Search this forum:
Search
To join the discussion you need to register first. (Registration is free!) If you are already a registered user please login to join the discussion.
Page 3 of 6 << < 12345 > >>
Topics
 Replies
 Views
 Last Post
2 Replies and 1419 Views LSF9 - Conditional rules  1419  2 Started by  ChrisW Has anyone used 'subString' as part of an expression in a conditional rule&160; I'm trying to pull a portion of the Supervisor code to compare to a custom attribute, but it isn't working...
2 1419
by  macjellyJump to last post
01/09/2013 4:03 PM
1 Replies and 929 Views Removeing a role from a profile  929  1 Started by  TBonney Does anyone know of a safe way to remove a role from multiple user security profiles, without impacting anything else (other roles, groups or other settings) defined on those profiles We use loadusers.xml extensively in the creation and deletion of user profiles, using a handful of standard 'basic' profiles. However, we have a few obsolete roles that exist on numerous profiles. We'd like to get rid of these roles, but can not until they are no longer assigned to any user profi...
1 929
by  Ryan SpeightJump to last post
01/09/2013 10:24 AM
4 Replies and 1833 Views Config settings tables  1833  4 Started by  New User Hi All, What i'am looking for is, if there are any tables where configuration settings are stored in any table My objective is to detect any changes made to Lawson configuration settings which will imact on process such as, Accounts Payable, Procurement etc. Example:-  1) changes made to any of the invoice verification tolerance limit attributes. Thanks,
4 1833
by  Greg MoellerJump to last post
01/07/2013 4:57 PM
4 Replies and 1976 Views MSS & LAUA - LSF 9.0.1.9  1976  4 Started by  jdever I have a custom Lawson form that has a drop down select via a system key number.  This select should view all employees.  It works fine for HR super users (those with a UNIX identity tied to a security class). MSS users can only see his/her direct reports when they access the form.  MSS users do not have a UNIX identity and use the 'ONLINE' privledged identity tied to 'weblaw' in a LAUA secuirty class. How can I over-ride Lawson's 'my data security'  for this ...
4 1976
by  John HenleyJump to last post
12/05/2012 1:03 PM
1 Replies and 2127 Views LSF 9.01 and DSSO 10  2127  1 Started by  Themba Hi Lawson Gurus, We currently have a Lawson backend server with LSF and Lawson apps on version 9.01. We have a separate SharePoint server with Workspace already installed. Workspace is not yet connected/integrated with the Lawson server. The S3 Workspace plugin installer requires DSP to be installed on the Workspace server. Using the DSP 10 installation files, we attempted to install DSSO and pointed it to the Lawson backend server as the 'Lawson Security server'. The DSSO installation ...
1 2127
by  John HenleyJump to last post
11/30/2012 2:40 PM
1 Replies and 1118 Views securing ap20  1118  1 Started by  MattK Where is the best place to limit the vendors a specific group of users can see when choosing a vendor on ap20.2
1 1118
by  John HenleyJump to last post
11/29/2012 11:26 AM
2 Replies and 13567 Views Security Report Understanding Help  13567  2 Started by  Deleted User I am a little new to Lawson and have some questions around reviewing Security Reports. I have the report showing all security classes, program codes, form IDs, Secured (YES/NO), Unsecured FCs, and Secured FCs. My understanding: If Secured = YES, then the user has no access to the functions in 'Unsecured FCs' and 'Secured FCs'. If Secured = NO, then the user has access to the functions in 'Unsecured FCs'. However, what about the Secured FCs If these are listed...
2 13567
by  Pepe81Jump to last post
11/21/2012 5:00 PM
0 Replies and 1023 Views Connecting to Security (ADAM) through SQL  1023  0 Started by  RickyY Have any try connecting to LS9 Security (ADAM) through SQL Please share. Thanks. Neng
0 1023
11/01/2012 10:39 AM
1 Replies and 1671 Views Are Unix User ID's stored any where in the GEN tables?  1671  1 Started by  Deleted User Does anyone know if the Unix UID (numeric user ID) stored in the LSF Host etc/passwd file is referenced anywhere in the Lawson LAUA tables; example GEN tables  I can see the ID on LAUA record when I hit Define F6 and then Option B User Profile.  The Unix UID displays at the top Portion of the screen.  The field I am searching for is displayed as 'User ID' on the User Profile Screen.  I would like to know if that field is stored in any of the Lawson V9.0 GEN tables....
1 1671
by  John HenleyJump to last post
10/25/2012 3:46 PM
1 Replies and 1590 Views Securing Print Manager by a Group Structure  1590  1 Started by  JackNoody Has anyone out there used a group structure to secure the print manager (Gen Username element specifically) What we have is a hierarchy scenario when it comes to securing the job queues, and print manager. For Example: At the lowest level our facility can only see there own jobs/print files. Employees at Corporate can see their own jobs, and any facility that they are in charge of. There are also some other scenarios, but we will keep it simple for now. Our plan was to create a structur...
1 1590
by  layzer1Jump to last post
10/09/2012 5:03 PM
2 Replies and 1654 Views PROCLEVEL vs ESS/MSS vs batch jobs  1654  2 Started by  Roy We are on LSF 9.0.1.9 and users on LS Security, but we've run into an issue in regards to PROCLEVEL and employee/manager security vs batch job security.  All our employees have at least ESS access to Lawson, about 1 in 6 employees have more than just ESS access (Requesters, Approvers, Procurement, HR, Payroll, etc.). Users are limited via ESS security to their own EMPLOYEE record process level via PROCLEVEL, and their own record via COMPEMP.  Managers have access to their employees ...
