying an existing DN, which was imported from an existing LDAP instance ( for test purpose). We would like to CREATE a valid and empty DN for the new installation of LSF9. It will look like ...
4 1819
by  DQ PhanJump to last post
06/08/2009 11:13 AM
7 Replies and 3137 Views Mass update of users in LSF9 - still using LAUA security  3137  7 Started by  John Costa In my LSF9 environment, I have about 2,500 users that have no security class assigned.&160; We are still using the LAUA&160;security model.&160;These users are all self-service users and need nothing more than a security class assigned.&160;&160;What I need to accomplish is two things: (1)&160;Assign a defined security class (named 'SELF_SERV') to these 2,500 users.&160; Can I do this with some sort of GEN&160;export, update the exported file, and then import it&160; I tried doing an ...
7 3137
by  Jeff CratonJump to last post
06/05/2009 7:50 AM
7 Replies and 2719 Views HR11 security  2719  7 Started by  wintergreen I am unable to see&160;most of fields on HR11.1.&160; Either on LAUA&160;or New Lawson security. I can drill around employees data but can NOT see most of fields on the screen.&160;&160;Is there any place to secure the HR11.1 I also looked for HR12.1 but it doesn't change anything even I set to level 1 and location&160;is&160;all asterisk(*).
7 2719
by  wintergreenJump to last post
06/04/2009 2:20 PM
6 Replies and 1983 Views How do companies handle signing off for auditing on security  1983  6 Started by  spatterson Our IT department has a report they run which is thousands of pages for our end users to sign off on with regard to security and what individuals have access to.&160;I have two questions: &160; 1. How are other companies getting sign off from the internal audit department on their security access and if they have it down to a few pages, did they go through and take off security they didnt need Our issue is we as the person signing off does not know what some of these screens means and if we...
6 1983
by  spattersonJump to last post
06/03/2009 1:56 PM
8 Replies and 2358 Views LAUA - Some users are shown in UPPER CASE  2358  8 Started by  John Costa We are on LSF9, version using MS-ADAM for our LDAP. We are also using LDAPBind to validate users against our corporate domain. We are still using LAUA security. I understand the concept of creating Resource Managment records for users and then creating the necessary identities for the environment, self-service, SSOP, etc. The problem we are running into is that some users are showing up in LAUA with all upper-case user names whereas the majority of our users show up in lower-case. Why th...
8 2358
by  Ben CoonfieldJump to last post
06/02/2009 6:17 AM
1 Replies and 1542 Views Writing rule on MSS to see all employees in chain of command  1542  1 Started by  psherry We have come across an issue using personal actions and the replacement field on entering a new job req where a manager is only see their direct reports. They do not see any employee is their direct reports is ay a manager also. For example the CEO&160;sees her direct reports but not the employee who fall under her direct reports. I have tried using isInChainofCmdOFEmpInHR and isInChainofCmd(RMID) with no luck. Has anyone come across this using LSF9.0 security. Thanks, Paul
1 1542
by  GregSlJump to last post
05/26/2009 12:56 PM
0 Replies and 1576 Views LAUA Report for Record Level Security  1576  0 Started by  Ellen Melton Is there a way to generate a LAUA report for Record Level Security similar to the Data Security report&160; We are setting up/changing some of our record level security and so far, the only way to find security classes that have record level security is to look into each one individually.&160; Just want to make sure I haven't missed a report somewhere. We are UNIX LSF 9.0 using LAUA and Portal.
0 1576
05/19/2009 10:35 AM
10 Replies and 5163 Views LSF9 - LDAP Bind to AD - Issue with always using Secondary Domain Controller  5163  10 Started by  DavidFrSC We Migrated to LSF9 (AIX platform)&160;last year, using WAS 6.1, TDS , and also did a LDAP&160;Bind to AD for authentication (works great, BUT ...) We have 2 Domain Contollers:&160;i.e. DC1, DC2. For some reason when we did the Bind (using DNS), Authentication only works if DC2 is available. Switching the roles did not help. Performed Network packet traces , and noticed there is some conversation to DC2&160; (BIND, SEARCH&160; CN=Configuration ...). The rest of the Authentication process...
10 5163
by  Jimmy ChiuJump to last post
05/14/2009 12:06 PM
1 Replies and 2233 Views Securing PR51 for a Process Level  2233  1 Started by  GregSl I have to&160;restrict access to&160;a group of users to PR51&160;by their Process Level. I&160;wrote a rule&160;using PAYMSTR table since I cannot do any thing on the onine object PR51 as the form.Process Level is not available. The rule is, if the table.Process_level =='HR' and userid !=table.employee, No Access The file rule is not affective. Can anyone who had a&160;similar situation, please share&160;how the rules were applied&160; or suggestions Greatly appreciate your kind as...
1 2233
by  GregSlJump to last post
05/13/2009 1:55 PM
1 Replies and 5026 Views LSF9 SSOP and AGS  5026  1 Started by  KathyB I am trying to do a HTTP post to Lawson from a non-lawson application. I have tried the servlet and LHC.jar.&160; Each time I receve the HTML&160; logon page and not the XML. I am doing&160; a HTTP post to PA31. The servlet call works fine from portal. Here is my code: &160;String strLawsonUsr = 'ID'; &160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&160; String strLawsonPwd = 'password'; &160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&16...
1 5026
by  Jeff CratonJump to last post
04/24/2009 1:27 PM
2 Replies and 1970 Views Gl Zone data level security in LAUA  1970  2 Started by  Sherry Shimek Our health system some&160;needs to restrict some users' data level access to a general ledger zone within one company.&160; We can restrict the access by using ranges of accounting units, but that is very&160;awkward in our chart of accounts.&160; For example, we use zone 200 specifically for physician medical groups and want to limit their users to&160;data within that zone.&160; The accounting unit design is that the final three digits are the zone, but the beginning four digits are sp...
2 1970
by  John HenleyJump to last post
04/20/2009 3:49 PM
1 Replies and 1632 Views Securing Accounts in RQ10  1632  1 Started by  stcyrk I am trying to restrict the accounts a user may choose for a line item on a requisition.&160; Basically, some AU's have revenue accounts which should not be charged to.&160; The accounts are sequential so I tried creatingconditional access in the appropriate security class that said if(form.RQH_ACCOUNT &160;&160; 'NO_ACCESS,' else &160;&160; 'ALL_ACCESS,' But this does not prevent me from adding an item to a req with an account that that is less than xxxxx.
1 1632
by  GregSlJump to last post
04/14/2009 10:17 AM
0 Replies and 1772 Views LSF 9 SSO Authentication using Lotus Notes Script  1772  0 Started by  TomD We have a Lotus Notes (script) application using http object to connect to 803 Lawson.&160; When we upgrade to LSF 9.0 with SSO authentication, our code is having issue with the SSO authentication.&160; Has anyone out there have used Lotus Notes Script or Java class to connect to http class successfully for LSF 9.0 or Lawson 9.&160; can you share the Lotus Notes script code if you have it&160; We are suspecting the session cookie in Lawson 9 is what causing the issue.&160;
0 1772
04/06/2009 2:40 PM
0 Replies and 1594 Views Lawson Security / Apps 8.1.x vs. 9.x  1594  0 Started by  John Costa We are currently on Applications 8.1.0, MSP6 running on Environment; We are still using LAUA security.&160; What are the prerequisites / requirements in order to go to Applications 9&160; Is there any specific reason why Lawson Security should come before Apps 9 (or vice versa)&160;&160;I'm speaking from an IT / technology perspective.&160; We are trying to plan our upgrade strategy.&160; Thanks in advance.
0 1594
04/06/2009 2:15 PM
1 Replies and 2788 Views Http authentication from external App to Lawson 8.0.3 for AGS call  2788  1 Started by  desichet We are creating AGS call to update GL20.7 from external App which can send data using JavaScript and COM objects. We did create the AGS call and tested from HTML but&160; need to enter userid/password evrytime we submit the external HTML form,&160; Is there way to create simple HTTP Authentication&160; from exernal app to avoid login page &160; Lookes like LSF 9.0 has Java API's. Is there some Non Java solution to connect to Lawswon 8.0.3 Thanks in advance.
