Search this forum:
Search
To join the discussion you need to register first. (Registration is free!) If you are already a registered user please login to join the discussion.
Page 4 of 6 << < 23456 > >>
Topics
 Replies
 Views
 Last Post
2 Replies and 1346 Views Moving os users from Unix to Windows  1346  2 Started by  msjmg111 We are moving from Unix to Windows and am looking for a quick () way to load online/batch users into the gen database (i.e. convert the UID's to NTxxxxxxx).  If anyone can give me some help with this, I would truely appreciate it.
2 1346
by  Kwane McNealJump to last post
04/19/2011 12:33 PM
3 Replies and 1330 Views Combo Roles ESS MSS w LS9 Security  1330  3 Started by  Margie Gyurisin We just discovered that if we give a manager both the MSS and ESS role, they are able to drill back to information on their direct reports that they should not be able to see. Example: With MSS role only, they do not see dependents. When ESS role is added they do even though the EMDEPEND table has this conditional rule on it. if(isElementGrpAccessible('COMPEMP','','HR',lztrim(table.COMPANY),lztrim(table.EMPLOYEE))) { 'ALL_ACCESS,' } else { 'NO_ACCESS,' } Any help you can provide wou...
3 1330
by  Jimmy ChiuJump to last post
04/19/2011 10:46 AM
4 Replies and 1440 Views Field level unconditional rules not working  1440  4 Started by  Kartik I was testing my security set up at my client. I find that I cannot get my field level rules to work on any form. For example, If I want to deny access to Pay rate in HR11.1 or inquiry only access to Vendor Name in AP10.1, the unconditional rule does not work on their server. However, exactly the same rule works in another environment. Has anyone encountered similar issue. Is this a technology patch issue or am I missing something
4 1440
by  AlJump to last post
04/19/2011 7:27 AM
5 Replies and 3944 Views Securing Portal Drill around  3944  5 Started by  msjmg111 We would like to remove access to the drill around button on a form in portal.&160; First, is that possible in LS9&160; We are trying to secure ESS and found an issue where a user was able to get access to other people data by drilling on the employee number.&160; We are working to close that hole, but it led to a discussion on the possibility of removing their ability to even select drill around.&160; Can anyone help me with this
5 3944
by  BarbLRJump to last post
04/13/2011 12:55 PM
0 Replies and 1373 Views hard coding generic user id and password for auto log-in  1373  0 Started by  Jess O. I need to set up a screen that users can access without logging in. This screen would use data transactions (dme) to display non-confidential information. I am trying to figure out a way to pass in a hard coded user id and password (this would be the same user/password for everyone that accesses the screen) then perform the data transaction. Does anyone know of a way to do this   I have tried using jsp and the lhc.jar but am running into a “HTTP Error 405 - The HTTP verb used to a...
0 1373
04/12/2011 6:03 PM
5 Replies and 1822 Views Mass Load Roles  1822  5 Started by  Jose Hello, I am trying to figure out how to mass load roles to each ESS users. Going to each user and adding these roles is very time consuming and was in search of finding a faster way of doing this task. Also, is there a way to have roles, prodline, and CheckLS set as a template so when a new user is added, we dont have to bother with adding roles, prodline, checkLS.
5 1822
by  JeffRJump to last post
04/12/2011 5:31 PM
2 Replies and 1452 Views getDBField question  1452  2 Started by  Al We have some user fields in the Billing and AP modules where staff is entering numeric client ID’s for one of our divisions. Problem is we have run into a data quality issue where users are entering invalid ID’s. I want security to allow form change action only if the user field is blank or if the value in the user field matches a valid client ID.   The data entered into those user fields should match a valid client ID in a custom Lawson table we have created called ...
2 1452
by  AlJump to last post
04/04/2011 7:45 AM
5 Replies and 2915 Views Company/Accounting Unit Level Security  2915  5 Started by  terrig I am fairly new to Lawson Security and we have received a request to set up an additional level of security in HR11. We would like to be able to set controls at the Company/Accounting Unit level.  We have several companies and within each of those we can have the same Accounting Unit number.  I have not been able to find anything on how to utilize the combination Example: Co 100 AU 4350 Co 300 AU 4350 Co 870 AU 4350 Any suggestions would be appreciated.
5 2915
by  JesseJump to last post
04/01/2011 12:13 PM
2 Replies and 1344 Views Add new Securable Type for Executables  1344  2 Started by  Roger French I have a requirement where I need to add a new Securable Type within Security Administrator. For example in the ENV profile, I see a Class called TransITools, with rules which secure environment executables such as listed under the System Administration: appinst, autoinst, and so on. I want to add a brand new tree under the Securable Types/Executibles called 'Custom Scripts' for example, along with existing (custom) scripts or html files located on Lawson. Then of course, I want to have the a...
2 1344
by  Roger FrenchJump to last post
03/29/2011 11:55 AM
1 Replies and 1306 Views Dump Groups from RM  1306  1 Started by  msjmg111 I'm creating a new LSF environment and need to dump and load GROUPDATA.  Can someone tell me where are groups stored 
1 1306
by  Kwane McNealJump to last post
03/27/2011 1:54 PM
5 Replies and 1955 Views LS Security with HR11 Drill Around- wait time  1955  5 Started by  ThomasT I'm relatively new to LS Security and I'm building a new security class for HR users so that they can only see employees with the same user level. I built a new attribute in RM called 'UserLevel'.  I've read many of the postings regarding LS security so I'm familiar with some of the solutions. I've also read the security manuals too. I built a new ElementGroup called 'COUL' which contains Company and User Level Here is the rule of the element group 'COUL' on the new Security class...