2 1654
by  RoyJump to last post
10/01/2012 5:19 PM
4 Replies and 3019 Views List of Actioni in token/Forms  3019  4 Started by  New User Hello Gurus, I am looking for a list consisting all Actions/Detail line actions for forms/tokens Example:- For Form HR03- Actions are Add, Change, Inquire, Page up, Page down and For same form HR03 for line detail there are Actions Add, Change, Delete similarly where i could get this list or something like Action information per forms Thanks in advance, Amogh
4 3019
by  John HenleyJump to last post
09/27/2012 10:52 AM
1 Replies and 1798 Views AP Vendor Class restriction  1798  1 Started by  Erika Resendiz I am trying restrict end users from seeing certain Vendor Classes from APVENMAST. This is what I have: if (table.VEN_CLASS =='PO') then all access else No access. But i get an error 500 when I add this rule.  It's almost like it times out. The only way it works is if I have ...!='EMP' all acess else no access but then we are able to see all the other Vendor classes that Accounting wants hidden. This is set up on the RQFARSSFiles Security Class under the APVENMAST table.
1 1798
by  Greg MoellerJump to last post
09/20/2012 4:06 PM
1 Replies and 1869 Views Drill around on Accounts in PR35 and others, not working  1869  1 Started by  Roger French I've got LS9 Security turned on. Windows env, 2008, SQL, Env 9.0.1.5, Apps 9.0.1.5 So I've got a security role where several screens are invoked which have the Accounts and Accounting unit on them, such as the PR35.1. Within the role is a security class with a rule which allows full access to all of the files required by PR35.1 drill arounds, such as EMPLOYEE, GLNAMES, etc. Within the security class I've also got an element group rule: user.attributeContains('CompanyControl',lztrim(...
1 1869
by  Roger FrenchJump to last post
09/05/2012 12:31 PM
3 Replies and 1986 Views Lawson Security server ...  1986  3 Started by  Stuart Perkins and I need to figure out what the Lawson Security server name is so I can login to the Security Administrator.  Yes, the information is that hard to find.  What '*.cfg' file can I look in to find the name to use on the login screen for the Security Administrator or RM Administrator
3 1986
by  Stuart PerkinsJump to last post
08/31/2012 12:21 PM
2 Replies and 1803 Views getdbfield syntax  1803  2 Started by  JackNoody Can someone please reply with the correct syntax for the getdbfield function We are trying to get the process level from the employee table.  Here is what we are trying and it is not working on the EMDEPEND table: trim(getDBField('EMPLOYEE','PROCESS_LEVEL',table.COMPANY,table.EMPLOYEE))=='1'
2 1803
by  JackNoodyJump to last post
08/23/2012 4:12 PM
0 Replies and 1311 Views Downside to Privileged identity for EMSS users?  1311  0 Started by  Anthony We have begun planning our security upgrade and were wondering if there is any downside to using a privileged identity for MSS users.  We heard that in doing so that the managers uid would no longer be attached to the action.  Is this true  If so, any recommendations in working around this thank you
0 1311
08/13/2012 3:09 PM
3 Replies and 2043 Views Using LSF 9 Security - removing LAUA - Batch Job  2043  3 Started by  Julia We are anticipating the eventual move to LSF 10.  We understand that LAUA goes away.  I have been trying to get this completed before that time.  I have documentation that tell me what I need to have in place, but when I try to enter a batch job from Lawson portal, enter the name - click inquire and I get a message at the bottom that says 'field is required'.  I can't get past this.  In the LSF 9 Security I have the user setup as CheckLS = 'Y', I have Batch role assigned...
3 2043
by  Greg MoellerJump to last post
08/09/2012 2:19 PM
1 Replies and 1494 Views Restricting Values Entered into Form Fields  1494  1 Started by  Rick Pearl Can you write LSF rules that restrict what a user can enter into a form field.  Specifically, when creating a requisition in RQ10 and RQC, I have restricted the Requesting Locations that are displayed in the Drill Around. It only displays their assigned locations.  However, the user can manually type in any Requesting Location and order for any location.  Can I restrict what Locations a user can enter or is there some way to have fields validate before the requisition is subm...
1 1494
by  Robert SpurrJump to last post
08/03/2012 3:39 PM
1 Replies and 2378 Views Lawson ADAM LDAP  2378  1 Started by  Layne I am looking for some information in Lawson LDAP.  It is the USER_ID field that is present in many of the Lawson Tables, which starts off with the Letter 'NT.'  Where in Lawson LDAP is this stored so I can cross reference this information.  I am sort sort of new to Lawson LDAP.
1 2378
by  John HenleyJump to last post
07/11/2012 7:52 AM
2 Replies and 7160 Views AD account lockout  7160  2 Started by  John Crudele We recently went live on LSF9 and 9.0 apps (WIndows/SQL2005). We have done the LDAP bind to AD. We are having an issue with users accounts getting locked in AD. If you look at the event viewer - application logs you see hundreds of error messages. Does anyone have any ideas This is the detail of one user.&160; Event Type:&160;Error Event Source:&160;LAWSON:prod (LAWSON INSIGHT Environment) Event Category:&160;Environment Event ID:&160;32783 Date:&160;&160;6/10/2008 Time:&160;&1...
2 7160
by  John CrudeleJump to last post
07/10/2012 8:46 PM
2 Replies and 2608 Views lase doesn't start after upgrading AIX  2608  2 Started by  Phil Romov We upgraded AIX from 5.3 to 6.1 (on our test machine for now...) and nothing else has changed db2 is fine, ldap starts up as well, but lawson won't start.  I've traced it to startlaw, where it is trying to load startlase When I run startlase manually it runs to completion (apparently) saying: lase:  security environment 9.0.1.5.174 2009-08-07 04:00:00 (200910) started. However, when I try to run lase, it says  />startlase lase:  security environment 9.0.1.5....
2 2608
by  Phil RomovJump to last post
06/22/2012 9:26 AM
0 Replies and 1515 Views Element Group Proclevel - Data Level security  1515  0 Started by  trueblueg8tor Is the Lawson Security Element Group Proclevel meant to replace LAUA Data Level security
0 1515
05/22/2012 10:03 AM
0 Replies and 1849 Views Mass Delete Orphaned Users -- Windows LSF-9019?  1849  0 Started by  SP In an effort to clean up Lawson security, we recently ran a simple flow to delete the OS identity from all 'ESS only' users who had OS identities tied to their RMID's.  Now we are left with over 1,300 orphaned users in delusers. Does anyone know a way to clean out these ophaned records in mass  Manually deleting them via delusers will take forever. And while I'm on the topic, wth good is the ability to delete os identities via resource update node if it leaves orphaned records...