1 2788
by  desichetJump to last post
03/25/2009 8:54 AM
5 Replies and 5757 Views LS9 Batch Jobs and LAUA  5757  5 Started by  Number5 We've been told that even after migrating to the LS9 Security, batch job users still require LAUA security.&160; Can someone explain/clarify this
5 5757
by  GregSlJump to last post
03/23/2009 3:03 PM
1 Replies and 1967 Views Read Only Product Line?  1967  1 Started by  rkerska The database is DB2 and we are still using LAUA security until next year.&160; Is there a simple way to make a product line read-only&160; We have over 300 security classes and I would rather not go into each class and make each class read-only.
1 1967
by  John HenleyJump to last post
03/23/2009 1:59 PM
8 Replies and 2619 Views EMSS with LSF 9 Security  2619  8 Started by  Deleted User I've got some questions on how the LSF9 security works within portal EMSS that I'm looking for some help on. What benefit have you seen by moving to LSF 9 security on self service&160; We're trying to determine the priority of implementing the new security model for EMSS and we're not sure what the true benefits are. When you turn on the LSF9 security for managers in self service, does it track the user that made the change&160; Does each personnel action track the user that made the chang...
8 2619
by  Roger FrenchJump to last post
03/19/2009 12:19 PM
1 Replies and 1652 Views Cannot submit Jobs  1652  1 Started by  John Crudele We are migrating users from LAUA to LS9 security. We are having an issue where users get a security violation when they click the second submit button from the pop-up. They do have the batchrole assigned
1 1652
by  Roger FrenchJump to last post
03/19/2009 7:41 AM
1 Replies and 2061 Views HR11 drill around  2061  1 Started by  Deleted User We are on lawson 9, still using LAUA. Within portal - HR11 - the screen does check our company process level....but when you key in an employee ID from another company (i.e. corporate) the user has the ability to drill around on that person... when you key in the number in the emp ID field...then immediately reight click and select drill around - it will show data for that user. When you simply enter the ID number and inquire - security does prevent access - so I know that it is checking base...
1 2061
by  John HenleyJump to last post
03/12/2009 4:24 PM
2 Replies and 1878 Views Issue with Year to Date links with Employee Self-Service.  1878  2 Started by  alincoln We're running into an issue with our security around the Year to Date pages on Employee Self Service. Reading the ESS/MSS Lawson Technical Documentation I see that the following securable objects should be assigned to allow access: PR50.1, PAYMASTR, PRTIME, PAYDEDUCTN, QUARTWAGE, QUARTDED, CUCODES, and PRSYSTEM. We've assigned all of these objects but users are still not able to access their Year to Date info.&160; Our other ESS links that we've deployed seem to be working fine (Pay Checks, ...
2 1878
by  alincolnJump to last post
02/25/2009 4:21 PM
1 Replies and 1547 Views HR Security seeing others $ in HR  1547  1 Started by  HR123 What is the best method to block HR salary data to folks within HR who have Lawson access for their respected departments I’m trying to avoid HR reps seeing information of their peers. Thanks in advance!
1 1547
by  Roger FrenchJump to last post
02/24/2009 11:03 AM
9 Replies and 3215 Views security flaw? or any solutions?  3215  9 Started by  sk Hi, We are upgrading from Lawson 803&160; to 9.x both environment and Lawson HR Application. During 803 we haven't used portal much, from 9.x we are going to use portal. We are not going for Lawson Security as part of this upgrade. we are going to continue with LAUA and LDAP. I am facing a problem in Lawson Portal. For webusers we are allowing to update their details in HR11, PA52 etc&160; related tables via employee self service applications. So we are providing form access for t...
9 3215
by  CindyWJump to last post
02/17/2009 2:10 PM
2 Replies and 2218 Views Learning 9x Security & RM  2218  2 Started by  Deleted User We are upgrading to 9x, and we're trying to determine what level of functional training is needed for HRIS support to support troubleshooting for Manager Self Service and Workflow IT will mostly handle setup and maintenance,&160; but we just want to&160;understand how it works.&160; We're thinking the webinars will meet the functional user needs.&160; IT is going to the 4 day training.&160; Any HR folks or Materials folks had the&160;webinar or attended the the 4 day training&160...
2 2218
by  Jeff WestfallJump to last post
02/11/2009 1:01 AM
6 Replies and 2630 Views Employee number search  2630  6 Started by  klive Hello All, another wonderful day in Lawson...I was wondering if anyone has found a way to search employee numbers in the Security Administrator&160; I have actual usernames for logging in but I would like to see a list of employee numbers in my display...can you help me out... I can however look in LDAP but it does not associate the employee number with a username.&160; Thanks for your help.
6 2630
by  kliveJump to last post
02/04/2009 3:11 PM
3 Replies and 2248 Views LSF9 - LDAP Webuser (formerly logan.webuser)  2248  3 Started by  Deleted User Hey All, Has anyone come up with a good method to get the webuser data out of LDAP. What i am talking about is the information formerly stored in logan.webuser under 8.0. I have seen several suggestions on Lawson KB that people have created thier own logan.webuser under LSF9. While this probably would work, I am trying to avoid creating another mantiance and possible breaking point. Any Suggestions Thanks - Chris
3 2248
by  Deleted UserJump to last post
02/04/2009 7:34 AM
2 Replies and 1689 Views LDAP sub domain  1689  2 Started by  klive Hello All, I have a small problem on my hands and need some help.&160; We have a department of roughly 100 users that need access to Lawson.&160; They are on a sub domain.&160; we have a trust between us and now i have to set them up in the existing LDAP to authenticate to our domain for access...we currently run a perl script to connect an existing user to LDAP is there something highly complicated to do to get this to work for another domain or just simply change the script with the attribu...
2 1689
by  kliveJump to last post
02/02/2009 3:25 PM
6 Replies and 2887 Views NT user group  2887  6 Started by  Garry Ferwerda Hi:&160;&160; I have a couple of questions about implementing Lawson securtiy:&160;&160;&160; 1)&160; I have not found any documentation or seen any discussion on what role&160;the user group that is entered on the security tab of laconfig&160; has if LS security is being used.&160;&160; Do all Lawson users still need to be a member of this group if they are using LS security and not accessing the LID command line 2)&160; Do rules have to be written for the invoke programs (HPPV...
6 2887
by  Roger FrenchJump to last post
01/30/2009 11:42 AM
2 Replies and 2254 Views laua - form security  2254  2 Started by  Deleted User In form security what do SV stand for Normal 0 unctuationKerning /> false false false oNotPromoteQF /> EN-US X-NONE X-NONE ontGrowAutofit /> ontVertAlignCellWithSp /> ontBreakConstrainedForcedTables /> ontVertAlignInTxbx /> MicrosoftInternetExplorer4 ...
2 2254
by  k-rockJump to last post
01/20/2009 11:32 AM
2 Replies and 3442 Views lawsonsecadmin.exe crashes  3442  2 Started by  Joe O'Toole I am running V of Lawson Security Admin tool on my laptop and it allows me to make security and RM changes, but crashes when I exit the RM or Security screens. The module in violation is vsflex8l.ocx. The admin program works fine on other systems and the Lawson server, but not where I need it most! I've reregistered the ocx, checked permissions, verified versions against the systems that work and uninstalled / reinstalled to no avail. Lawson support's only suggestion is to reimage my s...
2 3442
by  Ben CoonfieldJump to last post
01/15/2009 1:32 PM
1 Replies and 2043 Views HR11 Pay Tab security  2043  1 Started by  Wenderful Hi, I have an HR security class that has edit access to the HR11 screen.&160; I have three tabs secured. Pay, pay edits, and tax. For some reason, when I secure the 'Pay' tab, the user cannot edit fields in the HR11. It places the curser on Company and tells me 'field is required' and does not accept the changes. This only occurs in the Portal. The same security class CAN perform udpates in LID with the Pay Tab secured. If I remove the Form Tab security for the Pay Tab, then they are able to ...