5 1955
by  Roger FrenchJump to last post
03/18/2011 11:06 AM
3 Replies and 2327 Views GetDBField  2327  3 Started by  Jay2 I am trying to secure AP90.3 using the following rule: isElementGrpAccessible('EGProcLevelAP','','AP',getDBField('APINVOICE','PROC-LEVEL',form.API_COMPANY,form.API_VOUCHER_NBR)) When I check the log it shows that it is not returning the PROC-LEVEL value: 2011-02-28 15:08:06 com.lawson.lawsec.default.FINEST com.lawson.lawsec.author.runtime.JSRMFactory.getDBField()() input parameters: userId=Jeremy.Test dataSource=INTTEST tableName=APINVOICE fieldName=PROC-LEVEL keys=10, 174785, ...
3 2327
by  Jay2Jump to last post
03/01/2011 11:37 AM
11 Replies and 2918 Views Process Level Security and ESS Pay  2918  11 Started by  KerriR We have LS set up to restrict user's access (those who have access to more than just EMSS) based on Process Level using the element group PROCLEVEL.  The problem arises when an employee, who used to be in process level ABC, transfers to a new job and is now in process level DEF.  With this transfer, her access also changes and she is now restricted to process level DEF.  When she goes into ESS to look at her pay checks, her old pay checks are not visi...
11 2918
by  KerriRJump to last post
02/23/2011 4:17 PM
6 Replies and 4135 Views LS9 Default Roles VS Lawson Security Accelerator Roles  4135  6 Started by  JimIII We are new to Lawson with a go live date of early July. My question is: What are the default security roles that LS9 provides and are the practical to use for a 3500 employee company, Self Service, HR, Materials, Finance Or, would it be quicker and easier to set up with the Security Accelerator that we could purchase that my trainer in MN told us about, and what roles are included with it We had a crash course of 4 days and it seems that this could take quite a long time to setup and have it w...
6 4135
by  Guy HensonJump to last post
02/23/2011 12:00 PM
4 Replies and 1155 Views Inquiry Access for roles during a specific time  1155  4 Started by  Jose Hello, I have been approached to basically locked down anyone in HR during a certain time once every other week to avoid having any changes occur when payroll is processing. I'm quite new to security using LSF9 and just think there has to be a simple way of doing this. Any ideas anyone
4 1155
by  JoseJump to last post
02/16/2011 8:32 PM
2 Replies and 1270 Views Duplicating Data Level Security in LS for Co / AcctUnit  1270  2 Started by  Jake Miller In LAUA we use the Data Level Security (Company and Process Level) to specify Company ranges and Accounting Unit ranges for Financials security.  It works great.  Now, I need to duplicate this setup in LS.  According to Lawson, the only way to secure FB40.1 (Budget Journal Entry) to a specific Company and AcctUnit is to apply conditional statements to the form detail line fields. Element Groups only validate the first line and invalidate Next or Previous actions if the fi...
2 1270
by  Jake MillerJump to last post
02/04/2011 12:41 PM
6 Replies and 1831 Views Copy users to new environment  1831  6 Started by  JohnO We are running in windows and using ADAM as our ldap and I need to copy all the users from my existing production environment of 9.0.0.8 to our new 9.0.1.7 environment. Does anyone know how this can be accomplished The new 9.0.1 environment is on 2008 server with ADLDS and the old 9.0.0.8 environment is on 2003 server with MSADAM. I have over 1100 users and we can not just recreate all of them in the new environment. Any help you can provide would be great.
6 1831
by  JohnOJump to last post
01/26/2011 4:00 PM
20 Replies and 8570 Views LSF9 security, ESS, search box and restricting Drill Around  8570  20 Started by  Elizabeth Ardito We are implementing LSF9 security with the goal to have one user id for each employee.&160; If an employee has application access then through portal they will have a search box.&160; We are attempting to limit access to HR/PR and remove drill around access.&160; I have gotten this to work with the exception of the Wage Analysis drill around.&160; I have placed conditional security on the Employee table as a whole and have deny all access to all the salary fields and the Wage Anaylsis still ...
20 8570
by  JoseJump to last post
01/24/2011 4:10 PM
1 Replies and 936 Views LSF9 Sub Administrators  936  1 Started by  Greg Moeller Hi, all! We have a need to create sub-administrators to just have limited access to LSA.  Both the class that I took and the manuals mention creating sub-administrators, but neither of them go into ANY detail about doing so. I'm mostly interested to create sub administrators to assign groups and roles to already created users.  That is it!  Can anyone point me in the general correct direction Thanks in advance, -Greg
1 936
by  Greg MoellerJump to last post
01/10/2011 2:16 PM
14 Replies and 7086 Views LDAP Bind to new domain controller  7086  14 Started by  Wade-T We have a couple of domain controllers and Lawson isbound to one of them. This controller keeps failing and crashing and needs to be replaced.&160; I asked Lawson where thedocumentation was for changing my LDAPbind and they stated I needed to contact Professional services. How difficult is it to do Do I really need to spend $2**/hr with them WouldI be better off with someone like Ciber or Absolute (not a partner, but half the price and no issues when we used them in the past. Go Todd!) Two ...
14 7086
by  Wade-TJump to last post
01/04/2011 4:23 PM
2 Replies and 3085 Views Security violation on available programs  3085  2 Started by  Deleted User We have a strange issue occuring in production.  Our payroll users reported security violations when attempting to view alternative rates (HR14.1) from the HR11 screen.  The same users reported that some of the team members can run PR260 other team members with an identical security role recieve a security violation. Strange!  The lawson security object and user object report shows that the payroll team should have access to HR14 and PR260. It could be coincidence but I ran an ...