0 1849
05/10/2012 1:57 PM
1 Replies and 1718 Views Need help troubleshooting a rule  1718  1 Started by  John Costa To all, I need help understanding / troubleshooting a unique security issue. In our LDAP schema, we've defined a custom attribute named Region.  This attribute is defined as a 15-character string.  The values are limited to the following: CMS-HR Corporate-HR Cypress-HR Manasquan-HR Region-SW Wichita-HR In the Lawson Security Administrator, this Region attribute is then set for each employee in their RM record. We are licensed for Emplo...
1 1718
by  John HenleyJump to last post
05/09/2012 2:46 PM
0 Replies and 1509 Views Data area (xxx) has been suspended - but why  1509  0 Started by  Richard J Sculpher I am trying to add a rule in Lawson Security. I have done this many times. But now I am getting a message which in effect says 'Data area (APP) has been suspended'. It has a lot more Java stuff too. The Lawson KB has an article on it which describes the problem and the cure. Bounce WAS and Lawson. KB Article 5153320. I am happy that the solution is correct, but they give the cause as the result of running a dbreorg while WAS is up. I have tried to reproduce this and cannot. With WAS up and...
0 1509
04/20/2012 5:36 AM
1 Replies and 1687 Views Lawson Security Environment Information -ldapbrowser  1687  1 Started by  Deleted User Hello, Does anyone know where the Lawson Security User Environment information is stored in LDAP  This is the screen with the user groups, printer groups and product line.  I'm using the Softerra ldapbrowser running Lawson S3 901.
1 1687
by  Roger FrenchJump to last post
04/18/2012 8:07 AM
0 Replies and 1311 Views Process level security with state resriction  1311  0 Started by  Willie We currently have security set up by process level using an element group. Is there a way to add restrictions to specific work states within the process level. Thanks.
0 1311
04/13/2012 12:44 PM
1 Replies and 1330 Views Security Checking tab  1330  1 Started by  Deleted User Within Lawson Security, I'm trying to turn on Lawson Security for one particular data source.  The only way to do that is if I change the default level access.  Is this normal or am I forgetting something
1 1330
by  Deleted UserJump to last post
04/12/2012 10:29 AM
2 Replies and 2087 Views Copy security class from one profile to another profile  2087  2 Started by  Deleted User Is there a way to copy a security class defined in one profile over to a new profile without having to recreate the security class and all of its access
2 2087
by  Deleted UserJump to last post
04/09/2012 2:50 PM
1 Replies and 1779 Views Curious rule-writing, impressions  1779  1 Started by  Greg Moeller When I define unconditional access to a form, HR11.1 for example...  I was expecting the A, C, D buttons to disappear.  Is this not the way that LSF security works I get security violations when I try to do any A, C, or D actions, but the buttons still show. PA16.1 is another example.  Same symptoms.
1 1779
by  Jimmy ChiuJump to last post
04/09/2012 10:23 AM
2 Replies and 2017 Views Defining rules in Lawson Security  2017  2 Started by  Deleted User When I try to add some rules to a security class in Lawson and click Apply, I get the following error message: 'A call to the server has timed out.' How do you fix this error  I have to get out and go back into Lawson Security every time.  Any help would be appreciated.
2 2017
by  Jimmy ChiuJump to last post
04/02/2012 8:48 AM
0 Replies and 1136 Views Script to add rules to a security class  1136  0 Started by  Deleted User Has anyone developed an automated process of adding rules to a security class within Lawson Security  If so, how did you do it
0 1136
03/30/2012 3:48 PM
1 Replies and 1723 Views HR13 - view all/update one field  1723  1 Started by  Karen Sheridan Benefits would like to secure HR13 such that the data is visible but only one or two fields will be available for change; no adds and no deletes The active flag is the field in question.   I'm looking for an approach that doesn't require touching all fields if that is possible. On the form, you have to grant update at the token level (HR13.1) right  So, to remove update for all the other fields would require touching all the rest.   Does it work the same at the ta...
1 1723
by  Dave AmenJump to last post
03/26/2012 4:25 PM
2 Replies and 2029 Views View Only - All Process Leves  2029  2 Started by  ErikO We primarily use Process Level Security, in LS, and most of our HR/PR users are limited by a process level, or range of process levels.  In our setup, Process Level is baiscally a company.  We need a way (with one login) to allow an HR user, who is restricted by a process level range, to see limited, specific data on all employees, across all process levels.  We need this in order for HR to view potential transfers, employment history, validate they are current or past emp...
2 2029
by  Wade-TJump to last post
03/23/2012 8:30 AM
1 Replies and 2283 Views Implementing Lawson Security by yourself  2283  1 Started by  Deleted User Has anyone implemented Lawson Security on their own without the help of consultants  If so, how long did it take you  What was your experience like
1 2283
by  Greg MoellerJump to last post
03/21/2012 1:45 PM
1 Replies and 1208 Views Profile Management  1208  1 Started by  Jay2 I am trying to delete a profile because is was inadvertently set up a RM instead of ERP. I keep getting the error Profile is currently being used by product lines {1}. Cannot delete. this is on our test box so I am not worried about losing anything. there are no security classes set up for it and the security is turned off on the profile.