1 2043
by  John HenleyJump to last post
01/07/2009 9:44 AM
3 Replies and 2862 Views Security Violation on Drill Back  2862  3 Started by  Wenderful ok, I have a silly one for ya.&160; I have added access for a user to drill around GL reports. They have access to RW100/RW80, GL and IF, and the data file records needed. They can drill into the report and get to the&160;form RW80.1 but then it says security violation. I am missing something I know. I have refreshed everything already and compared a known working class....Any thoughts
3 2862
by  GregSlJump to last post
12/09/2008 2:58 PM
1 Replies and 2014 Views loadusers utility - Can you give each user a diferent SSOP password?  2014  1 Started by  Deleted User Hello, I have been playing around with lawsons loadusers utility. It takes in an .xml file that use can use to add users to the system. The only think I don't like is that it assigns every user the same SSOP password. Is there a way to give each user thier own password in this .xml file Thanks :-)
1 2014
by  John HenleyJump to last post
12/02/2008 1:14 PM
2 Replies and 2657 Views LAUA Security AP265 issue  2657  2 Started by  Wenderful I have added a form AP265 to security class. They can access in Production LID environment and in separate portal test environment. They cannot access the form in Production Portal environment. Says, 'no hits'.. no error message.. What am I missing
2 2657
by  WenderfulJump to last post
11/18/2008 9:26 AM
6 Replies and 16055 Views Lawson Security: LDAP: error code 53 - Unwilling To Perform  16055  6 Started by  Rodney Is anyone receiving this message in the LSA client or on the server when making any security changes&160;&160; We were told by the GSC this is related to the size of our security classes/roles, yet told by their trainers that there&160;is no size limit.&160;&160; Anyone else having (or had) this problem&160;&160; If so, how did you fix it.&160; It it simply a configuration change on your server Thanks, Rodney
6 16055
by  Kwane McNealJump to last post
11/12/2008 1:19 PM
3 Replies and 3255 Views Rules are secured error using LAUA  3255  3 Started by  MattM I am receiving the error 'rules are secured' in portal when executing a drill around on employee in HR11. We are using LAUA in LSF9 for the user in question. The security class the user is in has access to all files in HR. Any ideas
3 3255
by  RodneyJump to last post
11/10/2008 11:06 AM
6 Replies and 6677 Views Application Event ID 32770  6677  6 Started by  RogerThomas We have lsf9.0.0 running and ready for our conversion fron 8.0.3.&160; We keep getting the following error messages in the Application log on the windows server: WIN32Error: controller.c(100): NT AUTHORITY\SYSTEM: java.exe: NetGetAnyDCName(WREC) - There are currently no logon servers available to service the logon request. And WIN32Error: controller.c(100): NT AUTHORITY\SYSTEM: jobrun.exe: NetGetAnyDCName(WREC) - There are currently no logon servers available to service the logon req...
6 6677
by  RogerThomasJump to last post
10/28/2008 4:49 PM
1 Replies and 2294 Views Report for security access  2294  1 Started by  Bill4 I'm trying to develop a report that will show me all of the users that have access to forms PO20 and PO30 (version 8.0.3). I was wondering if any of the information is written to a table that could be accessed by Crystal or MS Access. If not, what other methods may be available for creating this type of report that will need to be accessed by non technical people
1 2294
by  John HenleyJump to last post
10/27/2008 1:28 PM
1 Replies and 2550 Views LDAP on Lawson After Domain Move  2550  1 Started by  Marvel Lawson SQL Server 2000 Windows 2003 Greetings! I am completely new to Lawson & have never had any training on the app. I am also completey without any support documentation on how the application 7 the Portal work. SoemhowI have managed to fumble my way through getting it to work. We performed a P2V of 4 servers from one domain to another & then reverse engineered the new environment on the new domainby changing all the server references in the web config & in all the b...
1 2550
by  John HenleyJump to last post
10/12/2008 12:26 PM
3 Replies and 3995 Views Securing Drill on ESS - MSS Role  3995  3 Started by  Deleted User Hi, all! We are on 9.0 and using LS security. We have a single sign on for our Lawson users using Active Directory bound with&160;ldap. For those users who have access to forms directly (we call them dual users such as payroll clerks, purchasing requestors etc…) and who have self service roles we secure them through rules which seem to be holding pretty well. Such as confined to their own process levels etc... Lawson provides out of the box ESS and MSS standard roles. With a little tweaking t...
3 3995
by  NickJump to last post
10/06/2008 5:38 AM
7 Replies and 4125 Views Mass Updating/Changing SSOP passwords  4125  7 Started by  shashank Hi, I need to mass update&160;SSOP&160;passwords for all users. Does anyone know if&160;this is&160;doable, and how thanks. &160;
7 4125
by  John HenleyJump to last post
10/03/2008 10:09 AM
2 Replies and 2684 Views Restricting Report Parameters: PA100  2684  2 Started by  Number5 PA100 offers a parameter for Update or Report Only.&160; My customer would like to limit certain users to Report Only.&160; Standard Security restrictions (version 9.0) on this field have been ineffective.&160; (I assume this is because the field options are not table-based, but are provided by the Cobol code.)&160; Does anyone know of a way to restrict this through 9.0 Security
2 2684
by  Number5Jump to last post
10/01/2008 6:00 PM
3 Replies and 2551 Views Auditing Software Recommendations?  2551  3 Started by  Deleted User We're looking to establish some fine-grained auditing here - at least specifically to try to track who deletes data from specific tables. The weblogs are, how shall I say this - filled with a lot of information --> and still don't provide a good trail to find this data. IOS provides the same voluminous info, again, without the detail we need. Our oracle logs give great info - except that since it's database auditing, the user ID is always the admin ID (and he doesn't have rights to mess with dat...
3 2551
by  John HenleyJump to last post
10/01/2008 1:49 PM
2 Replies and 3957 Views Login and Cookie format  3957  2 Started by  Russ I can open a url in IE constructed like this to login, access /servlet/Router/Transaction/Erp, and get valid xml returned: http://lawson-server:port/sso/SSOServlet_action=LOGIN&_ssoUser=myid&_ssoPass=mypa55wd&_ssoOrigUrl=http://lawprod:9082/servlet/Router/Transaction/Erp... with proper params. This does not work the same from an asp, for remote login, using Msxml2.ServerXMLHTTP.4.0: code sample: Set objSvrHttp = Server.CreateObject('Msxml2.ServerXMLHTTP.4.0') objSvrHttp.ope...
2 3957
by  RussJump to last post
10/01/2008 8:48 AM
0 Replies and 1894 Views Best way to migrate 8.0users to LSF9?  1894  0 Started by  Jimmy Chiu What would be the best way to keep all the users NT in tag and migrate all the details from the old environment to LSF9
0 1894
09/29/2008 1:12 PM
2 Replies and 5291 Views Parsing the Form ID Security report  5291  2 Started by  RobT Hi, I am new to Lawson and I'm in the process of writing a script to parse the Form ID Security Report. I'm wondering if anyone has a listing of all the possible values for the 'Unsecured FCs' column as well as a definition of what they mean No one in accounting (who's been managing the system) knows or knows where to look and I'm trying to have IT take over administration of this.&160; Example: &160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&160;...
2 5291
by  k-rockJump to last post
09/25/2008 2:46 PM
1 Replies and 4476 Views LDAP setup  4476  1 Started by  Ben Coonfield I have a working LSF9&160;environment and I want to create a second one.&160;I created a new LDAP instance (TDS 6.1).&160; It seems that I need to create a new suffix and define an object to be used as the top of the hierarchy.&160;&160; When I try to create a new subtree with an ldif import, something like dn: o=lwsn,dc=net,dc=myorganization,dc=org changeType: add objectclass: organization objectclass: top I get an error.&160; Either I get 'Suffix entry has not been created', or if I...
1 4476
by  Ben CoonfieldJump to last post
09/18/2008 5:38 PM
4 Replies and 2397 Views Deletion of AR customers - Audit  2397  4 Started by  Petter Can you permanently delete customer accounts in Lawson If so, is there a way to see what accounts have been deleted and by who Thanks
4 2397
by  PetterJump to last post
09/17/2008 10:20 AM
9 Replies and 4161 Views ESS/MSS - Org chart - conflict with core user  4161  9 Started by  ChrisW Hi!&160; Has anyone implemented ESS/MSS and Org chart functionality in Portal and LS 9&160; Because of the access required on the Employee table, I'm having issues with core users (i.e. AP processor) and the ability to 'drill' on an employee's information which shouldn't be available to anyone but the employee&160;(salary). I've tried field level security on the Employee and PAEmployee tables, but the performance is really bad, to the extent of not returning data. Any suggestions
9 4161
by  ChrisWJump to last post
09/12/2008 3:42 PM
10 Replies and 4690 Views Process Level Security and ESS - HR Tables Secured  4690  10 Started by  GregSl I have a security class on LAUA (eg. HRUser)&160;, which&160; restrict users&160;from accessing the EMP(Employee Table) &160;based on the Process Level. On the Employee Self Service>&160;My Pay option&160;,&160;&160;the&160;HRUser security&160;Class users, does not&160;&160;see any Pay/Tax data.The reason being the PAYMASTER and other related &160;tables' &160;access is secured by Company/Process Level. The affected&160;Users are on the same Process Level that is secured. I am t...