2 3085
by  LynnJump to last post
01/01/2011 5:40 PM
3 Replies and 1422 Views View only security  1422  3 Started by  Deleted User We have implemented Lawson HR/Payroll/TA and are using LS9 security. What is the easiest way to implement view only access to all the screens for audit purposes. I am trying to figure out a quick way to do this without have to create a security class for all the screens. Thanks, Usha
3 1422
by  Jimmy ChiuJump to last post
12/21/2010 12:42 PM
6 Replies and 3746 Views LSF9 - Strange issue with AC10.1 after going to 9.0.1.4 portal  3746  6 Started by  alincoln This one is a stumper for me, hoping someone else has seen this. For any of our LSF9 users, any time they go to AC10.1, they receive the following error: &160;com.lawson.ios.agent.SystemRuntimeException: 2009-07-22 09:18:27 : INCIDENT_ID1248275907899-0009 An error occurred outside of IOS while accessing Lawson Security &160;at com.lawson.ios.security.ls.LsSecurityRuntime.isTokenSecured(LsSecurityRuntime.java:803) This is just going to the program, not on inquire or anything else, ju...
6 3746
by  Rhonda CordesJump to last post
12/20/2010 11:16 AM
2 Replies and 1189 Views LDAP Failover/Loadbalancer  1189  2 Started by  mark.cook We are looking at implementing a solution for our LDAP that will failover or have a load balancer in place to avoid a single point of failure with 1 LDAP server. Is anyone using a failover solution or load balancer How is it working for you and is there any issues that you ran into with setting this up
2 1189
by  Jimmy ChiuJump to last post
12/13/2010 11:11 AM
0 Replies and 1095 Views CLASSDATASTRUCTURE and PROCLEVEL Security  1095  0 Started by  mrdey We created a CLASSDATASTRUCTURE to defice HR regions, then created the attribute 'Region' to assign to users.  Then we used 'PROCLEVEL' to define a conditional rule if(isStructNodeTitleAbove('ClassDataStructure',PROCESS_LEVEL,user.getAttribute('Region')))    'ALL_ACCESS,' else    'NO_ACCESS,' yet in testing, they are getting full access to all the regions not what is defined in their attribute.  ANy advise would be greatly appreciated
0 1095
12/10/2010 10:00 AM
0 Replies and 1354 Views Loadusers to modify users RM data  1354  0 Started by  mwilliamson Our users currently have a numbered RM account and a named RM account, we are ready to move to the numbered account only so we need to add their named RM info to their numbered account, items such as groups, roles, change to checkLS yes, email, portalrole, workflow user if they are an WF approver, and also created their requester identity, they already have an employee identity.  I have modified the ldusers.pl addiding the fields I need and the requester identity.  I am receiving lots ...
0 1354
12/08/2010 1:30 PM
0 Replies and 1196 Views Securing Archive Audit button in Security Administrator  1196  0 Started by  Rod Does anyone know how to restrict access to the Archive Audit button on the Audit  Logging page in Security Administrator We have a sub-admin role that we created and restricts them from everything but creating/modifying users, but they still have access to archive the auditing. I need to restrict them from having access to this function but I am unable to find any securable object to remove their access away from. The role has inquiry access to the Server page only and this still ...
0 1196
11/30/2010 11:09 AM
3 Replies and 2004 Views Asset Management data security  2004  3 Started by  wintergreen We used to have only one person taking care of Asset Management. Recently, we assign 2 people to process the AM and want to setup the data security, so that users can only access their own data.  I wonder if AM has similar process levels to limit users to access data  For example AM20, AM30, AM40, users can only add, transfer or dispose an asset in their own book (defined in the AM00).  Do I need to find out which field I nee...
3 2004
by  wintergreenJump to last post
11/09/2010 9:47 AM
3 Replies and 1389 Views Removing users with Requester Identity  1389  3 Started by  msjmg111 We need to clean up(delete) a large number of users with a Requester Identity and am looking for a simple, one time method of removal.  I do not want to delete the user, just the Identity.  Any advice on this topic would be appreciated.
3 1389
by  NickJump to last post
11/04/2010 5:49 PM
1 Replies and 1308 Views Add user in usergrpdef programmatically  1308  1 Started by  Nirav Bhatt We can add new user in user group definition manually using usergrpdef command. Does anyone know how can we add user programmatically in user group definition either through command line or through process flow
1 1308
by  ZekeJump to last post
11/03/2010 11:29 AM
1 Replies and 1338 Views Security Can getdbfields access a field in a related table?  1338  1 Started by  Anne I'm using this code to try to get the job class and it's not working.  Do I have the right syntax for the related field  Do I have to do 2 nested queries to achieve this if(trim(getDBField('EMPLOYEE','JOB-CODE.JOB-CLASS',form.REV_COMPANY,form.REV_EMPLOYEE))=='DIR')    'NO_ACCESS,' else    'ALL_ACCESS,'
1 1338
by  John HenleyJump to last post
11/01/2010 3:23 PM
0 Replies and 1132 Views Security rule to compare system date to a stored date  1132  0 Started by  ThomasT I want to write a rule in Security Administrator which compares the current system date to the HIRE DATE  from 'EMPLOYEE' table. I've tried various combinations of the rule functions but cannot get it. I know that the system date is stored in one format and the stored dates within the tables is in another format. Does anyone have any example of a rule they have used to write to compare the system date to a stored date (within any table)  T Thank you , Thomas
0 1132
10/25/2010 1:05 PM
1 Replies and 1674 Views LSF9 security by process level AND security location - is it possible  1674  1 Started by  RachelM We have been able to secure LSF9 using the element groups using either process-level or sec-location but not both; roughly what we're looking to do is ((process-level = 'X' and sec-location = 'Y') OR (process-level = 'Z')). Is that even possible using element groups Thanks.