1 1208
by  Jay2Jump to last post
03/13/2012 12:04 PM
14 Replies and 2117 Views Company Level Security Restriction  2117  14 Started by  Greg Moeller We've been tasked to implement company level security to an already existing LSF9 security setup.  We are taking on a different hospital, and now need their data to be separate from ours. What's the best way to do such a feat  I'd prefer not to have to go into each and every security class and write more rules. Any way to use the CompanyControl attribute of RM to do this  Who's willing to share an example Thanks in advance, -Greg
14 2117
by  Greg MoellerJump to last post
03/13/2012 10:27 AM
3 Replies and 3208 Views Security Classes  3208  3 Started by  New User Hi Gurus! I would like to know where and how should i find all security classes. I need this to create rules. Thnaks
3 3208
by  New UserJump to last post
03/01/2012 3:11 AM
1 Replies and 2835 Views Switching an environment from ldap bind back to local password administration  2835  1 Started by  marcterry We have a requirement to change an environment from ldapbind to local password admin.  All of our 9.0.n environments are currently bound to AD for authentication.  If anyone can please offer some advise it would be appreciated.  I can't seem to find any information on switching back. Thanks, Marc
1 2835
by  John HenleyJump to last post
02/13/2012 9:51 AM
2 Replies and 1854 Views LS Security methodology/philosophy question  1854  2 Started by  dcaiani We are kicking around two different schools of thought as we start the migration from LAUA to Lawson Security.    The first is to take a functional area such as AP and build a single role that gives access to every token, table, etc that anyone in the company could ever have a need for in AP.  From there each person who gets that role would have security overrides for the tokens, tables, etc. that they don’t need.  So in a sense you would take away AP195, AP155, etc ...
2 1854
by  Dave AmenJump to last post
02/03/2012 10:22 AM
3 Replies and 1993 Views GL45 Security  1993  3 Started by  Mike Flynn I have tried writing a rule on GL45 so that users can only see their own transactions (operator) equal their user id.  This denies them access to all data.  I did write a rule on the GLCONTROL limiting the same thing so it prevents drill around on others transactions. However, I don't even want them to see 'others'.  Any ideas  I've tried (userid and employee id are the same here): if(form.SEL_OPERATOR==user.getEmployeeId())    'ALL_ACCESS,' else   ...
3 1993
by  Mike FlynnJump to last post
02/01/2012 8:03 AM
8 Replies and 2568 Views Conditional rule to address security location on employee record  2568  8 Started by  Alex Shklovsky I'm trying to write a conditional rule on HR11.1 to restrict users from accessing employee records based on security location(SEC_LOCATION).  Here is what I got so far  if(trim(getDBField('EMPLOYEE', 'SEC_LOCATION', form.EMP_COMPANY, form.EMP_EMPLOYEE))== 'OCE' || 'OCEDRE' ) 'ALL_ACCESS', else 'NO_ACCESS' OCE and OCEDRE actual security locations attached to an employee record that user can see. Getting security violation on all records. I'm new to LS. What I'm doing wron...
8 2568
by  ForkJump to last post
01/13/2012 9:24 AM
8 Replies and 3601 Views LS Security--Secure Print Manager in Portal  3601  8 Started by  JimIII Help!  I need to be able to limit users to their print manager only. We are on a Windows platform and I wrote a rule on Element UserName in batch security class in GEN. Username==user.getHotServiceId()    All Access else No Access. Unfortunately this must not be right as I then get a security violation trying to access my own print jobs. Any suggestions would be greatly appreciated. Thanks, Jim
8 3601
by  JimIIIJump to last post
01/12/2012 10:08 AM
2 Replies and 2492 Views Advice to move from LAUA to Lawson Security  2492  2 Started by  Deleted User Been reading the various forum items and WAS leaning toward the fastrack templates, but not so much anymore. We only have approx 50 bus users for GL & HR and 1500 EMSS users. Is there a current way in lawson to see what forms our users have been accessing I hope to hire a consultant to handhold, but will I incur other expenses such as a listener program or pre-built templates
2 2492
by  Roger FrenchJump to last post
01/11/2012 8:33 AM
5 Replies and 1999 Views Test for Blank User Attribute  1999  5 Started by  Rick Pearl How do you test for a user attribute that is blank/empty I have tried user.getAttribute('ProcessLevelControl') == ''  and trim(user.getAttribute('ProcessLevelControl')) == '' Neither of which work. If anyone knows the trick, I would appreciate it. thanks!
5 1999
by  rogowskyJump to last post
01/09/2012 3:01 PM
12 Replies and 4031 Views Lawson Security 9 (ADAM)  4031  12 Started by  RickyY Have anyone tried extract data out of ADAM (lawson security) I'm trying to extract data out from it and into table. Any ideas or help will be greatly appreciated. Thanks.
12 4031
by  RickyYJump to last post
01/05/2012 5:22 PM
15 Replies and 3659 Views USERGRPDEF  3659  15 Started by  Jay2 When adding a new user to a user group. I type USERGRPDEF I then enter the user group I want to add the new user to. at the beginning of the list I hit F8 to insert a blank slot and then I hit F4 to get the list of users to choose from. Does anyone know where this list populates from  I checked the users in LAUA but the lists are different.
15 3659
by  Jay2Jump to last post
01/03/2012 9:53 AM
10 Replies and 4247 Views Lawson Security timeout after new install  4247  10 Started by  John Costa Hey folks, I'm hoping a Lawson Security guru can help me out here. I'm in the process of building a new environment based on the following: Windows Server 2008, 64-bit LDAP:  Microsoft AD-LDS (residing on the same server) IBM WebSphere 7.0.0.19 Lawson Core Technology 9.0.1.9 At this time, the only components that have been installed is the Core Technology and the Security Administrator application.  I'm trying to log into the Security Administrator for the first time.&nb...
10 4247
by  John CostaJump to last post
12/30/2011 2:04 PM
2 Replies and 1687 Views limit report option on Ap210 vemdor Lisitng  1687  2 Started by  John Crudele We are on LS Security Can you limit the Report Option parameter  for AP210 through LS Security You can run the report as Basic, Summary and Expanded. We want to not allow the users to choose Expanded. Any help would be appreciated Regards JC
2 1687
by  John HenleyJump to last post
12/07/2011 9:53 AM
0 Replies and 1396 Views LS archiving  1396  0 Started by  Al In order to keep the LSAUDIT table from growing too large it is recommended to archive security every now and then. I am wondering if anyone has a best practice as to how often to archive. Quarterly, twice a year, etc Any advice would be helpful. Thanks.