10 4690
by  GregSlJump to last post
09/09/2008 1:30 PM
2 Replies and 2892 Views Auditing LDAP changes made via loadusers  2892  2 Started by  Ellen Melton I posted this on Lawson Community as well, but thought I'd try here too. Has anyone found a way to capture LDAP changes made via the loadusers utility. We have a nightly scheduled job running under the lawson userid that uses loaduser utility to add new employees to the LDAP for ESS. I am not seeing any of these changes when I look in the Lawson Security Admin Audit Report even though I include lawson user in my report list. I do see all changes made by a given individual via the LS Administrat...
2 2892
by  Kwane McNealJump to last post
09/08/2008 9:40 AM
1 Replies and 2073 Views Migrating LS from one server to another  2073  1 Started by  MattM I have been researching the migration process for security from one LS9 box to another.&160; As far as I have found, the best way would be to do an lsdump on the profile to get all of the security classes over. Then either use lsdump one at a time on the roles or recreate the roles by hand. Does anyone have any experience doing this or is there a better way Any ideas or help would be greatly appreciated. &160; &160;
1 2073
by  Kwane McNealJump to last post
09/08/2008 9:34 AM
3 Replies and 4136 Views ESS file *** is secured message  4136  3 Started by  Wade-T I am receiving messages 'file PROJECT is secured' and 'file SYSTEM is secured' when I click on Personal Profile and Emergency contacts in ESS.&160; After I click 'OK' on the pop-up message, the data displays. It doesn't do that in my test environment and I checked the security rules between the two systems. I really don't want to deal with Lawson Support. What am I missing Thank you,
3 4136
by  John HenleyJump to last post
08/28/2008 9:44 AM
2 Replies and 2544 Views MSS Direct Reports Security Rule  2544  2 Started by  Eugene Sarabia Has anyone able to secure the Manager Self Service to only allow access to direct reports and employees reporting under the supervisors I had used the Lawson examples but I am getting errors and it is not working. Here's the formula: &160;&160;&160; &160;&160; if(user.isSupervisorOf(getIdFromEmpNbr(lztrim(table.COMPANY),lztrim(table.EMPLOYEE))))'ALL_ACCESS'; else'NO_ACCESS'; &160;
2 2544
by  Eugene SarabiaJump to last post
08/26/2008 4:43 PM
3 Replies and 2898 Views Print Manager and JobScheduler  2898  3 Started by  trueblueg8tor Thanks for reading. I have a user that's missing the 'PrintManagrer' and 'JobScheduler' when using IC229. I added the environment forms 'prtmgr' and 'jobschd' but it's still missing for him. Any suggestions
3 2898
by  trueblueg8torJump to last post
08/22/2008 10:25 AM
2 Replies and 3028 Views LSF9, RSS and Templates (Shopping)  3028  2 Started by  Elizabeth Ardito We have a shopping list that is company wide with basic items.&160; Is it possible to lock down PO15.1, based on the name of the template and if it is a specific user and give everyone else inquiry only access Any assistance would be greatly appreciated. Elizabeth Ardito Systems Analyst Middlesex Health System
2 3028
by  Elizabeth ArditoJump to last post
08/22/2008 7:14 AM
0 Replies and 2175 Views LSLOAD crashing LS Security Server  2175  0 Started by  Maris Fisler Is anyone having issues using the LSLOAD programs&160; We are simply dumping a profile that exists then trying to load it as a new profile.&160; This profile has about 450 security classes and as it is doing the LSLOAD it fails in different places and takes down the Security Server and the Application every time.&160; We have to restart Websphere and Lawson from the beginning.&160; GSC has been of no use as of yet, anyone surprised about that&160; Thanks
0 2175
08/20/2008 5:29 PM
2 Replies and 2598 Views ESS/MSS Rules  2598  2 Started by  Wade-T Is there a listing of which files to grant access to for ESS/MSS to work
2 2598
by  Wade-TJump to last post
08/14/2008 2:12 PM
2 Replies and 3531 Views ESS/MSS Password Change  3531  2 Started by  Steve Datish We are in the process of rolling out ESS to 4,000 users and are trying to limit the maintenance on ESS passwords.&160; I have a few questions: What logic do you use to assign the initial ESS password (ex. birth yearlast 4 of SSN) Do you allow ESS users to change their password Do you force users to change their password after initial log on Do Lawson users have two separate ID's, one for ESS/MSS and a separate ID if they are a Lawson application user Thanks.
2 3531
by  kflores01Jump to last post
08/06/2008 10:53 AM
1 Replies and 2074 Views Form Tab  2074  1 Started by  trueblueg8tor Thanks for reading. I think I know the answer but I wanted to make sure. With 8.0.3 security, if a Change Function Code is given the user is able to perform Change on all form tabs given correct &160;
1 2074
by  John HenleyJump to last post
08/05/2008 9:27 AM
2 Replies and 2653 Views Workunits  2653  2 Started by  trueblueg8tor Thanks for reading OS: Unix Apps: 8.0.3 PF: Integrator RM: MS Adam DB: DB2 Is there a way to increase the number of workunits displayed in an inbasket
2 2653
by  trueblueg8torJump to last post
08/05/2008 8:44 AM
1 Replies and 2119 Views Securing HR tables w/o Proc Lvl from Add-Ins  2119  1 Started by  RMS Using LSF 9 Lawson Security:&160; I would like to secure the&160;BENEFITS table to a subset of employee IDs based on the&160;users&160;allowed process levels. &160; I've created a multi-value attribute 'MultiProcLvls' on the users RM schema that contains the&160;process levels the user is allowed to see.&160; This works great to secure tables that contain Process Level from Add-ins query, but other tables, such as Benefits, only contain&160;Company and Employee.&160;So I'm trying to us...
1 2119
by  John HenleyJump to last post
08/04/2008 1:43 PM
5 Replies and 2971 Views Search Box Lockdown  2971  5 Started by  GregSl I need to restrict ESS users from using the Search box, as they have access to HR11 to inquire Personal data. Any assistance is greatly appreciated. &160; &160; &160;
5 2971
by  GregSlJump to last post
08/01/2008 7:00 AM
16 Replies and 6771 Views LDAP Login  6771  16 Started by  Deleted User I am attempting to log into are new development lawson ldap server.&160; I must be missing something.&160; Does anyone have an example of what this looks like&160; Here is the ldap information from the install.cfg file. LDAPBINDDN=CN=root,CN=lsfdev01,DC=prod,DC=bcidaho,DC=loc LDAPDATADN=o=lwsnrmdata LDAPLOCAL=TRUE LDAPOIDARC=1 LDAPPASSWORD=xxxxxxxxxxxxx LDAPPORT=389 LDAPPREFIX=zz LDAPTYPE=ADAM LDAPTYPEGEN=com.lawson.lawrm.ldifgenerators.ActiveDirG...
16 6771
by  Kwane McNealJump to last post
07/31/2008 12:18 PM
3 Replies and 2469 Views LS FastTrack  2469  3 Started by  MattM Can anyone offer insight on what exactly FastTrack is
3 2469
by  itsjustmeJump to last post
07/25/2008 1:51 PM
1 Replies and 2572 Views Related Forms  2572  1 Started by  MattM Does anyone know how to remove or secure the 'Related Forms' drop down from forms like AR11.1 Or a way to secure the forms listed I have denied access to the forms listed and the users can still access them via the related forms link.&160; Any help would be appreciated.