1 1674
by  Jimmy ChiuJump to last post
10/25/2010 10:47 AM
6 Replies and 1345 Views getEmployeeId fails (return empty string)  1345  6 Started by  Dave Amen To all, Has anyone run into this error I have a simple rule to match the employee number on the screen with the employee number in their Identity using getEmployeeId(), but Inquiry in the screen returns a security violation, and puts this into the lase_server log file: 2010-10-05 09:34:33 com.lawson.lawsec.default.FINEST com.lawson.lawsec.author.runtime.JSUser.getEmployeeId()() function return empty string Any thoughts or suggestions are much appreciated! Best regards, Dave (303) 773-353...
6 1345
by  Dave AmenJump to last post
10/21/2010 6:07 PM
2 Replies and 1730 Views Online Benefits Enrollment Security Violation  1730  2 Started by  This_Guy I have implemented Role Based Security (Check LS = Y) for our MSS/ES users combining the funtionality of both. However, when a user with both roles tries to go thru Benefits Open Enrollment they are receiving the 'Security Violation' message... I can't figure out. I have granted access to BN tables i thought would fix it... Any ideas which forms/tables need to be included to go thru the Open Enrollment
2 1730
by  This_GuyJump to last post
10/18/2010 2:54 PM
0 Replies and 1051 Views LAUA security - not allow Emp to change their own timerecord  1051  0 Started by  D Duke     We are not going to the new LSF 9 security until next year.  If anyone can remember LAUA security, we are trying to prevent a payroll clerk entering timerecords on PR36 fromchanging their own timerecords.    Has anyone done this (in the past) and can you remember what you did
0 1051
10/18/2010 9:24 AM
32 Replies and 17605 Views Mass Deleting Users in LSF 9  17605  32 Started by  Ellen Melton Has anyone found a way to mass delete users in LSF 9 - kinda the reverse of loadusers Our migration of users from 8.0 to LSF9 was a total mess. I'd like to basically start over for about 90 of our users. I've got the loaduser xml ready but I know it will fail because the existing users are tied to the SSOP identities that I'll be trying to load - hence I need to delete all the existing RMIDs. Any methods other than manually doing all 5500 one-by-one
32 17605
by  Ellen MeltonJump to last post
10/15/2010 2:21 PM
1 Replies and 1712 Views Process Level Security  1712  1 Started by  Kyle Gray I am trying to use a Process Level Security class to globally secure data by process level.&160; The formula I have written verifies in the build screens but when I apply the security class against the user I am unable to select any records on the HR11 when in fact I should have about 250 records to choose from.&160; I using the RM attribute, ProcessLevelControl (lawson delivered, as multi-attribute).&160; Below is the formula, if((SystemCode=='HR'||'PR'||'BN'||'PA'||'LP')&&(COMPANY=...
1 1712
by  Jimmy ChiuJump to last post
10/12/2010 11:15 AM
1 Replies and 1061 Views Security Reports  1061  1 Started by  Ruma Malhotra Is there a way to get by systemcode , the ids attached, their security class and the actions for every form in Lawson under the system code as a report. Has anyone been able to write or get a custom report and are willing to share &160;
1 1061
by  JoeJump to last post
10/11/2010 8:09 PM
5 Replies and 3492 Views Define element group  3492  5 Started by  wintergreen I created a&160; security class and use the element group(which was delivered by Lawson)&160;to control data security globally for all forms and files from Roles assgined to the user.&160; It is like this: PrimaryDataControl Class: Element groups - PROCLEVEL (Lawson delivered) if(user.attributeContains('PrimaryLevel',PROCESS_LEVEL)) &160;&160; 'ALL_ACCESS,' else &160;&160; if(user.attributeContains('PrimaryLevel',subString(PROCESS_LEVEL,0,3))) &160;&160; 'ALL_ACCESS,' else &16...
5 3492
by  Jimmy ChiuJump to last post
10/08/2010 2:30 PM
1 Replies and 1175 Views Security Class  1175  1 Started by  Jay2 In this system, I have adopted, there is a security case on our production server called PRODALLACCESS.&160; This class grants All Access to the following: Online: All the system codes listed (AR,&160;AC, CB, GL etc...)&160;but it does not give specific access to the tokes within. Securable Type: Form, Program, Table Data Source: GEN, LOGAN, PROD Can anyone tell me exactly what the purpose of this class would be&160; seems strange if it was giving access to the whole product line I woul...
1 1175
by  Jimmy ChiuJump to last post
10/07/2010 11:15 AM
18 Replies and 4256 Views How can I copy current version of Lawson Security from one server (environment) and install it on another ? Thanks  4256  18 Started by  RobertL
18 4256
by  Kwane McNealJump to last post
10/01/2010 9:09 AM
4 Replies and 1143 Views Password change date  1143  4 Started by  Jay2 Where does Lawson store the date of the last password change for a user
4 1143
by  Kwane McNealJump to last post
10/01/2010 9:06 AM
1 Replies and 2597 Views LS9 and cnvtape  2597  1 Started by  Dave Amen In the Lawson Security ENV profile you find these: - rptgen.exe is in Development Tools - cnvexp is in Delivery Tokens - cnvimp is in Delivery Tokens &160;- cnvtape should appear in Translation Tools When cnvtape exists in $GENDIR/bin but doesn't appear in the LS9 Security Administrator's 'Translation Tools' (or any other grouping of executables in ENV), does anyone know how to make it appear&160; Best regards, Dave (303) 900-AMEN
1 2597
by  Dave AmenJump to last post
09/30/2010 5:47 PM
2 Replies and 1390 Views Security Config Portal  1390  2 Started by  Scott Krueger We have users who use Portal at the office during the day. These users are Back Office users and they run Payroll and do HR stuff. How can we stop these users from accessing the standard Portal from outside the office and only allow them access to the ESS Can we do this by Port they are using or by IP.