0 1396
12/05/2011 10:19 AM
6 Replies and 3154 Views LAUA security to custom table  3154  6 Started by  ISO Dan I have created a custom table  which has cost center as a field.  I want to create a security class so that only people assigned to the cost center can view their data.  For example I have a header table with a field called Cost_Center.  I have created a security class called CC123, when I use record level security I have Coster_Center = '123' however when I view the data I can still see everyones' data.  Does anyone know how to set this up or ...
6 3154
by  ISO DanJump to last post
11/21/2011 8:27 AM
5 Replies and 1871 Views RM Information  1871  5 Started by  KerriR Does anyone have or know where I can get some documentation that tells me what each field on the 'edit RM information' screen is used for&160; We recently upgraded our environment to 9.0.1.5 and I noticed there are some new fields and some fields were taken away.&160; I would like to know if I could be using these fields for something useful.
5 1871
by  Greg MoellerJump to last post
11/09/2011 4:29 PM
4 Replies and 2484 Views Who owns LS9 Security Maintenance  2484  4 Started by  Brian Veldhouse Who maintains the LS9 security in your organization  Does anyone have it maintained by one of the end-users  If so, is it one person per suite
4 2484
by  Robert C. LingleJump to last post
11/01/2011 9:38 AM
4 Replies and 5598 Views lawson security smoke test  5598  4 Started by  Richard J Sculpher I am trying to run the Lawson Security smoke test on a new build. I am getting the following message when I sign in through the SSO, in fact as long as I use a valid userid any password will produce it: <xml version='1.0' encoding='ISO-8859-1' > - <ERROR> <MSG>Could not convert LSF Identity (null) to LM Identity.</MSG> </ERROR Has anyone any experience of this error message As part of the build I have loaded LDAP data exported from another environment...
4 5598
by  Richard J SculpherJump to last post
11/01/2011 8:35 AM
1 Replies and 2019 Views LS9 Security String Functions  2019  1 Started by  Rick Pearl I am new to Lawson Security and I am surprised by the lack of basic common string functions available for use in rules.  Functions like len() and instr() for string length and position of a string within a string. There is an instr() function but it only returns a boolean if the search string is found.  I am trying to parse the parts of a Accounting Unit using substring and due to the fact that some accounting units are ww.xxxx.yyzzzz and some are ww.x.yyzzzz and some&nb...
1 2019
by  John HenleyJump to last post
10/28/2011 9:17 AM
3 Replies and 1398 Views Securing LS Role Granting/Taking Away  1398  3 Started by  Roger French Greetings: I'm creating some advanced security roles within LS Security, specifically for other security administrators. I've successfully secured the granting of specific roles in the ROLE attribute, which means that for users with this role, they cannot see or grant specific roles for other users within those users' security profile. Example: My advanced security role is called 'SpecialAdminRole'. I also have a role called 'BenAdminRole'. If I give SpecialAdminRole to Joe, then whe...
3 1398
by  Nathan SmithJump to last post
10/14/2011 10:02 AM
2 Replies and 2656 Views tknsecrpt - Where are valid FCs for a Form stored?  2656  2 Started by  Eric Haugen Both tknsecrpt and secrptbtch show the UNsecured FCs by form by SecClass. I'm guessing they do this by listing the valid FCs for the form  minus the Secured FCs in USERSCR. In order to do this, the valid FCs for each form must be known. I can't find these in the GEN database. Where are they coming from The TranMaps for each form Am I missing a table somewhere. Is scrgen updating a table not in Gen Thanks. Eric 
2 2656
by  Nathan SmithJump to last post
10/14/2011 9:48 AM
20 Replies and 5577 Views Who Can See This Form?  5577  20 Started by  Jonas We have had several instances where for whatever reason we needed to know who had access to a particular form (or securable object) under LSF9. To that end I wrote a simplistic windows app that connects to the LDAP and backtracks from securable object all the way up generating a list of security classes, then roles, and finally users who have access to a particular form. It's not the best code ever, but it gets the job done.  I haven't seen anything else that does this. I'd be happ...
20 5577
by  rogkeeJump to last post
10/13/2011 3:26 PM
1 Replies and 3286 Views LSF9 Form/user Security tables  3286  1 Started by  rogkee I know there is the User Security Report in Lawson where you can choose objects and it shows who has access to them, but our auditors want to be able to run adhoc queries about various forms and at various times to find out everyone who has access to a specific form. For 'auditing' reasons, they don't want this done from the internal Report by a Lawson administrator, they want to do it themselves. My question is what files would I need to hit in a query to gather this information An examp...
1 3286
by  John HenleyJump to last post
10/13/2011 2:59 PM
2 Replies and 2057 Views HR11 secured EEO-CLASS but not description  2057  2 Started by  msjmg111 I denied access to EEO-CLASS (Ethnicity) in HR11 and on PAEMPLOYEE but I'm still seeing the description on HR11.  The field is blocked, but it still shows the description to the right of the field.  Where is that located (so that I can get it blocked) or how do I block it from view
2 2057
by  Karen PloofJump to last post
10/07/2011 4:09 PM
1 Replies and 2186 Views securing drill around and select  2186  1 Started by  Deleted User I saw a tip about securing access to only the employee's data, but I'm not getting it correct.  (Below is the code I am looking at). I want to limit the employee to only be able to drill around / selects only on his own data. 1.  I thought that I needed to put this on the employee table,  then I tried the employee field itself - Still no luck.  The employee can select anyone and drill around on anyone. 2.  in the object - user   what is in getEmployeeID...