1 2572
by  John HenleyJump to last post
07/25/2008 9:40 AM
17 Replies and 8684 Views Loadusers utility problem  8684  17 Started by  Deleted User OK, I have the following code setup in my loadusers.xml script.&160; For the life of me, I cannot figure out why this works when I don't have the Email tag setup.&160; If I put in the email bit, it fails.&160; Can anyone shine a light on this FYI, Agency, UnixID, ProxyUserID WfUser are custom fields and work fine.&160; I've tested all of them individually.&160; The only one that fails is email. &160;&160;&160;&160;&160;&160;&160; od 90' Role='LoganAllAccess' Agency='014' U...
17 8684
by  GregSlJump to last post
07/23/2008 8:59 PM
6 Replies and 3797 Views substitue SSOP id while using AD BIND  3797  6 Started by  Ashley Ardoin Need to be able to substite an SSOP identity&160;... Example have an RMId of pr100rw1, a SSOP User of jsmith (bound to AD), and OS id (Window NT) of localcomputer\xpr100rw1 (local computer account...not AD account!)... would like to change out SSOP User jsmith (AD account) with mjane (also an AD account) &160;and leave the rest unchanged... an thoughts
6 3797
by  RMSJump to last post
07/23/2008 3:27 PM
8 Replies and 3714 Views 9.0 Apps & Security  3714  8 Started by  trueblueg8tor Has anyone implemented 9.0 Apps & Security at the same time
8 3714
by  itsjustmeJump to last post
07/22/2008 6:28 AM
1 Replies and 2930 Views Social security number  2930  1 Started by  Deleted User How would you secure the SS number field on HR11 form. We are windows, still using Laua on version 9. Any help appreciated
1 2930
by  MattMJump to last post
07/17/2008 3:07 PM
1 Replies and 2445 Views Drill around and Select Tables/Systemcodes  2445  1 Started by  MattM Has anyone got any ideas on how to determine which files and/or systemcodes are required for drill and select access on forms. Currently, the method I am using is to do a drill explorer on the fields with a drill or select available within the security admin tool. How is everyone else doing this It would be nice to determine at least which sysemcodes files are being accessed. &160; HELP!! Any ideas would be appreciated.
1 2445
by  Kwane McNealJump to last post
07/11/2008 2:04 PM
2 Replies and 3395 Views Process Levels and attributes  3395  2 Started by  MattM I am working on how to best build access to our process levels. There are 50&160;accounts with a range of accounting units underneath as follows Account = 101 Accounting units = 101001 - 101999 Account = 102 Accounting Units = 102001-102999 And so on..... I would like to create a custom attribute for Account of 101, 102, etc... and grant access to the associated accounting units. Being that there are so many accounts, I would like to be able to accomplish this with a rule referencing t...
2 3395
by  MattMJump to last post
07/01/2008 4:04 PM
2 Replies and 4121 Views Element Groups  4121  2 Started by  trueblueg8tor Are Element Groups simply a set of keys across Lawson tables Is this statment correct - 'even though the column names in some Lawson tables are different they may refer to the same thing' What are some Element Groups commonly used Is this mainly for Data Level Security
2 4121
by  John HenleyJump to last post
07/01/2008 2:10 PM
5 Replies and 2635 Views EMSS and LS9  2635  5 Started by  MattM After looking at Lawson's ESS and MSS Security Classes in the provided role templates, it appears that these are only for use with EMSS users that do not have access to the search bar as they provide access to many forms and files that many users with the search bar should not have access to. Has anyone any good suggestions on how to approach EMSS on LS9 for users hat have access to the search bar
5 2635
by  kliveJump to last post
07/01/2008 2:00 PM
8 Replies and 11227 Views Securing based on Process Level  11227  8 Started by  Shari We have a new position that needs inquiry access to HR11 but only for those employees within the same process level. For example: John Doe is in PLevel 001 - should only be able to see employees in his PLevel=001 Jane Doe is in PLevel 002 - should only be able to see employees in her PLevel=002 Has anyone found a fairly simple way to accomplish this Thanks! -Shari
8 11227
by  kliveJump to last post
07/01/2008 1:48 PM
4 Replies and 3313 Views WF12 and LSF9 Process Flow  3313  4 Started by  Deleted User &160; In are current Lawson implementation we have give certain users access to wf12 in order to update routing.&160; In LSF9 it looks like WF12 is gone.&160; Is there a way to do this in LSF9 without giving the users&160;full access to ProcessFlow Admin Thanks --JayR &160; --JayR
4 3313
by  David WilliamsJump to last post
07/01/2008 8:08 AM
3 Replies and 2665 Views LSF9, HR/PR and limiting access to one process level  2665  3 Started by  Elizabeth Ardito Is there a way to limit someone's access for company and process level&160;at a high level or do we need to modify individually all tables, online programs and batch programs Any assistance is greatly appreciated. Thanks! Elizabeth Ardito Systems Analyst Middlesex Health System
3 2665
by  Elizabeth ArditoJump to last post
06/27/2008 9:18 AM
3 Replies and 3905 Views Design Studio  3905  3 Started by  trueblueg8tor I know that a user's security class affects which forms he or she can open in Design Studio. But what exactly grants access to Design Studio itself
3 3905
by  trueblueg8torJump to last post
06/26/2008 12:09 PM
1 Replies and 2973 Views AP Vendor drill shortcut  2973  1 Started by  Wade-T What would the IDA call be to create a shortcut for a few of our staff to monitor their A/P payments in the 9.0 environment&160; The 8.03 shortcut was: https://servername/servlet/ida_TYP=OV&_OUT=HTML&_PDL=PROD&_SYS=gl&_FN=APVENMAST&_OV=281&_ON=VendorPaidInvoices&_IN=VENSET1&K1=VNDG&K2=vend &160;
1 2973
by  John HenleyJump to last post
06/23/2008 10:53 AM
1 Replies and 2630 Views Blank under Name in LAUA Security profiles  2630  1 Started by  Deleted User I have a sample output in the following from Lawson LAUA Security profiles: &160; Security Class User Name ADMIN NT00000131 &160; USER ...
1 2630
by  John HenleyJump to last post
06/18/2008 4:21 PM
3 Replies and 2649 Views 9.0 Apps & 8.0.3 Security  2649  3 Started by  trueblueg8tor Is 9.0 Security required for 9.0 apps
3 2649
by  trueblueg8torJump to last post
06/17/2008 10:02 AM
3 Replies and 3835 Views laua Data Security reports  3835  3 Started by  Deleted User I'm confused about a few specific but correlated things on the laua data security listing report: &160; 1) If there is no value in the 'System Code' spot, does that mean that for&160; every system code the Security Class has access to based on the FormID Report - they have access to for the *same*&160; 'From' and 'To' Company/Process Levels based on that row in said Data Report &160; 2) same type of thought - if there is no value in the 'Product Line' AND 'System Code' does that make th...
3 3835
by  k-rockJump to last post
06/14/2008 12:49 PM
1 Replies and 2234 Views Process Level/Site Per User  2234  1 Started by  trueblueg8tor When converting to LSF 9 security how are you attaching Process Levels to users Are you using a custom attribute in RM Our enterprise has two ids (one apps one ess) per user so I there isn't a need for me to create an ESS service for app users.
1 2234
by  John HenleyJump to last post
06/06/2008 9:21 AM
5 Replies and 2970 Views LAWSON SECURITY - APPS REPORTING  2970  5 Started by  Deleted User I work for a small shop on a Lawson 8.1 apps, 8.1 environment, Unix - AIX, &160;DB2 applications. We are going thru a SOX audit and the auditors have found several 'issues' with our Lawson procedures.&160;Since my boss and I are the only Lawson Sys. Admins - and there is no program promotion software in place, the current procedures we follow are documenting changes, documenting user testing, submitting change control docs to committee which meets weekly and then I (the developer) move the mod...
5 2970
by  John HenleyJump to last post
06/03/2008 11:44 AM
3 Replies and 2573 Views LS9 - Unix  2573  3 Started by  ChrisW Hi!&160; We are on LSF9 using Lawon Security 9 on Unix and&160;are getting ready to deploy ESS/MSS.&160; Does each employee need to have a UNIX id in order to store who updated the field for audit purposes
3 2573
by  ChrisWJump to last post
06/03/2008 6:55 AM
2 Replies and 3904 Views laua vs. 9.0 Data Security  3904  2 Started by  Peter Wilmot Anybody have any ideas on this&160; In laua security, we had the system code AC for Data Security tied down to specific activities for specific security classes. For example, activity 41279901 was secured using the combination of 'company/activity group range', 'company/activity range' and 'security code/activity range'. This would have looked like this: From Company&160;&160;&160;&160;&160; To Company&160;&160;&160;&160;&160;&160;&160;&160; From Process Level&160;&160;&160;&...