2 1390
by  Dave AmenJump to last post
09/28/2010 1:49 PM
0 Replies and 1099 Views Securing mouseover messages in RSS  1099  0 Started by  Roger French Does anyone have a good method of securing the onmouseover events/messages within RSS I have secured buyers from the ability to actually Checkout, but that has also prevented the mouseover messages from appearing too. When the mouse cursor is put over the requisition information in the checkout list, I DO want the ability to see the messages, but I do NOT want the ability to actually checkout the requisition. Does anyone know how the mouseover messages are secured Thank you, Roger
0 1099
09/24/2010 10:28 AM
1 Replies and 1246 Views HR Security  1246  1 Started by  Jimmy Chiu I have pay information defined in HR10 as SEC_LVL 1 When I go in HR11. Only SEC_LVL 1 users can see the pay info. However, SEC_LVL 2-9 users can drill down on HR11 and still able to see the pay info. What am I missing
1 1246
by  Jimmy ChiuJump to last post
09/22/2010 12:17 PM
2 Replies and 5642 Views Auditing?  5642  2 Started by  MattD Howdy Gurus, Any ideas on ways to audit user activity I have discussed this with Lawson and they can only audit activity in the LSA tool. I want to audit actual users of the system. Any ideas on Lawson functionality or custom processes to audit this kind of activity. I would like to know of what your companies due to handle this or if there is just not a need for it. Many thanks for any replies. Matt
2 5642
by  Dave AmenJump to last post
09/16/2010 7:25 PM
3 Replies and 1250 Views How do I identify when a user has logged into ESS? Is there a way to track logins?  1250  3 Started by  terlec Is there a way to track Employee Self Serve logins&160;&160;&160; Knowledgebase mentions the user table, but I am not sure how that works.
3 1250
by  NickJump to last post
09/10/2010 5:50 PM
2 Replies and 3211 Views Different SOD scenarios for Finance and HR/PR  3211  2 Started by  subba We are planning to install LSF9.0 if any one can you provide different SOD scenarios for LAWSON Finance and HR/PR before creating roles/rules we need review those
2 3211
by  Dave AmenJump to last post
09/02/2010 10:59 AM
3 Replies and 1360 Views GL90 Drill to payments  1360  3 Started by  Margie Gyurisin We are creating a new role for someone to be able to drill back to payment information from the GL90. We have been able to get the payments to appear, but they can not see employee names. We have given them PR51 form access and they can see names on that form but they can not select an employee from the search box We have given them acces to all the tables that the PR51 references - EMPLOYEE, PRSYSTEM, PAYMASTR, PRTIME etc. Do we need to add some invoked program If so, which one(s)...
3 1360
by  John HenleyJump to last post
09/02/2010 10:26 AM
3 Replies and 1317 Views pr260 remove bank info  1317  3 Started by  Deleted User I'm trying to remove bank info from a security class that can run the pr260 Payment Detail report. I've removed the fields/tables in security laua that houses the bank info for the PR area...but it is still showing up on the report. I would have thought that this would surely do the trick.
3 1317
by  Margie GyurisinJump to last post
08/27/2010 3:43 PM
1 Replies and 2703 Views dme call Security Error in custom table  2703  1 Started by  Lorena Hi, We are using LSF9 for ESS. I created some custom htm page that display and update data in a custom file. I also created a custom 4GL program to view and update the table. The Security officer gave me access to the new table. I can look at the file and updated using my custom 4GL program however I can not do dme calls on that table and I can not query the table using Crystal reports. It looks like it is only related with dme calls. Here is the error saying that the Table data is...
1 2703
by  Ragu RaghavanJump to last post
08/20/2010 10:30 PM
10 Replies and 1740 Views LS9 ESS security and Servlet calls  1740  10 Started by  Lien Hi, we are on LS9 and came across an issue where an ESS employee can view another employee’s personal information through a servlet call. The employee uses a debugging tool to get the URL then substitute their employee ID with someone else’s. We’ve tried to lock down all the HR, PA, PR, etc. related tables and forms with conditional rules. But we are still able to return sensitive data using the servlet call. Tried with this rule: if(user.getCompany()==table.COMPANY&&user.getEmployeeId(...
10 1740
by  LienJump to last post
08/20/2010 9:28 AM
2 Replies and 1442 Views Dumb question  1442  2 Started by  This_Guy If there is such a thing...But, I can't figure this out. We are implementing RoleBased Security (Check LS = Y) for Ess/Mss for portal and one thing I cant seem to get to work for Manager Self-Service is the Drill on Employee Information piece in the Direct Reports listing. Basically, I just want to get rid of some of the links in that Employee Drill Menu: Current YEar Earnings, Deductions by Quarter, etc... We dont need managers to see this stuff, and I have resticted access to the files...
2 1442
by  Arvin OjalesJump to last post
08/17/2010 6:49 PM
9 Replies and 2227 Views Mass Assignment in RM  2227  9 Started by  TBonney Is there a tool that can be used to remove a role from multiple profiles at the same time, such as you you would apply it to multiple roles simultaneously using Mass Assignment in Resource Administrator We have a role that we'd like to remove from several hundred user profiles, but leave all other roles on those profiles in place. Has anyone else encountered this situation and know of a way to accomplish this Thank you.