1 2186
by  Roger FrenchJump to last post
10/06/2011 10:01 AM
5 Replies and 2405 Views Secure Drill Around On Select/Drill Around Window.  2405  5 Started by  Brad Using Design Studio we have been successful at removing the Drill Around ability on a few of our forms that a specific set of employees use.  But when they select that field and the Select Window (its actually titled as 'Drill Around -- Webpage Dialog') still allows employees to Drill Around on any record in the window.  Better Example.  Using Studio we have removed the Drill Around Option on HR11.1 on the Employee field.  When you right click on the field it no longer displ...
5 2405
by  Srini RaoJump to last post
09/27/2011 10:18 AM
0 Replies and 1708 Views laua element security -- needing help  1708  0 Started by  Chris Fairly new to lawson and laua, so bear with me...please...  We are wanting to implement drill-around security, and I've found many resources that explain the process.  We use laua (not lawson security), and if I understand things correctly, if I apply security at the element level, we can block all fields defined by that element in a product line -- exactly what I want! Here is my dilemna, I'll use a single example.  I want to prevent users from seeing the Social Security numbe...
0 1708
09/22/2011 11:49 AM
1 Replies and 1733 Views Security Warning on IE8  1733  1 Started by  Steven Help! Lawson Portal login page gives the following warning message Do you wan to view only the webpage content that was delivered securely Background:  Upgraded environment from 9015 to 9018.  Noticed queries in ESS is extremely slow.  Problem is likely a new version of lawsec.jar.  Lawson support recommeded uninstalling the offending patch.  Performance in ESS no longer an issue but getting the annoying warning message every time.
1 1733
by  Jimmy ChiuJump to last post
09/20/2011 1:41 PM
0 Replies and 1114 Views Multi Productline Environment - LS  1114  0 Started by  KB Our test environment has multiple productlines.  Is there any way for us to share a profile so we don't have to have duplicate security on another profile
0 1114
09/13/2011 12:05 PM
13 Replies and 6480 Views Report for Security Role on User Profile  6480  13 Started by  Deleted User The Profile Report out of laua's F7 command doesn't provide a technically-friendly output to be able to identify all users who have the Security Role of Admin. Does anyone know the tables this information is stored in (LSF 9.0 - 8.1 security ) Short of Perl scripting the User Profile or an excel macro, I'm at a loss.
13 6480
by  Kwane McNealJump to last post
09/08/2011 9:10 PM
3 Replies and 2285 Views Laua: Security Class  2285  3 Started by  LF I a new to LAUA security.  Does anyone know how to compare to diffenent security classess and show the difference between the two besides doing the tknscrpt 
3 2285
by  John HenleyJump to last post
09/07/2011 8:03 PM
4 Replies and 2413 Views MSS Rule on Employee table  2413  4 Started by  msjmg111 We are working on writing rules for the Direct Reports link in MSS.  We've had ESS in for some time and my rule writing is a bit rusty, so I would appreciate any help with MSS.  I loaded the MSS delivered template and the rule for the Employee table  - if(user.isSupervisorOf(getIdFromEmpNbr(lztrim(table.COMPANY),lztrim(table.EMPLOYEE))))'ALL_ACCESS';else'NO_ACCESS'.  When I try to access one of my direct reports I get an error retrieving database records.  The ...
4 2413
by  BarbLRJump to last post
09/07/2011 3:33 PM
2 Replies and 2733 Views Security - Schema/Table  2733  2 Started by  Jose Hello, I would like to know if anyone knows the schema/table for Lawson Security Group nad Roles.
2 2733
by  John HenleyJump to last post
08/24/2011 12:01 PM
1 Replies and 1574 Views You cannot transfer directly to this form error - any ideas?  1574  1 Started by  CindyW We use LAUA, and just upgraded from 8.0.3 apps to 9.0.1.3. (env is now 9.0.1.8), and so far we've had very few issues.  However, I am unable to resolve one issue.  I have a security class that has limited access to just a few screens.  We have a problem that where the users in this class alone, are unable to access the PA16 form. When they do, they get this message:  PA16.1: You cannot transfer directly to this form... Every other class t...
1 1574
by  Jimmy ChiuJump to last post
08/09/2011 8:15 AM
4 Replies and 4549 Views Looking to create users using SSIS and DirectoryServices (VB)  4549  4 Started by  EBassett Has anyone successfully used SSIS and DirectoryServices (VB) to create user accounts I have written similar code to create users in Active Directory, but I get errors when doing the same for Lawson Users. I can modify existing Lawson users but get an error when doing the add. The error is thrown on the newUser.CommitChanges() command. it is COMException (0x80072035) which when I look into states is because the password is not set, but if I try to set password first it throws a different e...
4 4549
by  EBassettJump to last post
07/26/2011 10:35 AM
12 Replies and 8375 Views Employee Self-Service under Lawson Security  8375  12 Started by  John Costa Has anyone successfully implemented Employee Self-Service under Lawson Security I ask because I am running into headaches trying to set up the correct access to the tables and forms behind each link.&160;&160;I've been using the technical documentation for the Employee and Manager Self-Service application but it really provides nothing more than a starting point. For example, for the ESS&160;link 'Payment Modeling', the technical documentation indicates that I need to provide access to...
12 8375
by  John HenleyJump to last post
07/25/2011 12:55 PM
6 Replies and 1643 Views Newbie to advanced security writing needing help!!  1643  6 Started by  Ronnie Ok, This is probably my first official post on the forum, but I have run into something that is a little more in depth than my security skill level currently resides at. Here is the situation: We are using the new lawson RQC (requisition center...former RSS) and within the shopping area on the accounting tab there is a field with a drill around called 'Activity' I am told that this pulls its info from AC10. We are wanting to limit the drill around info to certain data for cert...
6 1643
by  RonnieJump to last post
07/20/2011 7:20 AM
6 Replies and 3140 Views Autoprovision new Lawson Users  3140  6 Started by  Sarah We are in the process of identify the best way to auto provision new users to Lawson LS Security, and deprovision roles when transfers/terminations occur.  We are ldap bound, and would like to utilize either PFI or an ldap provisioning tool (CA/FIM/etc). How have others resolved this issue  What tools did you use  Thanks!