2 3904
by  Peter WilmotJump to last post
05/30/2008 12:20 PM
1 Replies and 2337 Views WARN [LauaSecurityUser] Value for attribute 'VENDOR' and data area '' is NULL  2337  1 Started by  Ben Coonfield I am seeing many lines in the ios.log file such as: WARN&160; &91LauaSecurityUser&93 Value for attribute 'VENDOR' and data area '' is NULL or WARN&160; &91LauaSecurityUser&93 Value for attribute 'CUSTOMER' and data area '' is NULL This is a environment, using LAUA security exclusively, and we have not defined any rules with the new security tool.&160; Is there some kind of misconfiguration causing&160;these messages&160; They do not appear to be causing anything to fail as ...
1 2337
by  John HenleyJump to last post
05/30/2008 7:10 AM
3 Replies and 3164 Views Disabled Assignment Tab(HR11) does not refresh  3164  3 Started by  GregSl I have managed to disable the Assignment Tab by using the following rule. If (isElementGrpAccessible('PROCLEVEL','I,','HR',form.EMP_COMPANY,'CORP')) 'NO_ACCESS' else ''I' My problem is when I enter an Employee ID from a different Process Level it will work the first time, but the Assignment info is blank. If I enter an ID from Corp process Level it will freeze the tab.But will not refresh or enable, when I enter different Process Level EID. Has anyone come across this situation Greatly ap...
3 3164
by  John HenleyJump to last post
05/29/2008 7:47 AM
5 Replies and 4929 Views Minimum security settings  4929  5 Started by  Deleted User What are the minimum laua security settings for LOGAN items to allow a typical end user to access the Portal What are the minimum laua security settings for Environment items to allow a typical end user to function We are at env 8.0.3
5 4929
by  John HenleyJump to last post
05/14/2008 7:34 AM
1 Replies and 3106 Views 9.0 Security Best Practices  3106  1 Started by  trueblueg8tor Background: In general, most of our users are restricted to their site that's assigned in HR11/Employee file. We use 2 ids, 1 for ESS and another for application users. The application users are generated by an algorithm and stored in a table. Issue: How is everyone else enforcing what was 'Data Level' security in 8.0.3 for application users Possible Solutions: (A.) I could create a custom RM attribute that holds a user's site/process level and have a Process Flow (PF Integrator) maintai...
1 3106
by  John HenleyJump to last post
05/05/2008 1:46 PM
6 Replies and 6952 Views Lawson 9 Security-Role does not recognize Rules  6952  6 Started by  GregSl I came across a situation, when I set CheckLS='YES', the Role does not recognize the Rules to access the Company and Process Level, based on the element group. It gives access to everything ! Same thing happens,&160; if I deny access to HR system code, for the same Role. They work fine on LAUA with checkLS = 'No' When using LAUA it's easy to find exceptions&160;from the ios.log. In the above situation, what are the logs I can check where the Role's permissions are located &160; Greatly ...
6 6952
by  trueblueg8torJump to last post
05/04/2008 10:54 AM
4 Replies and 12409 Views Lawson 9.0 Security  12409  4 Started by  Kate Liamero I have 2 security classes assigned to a role in Lawson LSF 9.0 security. One class only allows access to all AP20 tokens and denies all other AP forms. The second class only allows access to MA64 tokens and denies all other MA forms. Both classes assigned to a role and to a user. When I login I can access all MA and AP forms. If I go back into the classes and explicity DENY ALL MA forms including the MA64 in the AP CLASS and explicity deny ALL AP forms includi...
4 12409
by  trueblueg8torJump to last post
05/01/2008 9:12 AM
13 Replies and 5324 Views ESS and LS9.0  5324  13 Started by  Deleted User I would like to use LS 9.0 for users to access their ESS information. We have over 100 companies and need users to access their own ESS information.
13 5324
by  Deleted UserJump to last post
04/29/2008 3:50 PM
3 Replies and 4128 Views Lawson Account can not log into portal  4128  3 Started by  John Crudele We are using the LDAP bind. The only user we are having an issue with the the Lawson user. The error we receive when we log into portal is WARNING: LDAP authentication failed for user with dn 'CN=Lawson User,OU=Service Accounts,OU=Administrative Accounts,DC=endurancebermuda,DC=net'. Message: javax .naming.AuthenticationException: &91LDAP: error code 49 - 80090308: LdapErr: DSID- 0C090334, comment: AcceptSecurityContext error, data 531, vece Any ideas would be appreciated &160; Thanks J...
3 4128
by  trueblueg8torJump to last post
04/24/2008 1:30 PM
0 Replies and 2596 Views Hooray!  2596  0 Started by  trueblueg8tor This has probably already been solved but I've been waiting so long for this I had to share it. Here is an example of a query you can use if you ever wondered what security classes have a form with certain function codes. (Note, obviously, this is intended for LSF environments where GEN is a relational db) Enjoy! --Tell Me Which Security Classes Have “A” AND “S” Function Codes for PO420 --All Security Classes Minus... SELECT DISTINCT SECCLASS FROM YOURSCHEMA.SECCLASS WHERE SECCLASS NOT ...
0 2596
04/23/2008 3:03 PM
0 Replies and 3158 Views secload -m not merging and stoplase issues  3158  0 Started by  Joe O'Toole I'm trying to merge some new security settings for HR into a Finance only LAUA security class. Per Lawson's documentation, I ran the secload -m and then ran a secinteg -V (no errors) then ran a bldsecdict -d (no errors). Did a stoplase / startlase and did a lawsec off / on. Went into LAUA and the security class does not show any of the new items merged. As a side note, every time I do a stoplase and startlase our&160;job and printmgr security does not come back up properly - everyone can see ot...
0 3158
04/23/2008 2:44 PM
9 Replies and 3334 Views Password Recovery for ESS Users?  3334  9 Started by  Deleted User For those who have implemented LSF90 ESS on Windows environment and ADAM - how do you take care of users forgotten password Do your users call your IT and let the IT&160;folks&160;reset and issue a temporary password or have you implemented a password recovery application that emails a password reset link to your users and let the users take care of resetting their own password Appreciate the insight.
9 3334
by  Deleted UserJump to last post
04/23/2008 1:30 PM
7 Replies and 5399 Views Bookmarks Missing for ESS Users  5399  7 Started by  trueblueg8tor In our test Lsf environment some of our ESS users who have are being secured with 9.0 security are missing bookmarks. - They are a member of a bookmark group that has been granted access to the ESS bookmarks - They have a portal role where I've locked the ESS bookmarks (Subscription and Layout) - They all have an 'EssRole' that has a Security class that has a rule that grants access to the Logan productline. - My ESS id works fine but the only difference I can see is that I have an ...
7 5399
by  Joe O'TooleJump to last post
04/15/2008 9:36 AM
2 Replies and 3322 Views Automating authentication for DME calls  3322  2 Started by  Deleted User I am looking to use DME to interface data out of Lawson to some non Lawson app. The issues is a need a to automate the authentication. Any ideas
2 3322
by  Deleted UserJump to last post
04/10/2008 10:16 AM
6 Replies and 3387 Views wiped out all security classes for all users on test!!  3387  6 Started by  Deleted User On the test system, I removed the security class for ONE person and it removed it for ALL USERS...We can no longer log into the test system, since none of us have SECURITY CLASSES or ROLES, etc. Our network admin cannot even log on. This was on the test system and I think my downfall was when I did a control home on the users list to go to the top and it put signs to the left of each person...which I now recognize must have selected ALL users...when I went into the one user to remove her sec...
6 3387
by  Deleted UserJump to last post
04/08/2008 4:30 PM
4 Replies and 2799 Views Lawson Security before or after 9.0 apps?  2799  4 Started by  Ellen Melton We just went live on LSF9 using LAUA and 803 apps.&160; I'm&160;interested in recommendations on when to implement Lawson Security.&160; I was&160;ready to start discussions on Lawson Security&160;and looking for Lawson consulting help on the planning phase when my lead developer said everything she is hearing from our Lawson Project Manager indicates that it is best to wait until we are fully migrated to 9.0 applications before we even begin looking at Lawson Security. What are the pros/c...