9 2227
by  John HenleyJump to last post
08/13/2010 3:26 PM
3 Replies and 1318 Views Clean up of user accounts  1318  3 Started by  Jay2 I am looking to get rid of user accounts, on my development box, that have not accessed the system in 6 months. Is there a place where the last access date is stored If not, any other ideas
3 1318
by  Marc BurnesJump to last post
07/28/2010 2:30 PM
6 Replies and 1734 Views user reports  1734  6 Started by  Jay2 Does Lawson store the user creation date somewhere I need a user report with date the user was created. Any ideas
6 1734
by  Jay2Jump to last post
07/22/2010 8:50 AM
0 Replies and 1137 Views Report listing RM groups and users  1137  0 Started by  Ellen Melton Maybe I'm missing it somewhere.... Is there a report I can run that will list each RM group and the users assigned to that group
0 1137
07/21/2010 10:31 AM
4 Replies and 1919 Views Delete Update jobs  1919  4 Started by  Greg Moeller Is there a way to restrict the jobschd listing to only allow deletes of non-update jobs in the new Lawson security, or is that already built in&160; Looking at the security class, I only see All_Access or No_Access on the jobschd utility.
4 1919
by  Greg MoellerJump to last post
07/19/2010 12:35 PM
0 Replies and 1045 Views Removing a Role from Multiple User Profiles in LSF9  1045  0 Started by  TBonney Does anyone have a way that a particular role can bve removed from multiple user profiles, removing only that role and leaving any otehrs they have in tact We had created a role and applied it to all users a while back. Now we've determined that role is no longer necessary and would like to reomve it from all users. Has anyone ever made this change, en-masse, for all users Thank you.
0 1045
07/09/2010 11:49 AM
0 Replies and 1038 Views Conditional Rule using getSystemDate()  1038  0 Started by  Roger French Hello all, Trying to create a conditional rule within LSF9 security. I want to do something only if the the System Date is within two other dates on another screen such as the BS01 (a date range). But I can't seem to get the getSystemDate() function within the rule editor to work. Does anyone know the actual format of the returned date by using getSystemDate(yyyyMMdd) I have tried it and it seems to not be returning a correct date in the same format (yyyyMMdd). It seems to be retu...
0 1038
07/07/2010 2:51 PM
1 Replies and 2881 Views Tokendef - Shell Script Error  2881  1 Started by  trueblueg8tor My company is on LSF AIX environment with 8.03 Apps and Security. I created a couple of simple shell scripts and then used tokendef to define them as forms. After I created the job using jobdef, I tried to run submit the job from portal but got a 'Job Queue is Secured' violation. I took a look at the permissions of the actual scripts and they all have read-write-execute permissions for the user I logged in with into portal. Any ideas
1 2881
by  MattDJump to last post
06/30/2010 2:33 PM
3 Replies and 10739 Views 9.0 LAUA -a (Windows/AD)  10739  3 Started by  Roger French Ok, Have discovered that a new option for laua on a Windows/AD platform. There is an issue if using the AD with Windows, and *not* being able to see users who were added to a global group within AD, in LAUA. (The KB Article is 100688.) So if I tried to add a new user to Lawson, first add them to a global user group in AD. Then synch up with the Lawson app server (where the environment is at). (So, this next part I am asking if others have seen this, or if this is t...
3 10739
by  RMcJump to last post
06/29/2010 11:07 AM
5 Replies and 1440 Views Writing rules on Table files  1440  5 Started by  RobertL Anyone knows how to write conditional rule access for Currency Code table file This is the CUCODES table file under IF system code in the Securable Type Files. I have a Currency Code Form CU01.1 and want to write a rule to block user access so that they cannot add or change currency code. I set the Unconditional Access for Action to 'I' for CUCODES under IF system code in the Files level (not Online), but it is not working; user can still add/change a new currency. I want to do this in th...
5 1440
by  Dave AmenJump to last post
06/10/2010 7:36 PM
1 Replies and 1025 Views Internet Access into Lawson  1025  1 Started by  LynnS Not sure if posting in the right forum. My organization is implementing ESS/MSS and plans to open up Lawson access to outside Internet with SSL in place. Please share with me any info you have on the process to setup and any problems or red flags to look for. Thanks.
1 1025
by  John HenleyJump to last post
05/27/2010 10:16 AM
1 Replies and 1157 Views USERATTS  1157  1 Started by  Deleted User We have implemented LSF9. I'm working on Help Desk procedures for portal password resets. I'm told the only option is the Lawson Security Administrator. I'd rather not have to install that on the Help Desk PCs. I'd much rather create a web or shell script but I'm told it can't be done. I've thought about writing my own web to talk to LDAP following the USERATTS script and the PWCHANGE design. Has anyone else faced this sort of thing
1 1157
by  Brian AllenJump to last post
05/24/2010 8:42 AM
1 Replies and 1076 Views LSF9 Rule behind rule  1076  1 Started by  Demichener I recently added a new form (PR270) to an existing class. The form contains rules on form, company, department and employees. All the rules appear to add correctly, but when I deselected or reselect company from the edit view screen, an entirely different rule(from the same class) pops-up in the edit window. When tested through portal, the rule works. The IOS log shows no errors. I've gone back and validated all the rules in the class and have rebuilt the entire class(on DEV in 2 PL’s and al...