6 3140
by  JeffRJump to last post
07/19/2011 4:56 PM
0 Replies and 1254 Views Usergroup  1254  0 Started by  Jose Does anyone know how to restrict users from being able to view other users other than those defined in the usergroup from accessing jobschedule and printmanager. Ex..if you are in HR, you should only be able to view users within HR when selecting from the dropdown within jobschedule or printmanager.
0 1254
07/15/2011 12:50 PM
0 Replies and 1151 Views Security to be setup to allow user to drill around in Asset Template in RSS  1151  0 Started by  Saurabh Hi We are testing the Asset Module and the process of linking a Asset Template in the RSS. I have tried to setup security as much as i can think of but still when i click on the Drill Around in Asset Template in RSS i do not see any of the templates. The templates are not setup compamny specific - so should be availaible to all users have attached screenshot of what i have given with respect to security - can anyone help to point the missing setup thanks Saurabh
0 1151
07/14/2011 9:01 AM
0 Replies and 1221 Views Company Table Security  1221  0 Started by  KB Trying to determine what the best way to do global table security.  Element rules appear to block access to another company from the screens but Add-in users can query other company data. Do I have to add company criteria in my table access rules Any assistance would be appreciated.
0 1221
07/12/2011 12:23 PM
2 Replies and 1533 Views ESS LS  1533  2 Started by  KB We are troubleshooting our ESS LS rule and are having a problem with a DME call.  On the table we have tried to secure we have a conditional rule as follows... if(user.getEmployeeId()==table.EMPLOYEE)    'I,' else    'NO_ACCESS,' We are trying to lock the table down so they can only see their own data.  A DME call against this same data returns 0 results.  Shouldn't this rule work 
2 1533
by  John HenleyJump to last post
07/06/2011 10:01 AM
6 Replies and 1396 Views USERNAME change due to marriage ETC, in LSF9 Security to include LDAP  1396  6 Started by  Deleted User How do I change the userid for a user who has married, divorced, etc
6 1396
by  Greg MoellerJump to last post
06/29/2011 1:52 PM
2 Replies and 1359 Views LSF9 Security on Add-ins  1359  2 Started by  jzetting We are testing a new attribute in LSF9. It appears to be securing the correct records in the portal but when you run an add-in with that same username, the query shows all records and doesn't secure. What am I missing
2 1359
by  Roger FrenchJump to last post
06/29/2011 7:52 AM
0 Replies and 1681 Views Lawson function to read table  1681  0 Started by  RobertL I am trying to process the RQACCTU table with accounting unit records to match ICLOCATION table with requesting locations. I think a loop process is better than if/then/else to read and process the tables. Do you know any Lawson functiion that can work on this Thanks.
0 1681
06/27/2011 11:51 AM
3 Replies and 1820 Views Company Control  1820  3 Started by  KB I am wondering if anyone has developed any Company Control security rules and would be willing to share an example of a rule that has been written using Company Control. Thx
3 1820
by  Jimmy ChiuJump to last post
06/27/2011 7:47 AM
7 Replies and 2879 Views Windows NTFS app server security for a Unix-to-Windows conversion  2879  7 Started by  George Hi. New to this LawsonGuru forum, newbie to Lawson (been around a long while doing Windows server admin). I am not a Unix admin. Our organization is converting from Unix/Oracle Lawson S3 (LSF v9.x) to Windows2008R2/MsSQLserver (LSF v9.x). Having some issues with proper NTFS security. Microsoft Subsystem for Unix Applications (Ms-SUA) is, of course, installed as a Windows Server role for our Lawson application server. Been reading up on mapping Unix to NTFS permissions. And a...
7 2879
by  Jimmy ChiuJump to last post
06/24/2011 11:07 AM
0 Replies and 1262 Views Calling RQ04 to match Accounting Unit  1262  0 Started by  RobertL Anyone familiar with global function getidFromRequester I am trying to use the RQ Files Securable Type in Lawson Security Administrator to set up access rule calling RQ04 to match the ACCT-UNIT (Accounting Unit in RQ04 . Thanks.
0 1262
06/23/2011 3:14 PM
0 Replies and 3110 Views DSSO Logout Redirect to Portal  3110  0 Started by  pianoman We have DSSO setup for Lawson Budgeting and Planning.  When we hit the logout button in LBP it redirects us to the Portal Login Screen.  We would expect/like it to return to the LBP login screen instead.  Any ideas
0 3110
06/23/2011 1:54 PM
7 Replies and 1534 Views AR115 - EFT Files and Required Permissions  1534  7 Started by  Garth Gerwing We are attempting to test the AR EFT process(s) - and are running into an issue whereby the EFT payment file(s) are being created - but are empty (0KB) where there should be data written. We setup the 3 required directories under productline\work\ - as the job required these be present before exeucting. Upon closer inspection of the job log - we noted a 'Security Violation' line being written. Anyone have any ideas as to what might be the issue here
7 1534
by  Garth GerwingJump to last post
06/22/2011 11:19 AM
6 Replies and 2488 Views LSF9 - Lock Drill access  2488  6 Started by  Jose I'm new to LSF9 and trying to figure out how to restrict user(s) from drilling on 'employee' and viewing of social security.