4 2799
by  kliveJump to last post
03/10/2008 12:16 PM
0 Replies and 2543 Views Securing MSS to see only their positions  2543  0 Started by  psherry I wrote a rule on PAPOSITION&160; in LS9.0 if(trim(getDBField('EMPLOYEE','POSITION',user.getCompany(),user.getEmployeeId())) == table.SUPERVISOR) &160;&160; 'ALL_ACCESS,' else &160;&160; 'NO_ACCESS,' This does show only the positions that report to the supervisor in MSS but I can't figure out how I can also show the positions under employess who have their own direct reports. So a Director sees positions that report to him but doesn't see the manager positions. Wondered if anyone has t...
0 2543
03/04/2008 5:06 PM
5 Replies and 10959 Views Lock pay field  10959  5 Started by  Deleted User Hey, I'm looking to see if it is possible to lock the pay field so that you can't see it for just certain departments. Like say ER there is a sec class called eradmin. Lock the pay field for them so they can't see say erdirector but they can see every other class Is that possible or is it just a all or nothing Thanks Kevin
5 10959
by  kliveJump to last post
02/28/2008 4:07 PM
4 Replies and 2721 Views Securing RSS...  2721  4 Started by  klive Haven't seen much on this and I have tried several things thought someone here might be able to help...I want to be able to setup security for RSS to not allow requesters to approve their own requests...My thought was to attack this from the Approvers perspective...but since RSS doesn't give me forms and fields its a little difficult to determine where and what rules to write.&160; Any assistance would be greatly appreciated...
4 2721
by  kliveJump to last post
02/26/2008 3:18 PM
17 Replies and 13789 Views Can't View Print Jobs  13789  17 Started by  msjmg111 I have a multi-step job defined with 2 steps, the first step is a ftp and the second runs hr511. I also have a distribution list set up on the hr511 step to distribute the report to a person still using the LAUA security and a person using the LS 9.0 security. The person with the LAUA security gets the report and can view it in their print manager, the other person with 9.0 gets the report but cannot see it in her print manager. So we know the distribution is correct, but something in 9.0 sec...
17 13789
by  trueblueg8torJump to last post
02/25/2008 8:34 PM
1 Replies and 2990 Views Provisioning & Password syncronization  2990  1 Started by  Deleted User I'm new to Lawson, and more experienced with the middleware that Lawson9 uses, (WAS, LDAP, etc) so need some assistance on a couple of issues. I'm using TAMeb (WebSEAL) to secure Lawson, however we would like to provision users using ITIM, or use IDI to syncronize the passwords between Lawson and TAM. However Lawson uses 'Bouncy Castle' to encrypt the passwords stored in the LDAP. It is responsible for encrypting the users password (using the selected algorithm) and storing it in the Law...
1 2990
by  trueblueg8torJump to last post
02/25/2008 8:29 PM
3 Replies and 2957 Views Copy RM Groups between LDAPs  2957  3 Started by  Ellen Melton Is there a way to copy groups defined on RM Administrator between LDAP instances&160; I have my groups now defined in our Production box (going live in a couple weeks) and now want to setup the same groups in our Test box.&160; The lsdump/lsload doesn't appear to have a parameter&160;for Groups, only Roles.&160; We are LSF / UNIX / Tivoli.
3 2957
by  John HenleyJump to last post
02/12/2008 4:35 PM
3 Replies and 5530 Views Restricting employee from seeing one dept  5530  3 Started by  psherry The payroll manager wants her payroll clerks to see all employees except for employees with their departments. On example is I built a security class for Pay Modeling, so they have access to PR89.1. I wrote a conditional rule on the table Employee stating if table.department == 4710 no access else all access and that works on the selects but they can still enter the employee in the emp-employee field on the form. I been trying to write a conditional rule on the form to restrict employees in 471...
3 5530
by  psherryJump to last post
01/31/2008 3:20 PM
2 Replies and 3002 Views LS 9.0 not securing  3002  2 Started by  Roger French I've got a user set up in 9.0 LS security (CheckLS flag = Y). User does not exist in laua. User has NO roles assigned to him. User can log into Portal ok; user has ESS and RSS bookmarks assigned to him ok. So, why can the user access every single screen (AP20, HR11, etc) in the search box User does NOT receive any security warning, and is able to look at all data. User can launch RSS and ESS with no problems or security warnings. I have reviewed a few times, and have cleared IOS cache...
2 3002
by  Roger FrenchJump to last post
01/29/2008 3:38 PM
2 Replies and 8570 Views Securing Drill/Select in 9.0  8570  2 Started by  Ellen Melton I'm trying to allow a select, but secure the drill explorer capability on a form. Specifically, we want our hospital campus security department to update vehicle information on PA17.1. I want them to be able to click on the gray down arrow in order to select on Company and Employee field. I've removed the FICA number from display on the form and display on the Select screens. But in allowing the select, it opens up the 'world' if they right-click and drill. Is there any way to allow Selec...
2 8570
by  John HenleyJump to last post
01/28/2008 4:00 PM
1 Replies and 7529 Views Security 9.0 - Security based on Department  7529  1 Started by  Stephane I'm using security 9.0 and I would like a user have restricted access for a specific department (Employee.Department). I'm able to restrict access on HR11 form and on Drill Explorer but when I print a report all the department are one the list. Is there a way to have only the restricted department on the report
1 7529
by  John HenleyJump to last post
01/18/2008 2:19 PM
1 Replies and 10315 Views Securing RQ10 - in LSF9  10315  1 Started by  Deleted User I'm trying to secure form RQ10.1 to users based on a custom attribute called DepartmentControl (String 4) - Here's what I've got, but it keeps giving me security violation to users who have multiple values in DepartmentControl... (trim(form.RQH_REQ_LOCATION) == trim(user.getAttribute('DepartmentControl'))) || (trim(form.RQH_REQ_LOCATION) == trim(user.attributeContains('DepartmentControl',getDBField('REQUESTER','REQ_LOCATION',trim(user.getAttribute('DepartmentControl')))))) || (trim(form...
1 10315
by  Deleted UserJump to last post
01/15/2008 10:51 AM
2 Replies and 9965 Views Adding user system code to LawSec 9.0  9965  2 Started by  msjmg111 I created a system code to store user programs, how do I get Lawson Security 9.0 to recognize it I can see it and assign it in LAUA but when I try to add the rule in LS9, my user created system code is not showing.
2 9965
by  msjmg111Jump to last post
01/08/2008 2:35 PM
2 Replies and 10577 Views inquiry only access from LID  10577  2 Started by  Deleted User Is there an easy way to give inquiry only access in LID I currently have to go into each product line (HR, PR, PA, GL, AP, etc) and set up as inquiry only when it seems like I'd be able to give this to all product lines/forms at once Also - this is odd to me - but I gave inquiry only for HR/PR prod lines and the person does not get the drop down selector box on hr11..I went into the table security and by default it appears that they have access to all the tables unless you lock them dow...
2 10577
by  Greg MoellerJump to last post
12/19/2007 4:03 PM
8 Replies and 12302 Views PortalBookmarkRole Missing  12302  8 Started by  Ellen Melton In the Lawson Administration Resources and Security Guide (page 242), one of the Lawson-delievered roles listed is PortalBookmarkRole. In our installation, that role was not delivered; instead, we have a PortalBookmarkAdminRole. In a recent LIS inquiry to Lawson about this, they said the guide was a typo. I was wondering if any other installations actually had the PortalBookmarkRole delivered. What concerns me is the 'Admin' piece of the role title we have. I want to make sure t...
8 12302
by  Ellen MeltonJump to last post
12/19/2007 8:20 AM
1 Replies and 10097 Views GROUPDATA node within loadusers XML file  10097  1 Started by  Roger French Can anyone tell me what the GROUPDATA node is used for within the XML template used for loadusers I have poured over the Resources and Security manual, and it shows GROUPDATA node. It basically says you can add groups to the system, and I can see the examples they show.. Ok so yes I understand that. Ok, so what KIND of groups, and what are the groups used for And how do they work Is it the same as Bookmark Group People Group I wished these manuals would be better at documenting s...