1 1076
by  DemichenerJump to last post
05/19/2010 2:31 PM
4 Replies and 1674 Views I/O Error in Security Administrator  1674  4 Started by  Jay2 This issue is within the forms security. If I try to edit a rule on a form or create a new rule on a form everything works fine I see the message: Data Initialization Complete But whenever trying to create a new rule or edit a rule in the DTO section of a form I get the following error: I/O Error, Initialization data was not retrieved from the server. I am running 9.0.1.5.411 This is leaving a huge security hole in my system if these rules are not being read by the software.
4 1674
by  Jay2Jump to last post
05/17/2010 3:31 PM
5 Replies and 2267 Views Setting Up Security Rules  2267  5 Started by  Shane Jones I am creating Security and have found that if I need conditions or unconditional features in the security I have to set this up for each form individually. This will take hours to configure one group. Anyone have shortcuts to setup security rules
5 2267
by  Shane JonesJump to last post
05/13/2010 10:29 PM
1 Replies and 1269 Views In S3, can FC codes be limited?  1269  1 Started by  BrianB Hi, thank you for reading. If i have a function code and I want to only allow say Change and Delete but not back out (as in the case of AC45.1) can I restrict to that level I've tried specifying it when creating the rule, at the unconditional access and am not having any luck. Is it pretty much you either have access to it or you don't Thanks again
1 1269
by  Jimmy ChiuJump to last post
04/30/2010 1:57 PM
3 Replies and 1257 Views DTO Security not working  1257  3 Started by  Jay2 Did anyone else have issues with rules created under the DTO section of a form after upgrading to ESP5 All of the sudden users were getting security violations due to the DTO security not being evaluated correctly. Lawson has opened JT135185 to create a fix.
3 1257
by  Jay2Jump to last post
04/27/2010 2:29 PM
8 Replies and 1366 Views Button Security  1366  8 Started by  Jay2 We have just upgraded to ESP5 Now when users go to Form AP10.1 they see new buttons on the screen. Customer(AP10.4), Approval(AP10.7), Xref Vendors(AP15.1) Users do not have access to these forms that the buttons are pointing to. Previous to this we were on ESP3. I thought that if users did not have specific access to these forms the buttons would not show up on AP10.1 Did this change in ESP4 or ESP5 How do I prevent the users from seeing these buttons now
8 1366
by  Jay2Jump to last post
04/27/2010 1:47 PM
6 Replies and 1328 Views Is there easy way to identify fields/tables  1328  6 Started by  Greg Moeller Hi all!! Is there an easy way to identify fields/tables EVERYWHERE that pay-related information is stored at -Greg
6 1328
by  Greg MoellerJump to last post
04/27/2010 11:53 AM
0 Replies and 1215 Views Could Element Groups speed up driill filtering???  1215  0 Started by  BrianB I'm securing activities. The logic I am using follows: 1. Check to make sure that ACACTIVITY.VAR_LEVELS isn't blank. If blank ('') then NO ACCESS...Else 2. Look at a user attribute for company, it matches positions wxyz in the VAR_LEVELS <Meaning the person has company wide access> Grant All. 3. Look at another user attribute, compare it against a structure set up in RM (using getStructNodeAbove) to look for a unique code, and if that name or code matches what is in the user at...
0 1215
04/22/2010 3:59 PM
6 Replies and 1865 Views Referencing a Multi-Valued attribute  1865  6 Started by  BrianB We have set up (in Schema Editor) a multi-valued variable. We want to restrict drill access and essentially deny access to any that don't have a corresponding value. The problem is this: When we reference the variable and do a compare, the system only restricts based on the first number in the list. I tried referencing it as if it were an array (with a value in paranthesis representing the index order), but that didn't work. If we had 20 different values in there, how do I get my rule t...
6 1865
by  BrianBJump to last post
04/22/2010 3:51 PM
1 Replies and 3867 Views LS Report to see user access to forms, classes, and roles  3867  1 Started by  RobertL In Lawson Security I want to run a report to see what access of forms, security classes and roles each user has, and import the report into a database. How So far I have found only Role-Security Class Report when I select Report Maintenance in LS but the report only shows classes and roles relationship but does not include the users. Any other options, e.g. using Crystal Report Appreciate any feedback/information. Thanks.
1 3867
by  Dave AmenJump to last post
04/22/2010 2:13 PM
3 Replies and 1814 Views LSF Security & inbasket Display Exec problems  1814  3 Started by  Anthony Benitez We are in the final preparations for migrating from LAUA security to LSF security and have run into the following problem/error for viewing work unit details in an approver inbasket ... 'Lawson security users not supported in dme.exe'. The error is related to the scripting in the Display Exec 'jobreq.htm' file. Has anyone run into this problem and resolved successfully Lawson's article 5103245 details the issue but doesn't offer a resolution. Any assistance is appreciated! Thanks.
3 1814
by  John HenleyJump to last post
04/19/2010 1:49 PM
2 Replies and 1106 Views Securing Report/Update Parameter?  1106  2 Started by  Dave Amen For batch programs that have a Report-only mode and an Update mode (MM180, for example), is there a way using Lawson Security to restrict users to using only the Report mode These users still need to change the other parameters, submit the job and view the report, but we'd like to lock down the Report/Update flag.
2 1106
by  Dave AmenJump to last post
04/17/2010 7:43 PM
2 Replies and 1248 Views Locating user IDs & Passwords from LDAP  1248  2 Started by  TBonney We run Lawson Security 9.0, Environment 9.0.0.7 and Apps 9.0/MSP5 on a Windows box and use ADAM. But, we are not LDAP bound. Including ESS-only users, we have about 4000-4500 users. We get several calls/emails regarding lost or forgotten user ids or passwords daily. Our current process is basically to simply reset the passwords when this happens. Can anyone provide direction/instructions on how we can simply pull the information out of LDAP using Softerra LDAP Browser 6.2 so that we can si...