6 2488
by  Karen SheridanJump to last post
06/21/2011 10:23 AM
4 Replies and 3056 Views online only users  3056  4 Started by  Deleted User I am trying to use the LSF security for a very simple class - The users will only be able to access one form.  I thought that I would not have to set up a UNIX account if the users were to use Portal only and only an online form, but so far no luck.  I get this that says 'portal cannot load because the profile service returned an error'.  ANy ideas where to start looking
4 3056
by  Deleted UserJump to last post
06/14/2011 11:33 AM
3 Replies and 1235 Views Securing Identites  1235  3 Started by  Roger French Good morning, Has anyone found a way to secure Service Identities in security administrator I'm setting up security for other sec admins and I haven't been able to find a way of security the identities. I've looked far and wide but nothing yet. Lawson is also saying it can't be done. Really  Ok, anyone have any ideas Thank you in advance, Roger
3 1235
by  Kwane McNealJump to last post
06/06/2011 9:01 AM
8 Replies and 2525 Views Delete a Role in LSF9  2525  8 Started by  TBonney Can a single role be deleted from multiple users in LSF9, without impacting any of the other roles, groups, etc. that are assigned to these users We have a role that was created and assigned to several hundred users previously. However, due to changes made since then, this role is now obsolete and unnecessary so we'd like to remove it from all users. However, we do not want any other changes to be made to these users. Any ideas Thank you.
8 2525
by  TBonneyJump to last post
06/02/2011 7:18 AM
0 Replies and 1147 Views How to manage Lawson licenses  1147  0 Started by  RickyY I was wondering and would like to know how everyone is managing their application/users licenses with Lawson Security 9 Any ideas would really help. Thanks. Neng
0 1147
06/01/2011 11:40 AM
2 Replies and 2252 Views HR11.1 tab security  2252  2 Started by  Deleted User We are on LSF9. We have a section of HR employees who currently have view only access to HR11.1.  I've been asked to provide them with full access to only one tab (Work Tab).  Current HR11.1 conditional rule: if (user.getCompany()==form.EMP_COMPANY)&&(user.getEmployeeId()==form.EMP_EMPLOYEE) then ,-,I,N,P ElseIf     (user.getEmployeeId()!=form.EMP_EMPLOYEE)&&isElementGrpAccessible('PROCLEVEL','','HR',form.EMP_COMPANY,form.EMP_PROCESS_LEVEL) th...
2 2252
by  GregSlJump to last post
05/31/2011 11:10 AM
5 Replies and 1531 Views Revisiting Company Level Security  1531  5 Started by  Greg Moeller I see the previous thread posted on Company level security, but would like some more clarification/revisit. We have had no luck here trying to get company level security to work, and now we are going to be bringing on another company and trying to fold them into our existing LS security. Although setting up the new company shouldn't be difficult, they shouldn't see anything but themselves...  there will be existing users here that will also need access to the new company.  I'd li...
5 1531
by  Greg MoellerJump to last post
05/27/2011 2:12 PM
1 Replies and 1384 Views Upgrading from 9.0.0 to 9.0.1  1384  1 Started by  TBonney We're planning to upgrade everything from 9.0.0.x to 9.0.1.x. (environment, applications, security, etc.) Are there any tips/tricks anyone who has already made this leap can provide, as it relates to converting Security from 9.0 to 9.0.1 We're on LS9 security, but are not LDAP bound. This too is something we'd like to do, but assume it would be best to do it after the upgrade, not as part of the upgrade. I'm not sure this factors in at all, but we're also upgrading the O/S at the same time t...
1 1384
by  Roger FrenchJump to last post
05/23/2011 12:39 PM
3 Replies and 1332 Views RSS Receiving  1332  3 Started by  Karen Sheridan Sorry - this is somewhat of a cross-post We would like to limit who can receive in RSS, but allow all RSS users access to the receiving page because of the other imformation provided on that page including PO information. Is PO30 the backoffice form for this  Our RSS security class doesn't have PO30 access, but users are receiving that shouldn't.  Any help would be appreciated. Thanks, Karen
3 1332
by  Karen SheridanJump to last post
05/23/2011 10:40 AM
1 Replies and 1399 Views Security Administrator Locks Up  1399  1 Started by  Woozy We are having a heck of a time with Security Administrator locking up on a regular basis - like every couple of times we try to change something.  We've been having this issue for some time under LSF 9.0.1.4, but we recently upgraded to LSF 9.0.1.7 and the latest version of SecAdmin and now the problem is even worse. We've contacted Global Support, and didn't get much help. Does anyone have any solutions or suggestions Thanks!
1 1399
by  Greg MoellerJump to last post
05/18/2011 10:59 AM
1 Replies and 1714 Views How to change user ID to run Law9 system?  1714  1 Started by  Huizong Hi, Our Lawson 9 system is LSF 9.0.0.6 and APP 9.0.0.7 on IBM iSeries and the subsystem is LAW9. Now the user ID to run LAW9 system is LAWSON. I would like to change the user ID from LAWSON to LAW9. Would anyone know how to change the user ID which was used to run Law9 sub system Thanks a lot. Huizong
1 1714
by  Jimmy ChiuJump to last post
05/10/2011 12:27 PM
0 Replies and 1418 Views S3 LAUA Security - User Groups  1418  0 Started by  Ryan Speight We have a user assigned to a service account which runs recurring 100 level (update) jobs for AP; lets call the service account SERVICEACCT.  Other Lawson users have access to the SERVICEACCT jobs because they are in the same LAUA User Group.  Is there anyway to prevent users who are in the same LAUA User Group as the SERVICEACCT user from recovering update jobs that have gone into needs recover or is my only option removing them from the User Group Your help is greatly appreciated.
0 1418
05/09/2011 5:56 PM
8 Replies and 2645 Views LSF9 Security along with HR Data Security  2645  8 Started by  Kartik I have set up LSF9 security in HR with TRAdmin Role (for Training Administrator) and appropriate security class with restrictions on HR11 (cannot view SSN, pay rate etc). Since I am migrating from LAUA, there is already the existing HR Data and User security set up in HR09, HR10 and HR12. I find that the HR Data security completely overrides the security rules set up in the security class. For instance, if I deny access to view SSN in the security class, but the appropriate security level in HR0...
8 2645
by  Mark PetereitJump to last post
05/01/2011 5:24 PM
To join the discussion you need to register first. (Registration is free!) If you are already a registered user please login to join the discussion.
Page 3 of 6 << < 12345 > >>


RSS Feed Available