1 10097
by  John HenleyJump to last post
12/17/2007 4:51 PM
10 Replies and 13067 Views Security Files  13067  10 Started by  Deleted User I'm trying to make a query to pull most of the info that can be found on the tknsecrpt but there are parts that the powers above don't care to see. We are currently on if that is going to make a difference in the file names. Basically need to see by Sec Class what forms and options on forms each sec class has access to.
10 13067
by  Deleted UserJump to last post
11/05/2007 2:46 PM
1 Replies and 10736 Views ESS/MSS Using laua - on LSF9  10736  1 Started by  Deleted User We are running into issues regarding users secured through laua and users not secured (Employee Self Service Users only). We implemented LSF9 and are using laua. We have two type of users - Lawson users that are secured via laua and Regular employees that only need to view paycheck or change addresses, etc. and are not secured via laua. Is there anyone in this situation that may be running into access issues security violations Example: If I am assigned a laua securi...
1 10736
by  John HenleyJump to last post
10/04/2007 3:50 PM
1 Replies and 10264 Views LAUA Security files - 9.0  10264  1 Started by  Roger French Has anyone got a format of the 9.0 laua security file formats Such as for USER, USERCND, etc. and then the Environment Group files USERGRP, USERGRPDTL, etc. files. I have searched on support but was unable to find them. I don't know if the format from 7.3.3/8.0.3 has changed in 9.0. Yes I know I could do a dump of 9.0 files before and then get the format. (I am doing a conversion of 7.2.2 security to 9.0). Thanks in advance, -Roger
1 10264
by  John HenleyJump to last post
09/14/2007 11:45 AM
4 Replies and 11314 Views LAUA in 9.0  11314  4 Started by  Deleted User We are testing out 9.0. I know you can still use LAUA security in 9.0; but do you turn it on 2. add new users in 9 so we can use exisiting laua security classes. We normally in 8 we added new user to lawson local group on server, then user showed up in laua.
4 11314
by  Deleted UserJump to last post
08/31/2007 7:25 AM
2 Replies and 11213 Views employee search security  11213  2 Started by  Deleted User I gave someone access to bn32 but they can not search for the employee by name or number. I apparently need to give them access to something else. I do not want to give them access to hr11, I only want them to have bn32 with the ability to use the drop down on the employee field to be able to pick or search for the employee. This is similar to my next question, I have given someone pa52 access, but when they click the dropdown to select the action, the action list is blank. Since the acti...
2 11213
by  Deleted UserJump to last post
08/16/2007 12:12 PM
1 Replies and 10856 Views Implementing ESS/MSS before LSF 9 security?  10856  1 Started by  Deleted User We are looking at implementing Employee & Manager Self Service and have been told by one person that we may want to wait until we upgrade our environment to version 9. This has to do with the huge differences in the security between 8.1 and 9. I'm not sure if this was a STRONG recommendation or just a SLIGHT recommendation. We have to upgrade the environment to 9.0 before July 2008. What would the pros/cons be if we implemented ESS/MSS now and then did the environment upgrade in ...
1 10856
by  John HenleyJump to last post
08/13/2007 8:25 PM
1 Replies and 10593 Views Security File Question  10593  1 Started by  Deleted User I am looking at users that have access to GL00.1. If the security group has full access to the form in the sec-form file, but does not have a listing for the 'IF' System Code in the Sec-data file. Can they still have access to GL00.1 Thank you, Miles
1 10593
by  John HenleyJump to last post
08/02/2007 10:07 AM
13 Replies and 14061 Views GL40.2 security error on adding records  14061  13 Started by  Deleted User One of our security class is unable to add records on GL40.2 though their security seems to be fine. They have access to create journals. They can't release it though. Any ideas There is no data security but that class has inquiry only access to all other systems.
13 14061
by  John HenleyJump to last post
05/31/2007 2:39 PM
1 Replies and 10835 Views AP91  10835  1 Started by  klive I am trying to get the drill around to work properly it works for some and not for others...i am in LSF9.0 I have researched and added the tables that were seemingly required but still is not working on all of the areas of the form...does anyone have a suggestion...I stripped the security class all the way down and started adding one at a time to see if there were any significant changes and still no need of help...
1 10835
by  John HenleyJump to last post
05/09/2007 1:51 PM
3 Replies and 10799 Views Lawson 9.0 Personnel Action Rule  10799  3 Started by  psherry I have been trying to build a rule in LSF 9.0 security where if a certain personal action is choosen it would only show certain reason codes. I have tried to build this rule on the PCODES table with no luck. Has anyone come across a rule for this on PA52. Thanks!
3 10799
by  psherryJump to last post
05/03/2007 8:00 AM
2 Replies and 11489 Views Get RMID from UserName  11489  2 Started by  ErikSmith We are attempting to write a rule in Lawson Security to allow users access to jobs defined by other users in the same group. When using the function isMemberOf(group,lookup) using the UserName element in GEN, we fail because that UserName is a windows NT identity (NT00001). I cannot find a way to translate that UserName into the RMID that is required for isMemberOf(). Can anyone offer suggestions on how we can accomplish this. We are a new Lawson install and trained on 9.0 and Lawson Securit...
2 11489
by  ErikSmithJump to last post
04/10/2007 9:49 PM
2 Replies and 15796 Views Form Function Code Listing  15796  2 Started by  Deleted User I need a list of all Forms for HR suite with the available function codes for each form. I did the dump file (rngdbdump -c gen vallstuse > functioncodes.dmp) but have a few issues with this unfriendly file: 1) The Value column has more than just function codes in it. In order to eliminate all rows that are not function codes, I'd need a complete/inclusive list of all possible function codes - which I cannot locate. i.e. HR11.2 shows as follows Values of H (hourly) , I (In...
2 15796
by  Deleted UserJump to last post
12/05/2006 11:32 AM
3 Replies and 12721 Views Drill security to field level  12721  3 Started by  Louis Brockinton We have a user who needs to view TR21 to review training information on employees. We do not want this user to be able to drill around on the employee number. Security is set to where the EMPLOYEE file is not available thereby taking care of drill security. However, the search options under the employee number drop-down field on TR21 are also not available so this user cannot select employees by name as this points to the EMPLOYEE file. Is there a way to grant the Employee Name search option...
3 12721
by  John HenleyJump to last post
07/21/2006 9:47 PM
3 Replies and 11778 Views LOGAN security  11778  3 Started by  Deleted User I am not sure about LOGAN security. Do we need to give users LOGAN at all Some of our users are approvers in processflow so I know that that they need to be given security to WF23 atleast so that they can write comments. (atleast their comments end up in WF23). Some are EDI users. But for most crowd, what is the minimum access Please let me know.
3 11778
by  Alex TsekhanskyJump to last post
04/12/2006 6:23 PM
3 Replies and 13408 Views Data Encryption in Lawson  13408  3 Started by  Deleted User 1. Can Lawson handle data encryption Example, decrypt an encrypted value in an Oracle table and display on a form. 2. Can field security be implemented at the form level There is a field security for Drill Around but is there one for Forms so it will be displayed with '*' if restricted.
3 13408
by  M GrahamJump to last post
03/19/2006 5:25 PM
3 Replies and 12567 Views Security Copy mess  12567  3 Started by  Deleted User Hello, I set up AP, GL and AC for SEC1 security class and went to data security and did INQUIRY ONLY for everythig. I was told that this won't stop users from submitting the batch programs in those modules. So I went to each batch program (non-reporting) and took all the options out except for INP. Q: Is that the best way or there is something faster than this Now I had to set up a new class SEC2 where it had INQUIRY ONLY for AP and AC but full access to GL. I copied SEC1...
3 12567
by  John HenleyJump to last post
11/23/2005 8:51 PM
1 Replies and 12713 Views Deletes of comments  12713  1 Started by  Deleted User With version 8.0.3 we are allowed to delete and modify comments (ar17.2) and our business clients do not want the end users to be able to do so. Is there a way to prevent that We have tried security but that has not worked with disabling the delete button. Any thoughts
1 12713
by  John HenleyJump to last post
06/30/2005 2:29 PM
To join the discussion you need to register first. (Registration is free!) If you are already a registered user please login to join the discussion.
Page 3 of 3 << < 123

RSS Feed Available