2 1248
by  Alex TsekhanskyJump to last post
04/14/2010 9:00 AM
3 Replies and 3119 Views jobdef  3119  3 Started by  Jay2 Please excuse my ignorance as I am new to Lawson and self-taught. I am the security admin for our ERP system. I have been asked to give access to a job that has been created through jobdef. My understanding is, to give access of others you would need to copy this job to these users or give them access to the password of the current user. Is there also a way to give them access through USERGRPDEF Are there other security concerns when dealing with jobs created in jobdef I am assumin...
3 3119
by  DemichenerJump to last post
04/13/2010 11:17 AM
7 Replies and 3182 Views LSF9/LS/ESS  3182  7 Started by  Jimmy Chiu I am creating a new ESS security class since the lawson delivered ESS templates don't work. I have assigned the rules according to the Employee Self-Service Technical documentation. I keep getting this error when I do a pay check inquiry and here is the log from fiddler: Caused by: com.lawson.lawsec.author.runtime.LawsonSecurityException:Exception while checking security on token EMPLOYEE for user <myuser's sso login name>. Message: org.mozilla.javascript.WrappedException: Wrapped com.l...
7 3182
by  Jimmy ChiuJump to last post
04/12/2010 8:07 AM
10 Replies and 1830 Views Security Module Crashes  1830  10 Started by  Brian Allen We are having an issue with out of memory errors from the Lawson Security module on Websphere. As we are increasing activity with the security implementation, the issue is causing the application server JVM to crash. Updates to user RM records are quick, but simple changes to security, such as adding 1 class to a role, is taking about 30 seconds. Adding several classes to a role can take up to 5 minutes or produce a timeout. Our ADAM server was spiking to 100 CPU utilization during updates ...
10 1830
by  Brian AllenJump to last post
04/01/2010 9:16 AM
2 Replies and 1669 Views copy security role  1669  2 Started by  RobertL After I copied LS security from Production to Development, I found out I have the security roles but I don't see any security classes with the roles. Do I need to manually assign the classes to the roles in Development If there is a command to copy the security roles, please show me the command and syntax. Thanks.
2 1669
by  MattDJump to last post
03/31/2010 1:48 PM
2 Replies and 1196 Views Moving users  1196  2 Started by  RobertL How can I move users from one server (Production environment) to another server (Development environment)
2 1196
by  MattDJump to last post
03/29/2010 8:01 AM
0 Replies and 1520 Views SSOP_BIND Identiity  1520  0 Started by  MattM I have been playing with some ideas for alternate authentication methods when bound to a corporate LDAP.&160; I have tried a few things with the SSOP_BIND identity and not really made any progress. How does Lawson use the SSOP_BIND identity for users&160; Why can you put a DN and password in it if the login for a user is not altered If any of you GURUs out there have any insight I would really appreciate it.
0 1520
03/05/2010 11:26 AM
0 Replies and 1127 Views Lockdown Down HR/PR Reports -  1127  0 Started by  GregSl I want to lockdown the Reports for Employees in certain process levels, where Employee is selected with parameter for Process Level is blank using LSF9. I can restrict when selected with&160;Process Level&160;parm.&160; I&160;have tried the Process Level elementgroup rule and (isElementGrpAccessible('PROCLEVEL','','PR',Co_Value,ProcLvl_value), with out success. Any suggestions greatly appreciated.
0 1127
03/04/2010 5:24 PM
2 Replies and 1342 Views RM Security (LSF9) access  1342  2 Started by  Tom Sinkula Is&160;RM security (LSF9) embedded in the Lawson Applicaiton Database and can it be accessed via SQL, like other application tables
2 1342
by  Tom SinkulaJump to last post
03/01/2010 2:44 PM
8 Replies and 1454 Views Drill around security for the General Ledger report.  1454  8 Started by  Jay2 &160; &160; After a user submits a General ledger report, they are able to view it while in the print queue. What particular files do they need access to in order for them to drill around the report while it is still in the print queue. &160;
8 1454
by  Jay2Jump to last post
02/25/2010 7:14 AM
12 Replies and 2156 Views LDAP bind - Java.lang.IndexOutOfBoundsException  2156  12 Started by  MattM I am attempting to run the ldapbind on a system and no matter what the credentials/parameters, the error 'java.lang.IndexOutOfBoundsException' is being generated.&160; The environment is 9.0.1.5 and is patched current today.&160; Running on AIX with a separate ADAM server.&160; Anyone seen this or do I have to dig through the code
12 2156
by  MattMJump to last post
02/24/2010 2:50 PM
3 Replies and 1708 Views HR and PR duties segregated?  1708  3 Started by  may If you are trying to segregate the HR functions&160;from payroll functions&160;such&160;that&160;for example a user cannot create an employee and also process payroll&160;for them, I'm thinking the forms you don't want&160; the user to have are HR:&160;(forms HR.11.1 and PA52.1) and PR: (forms PR 30.1, PR32, PR33, PR35, PR36, PR37 and PR38). Can someone tell me if I'm I missing something Thanks, May &160;
3 1708
by  MattMJump to last post
02/24/2010 8:31 AM
2 Replies and 1350 Views Running a Job as Another User - Which security?  1350  2 Started by  Randall &160;Hi all, I tried a search through the forums, but didn't really find what I'm looking for. &160;We have security setup to limit users to be able to see companies that pertain to the region(s) they work in. &160;A request came in for our west region to be able to run a report off of east data, but this usually doesn't get approved. So, I was wondering, if I setup a job with another user's username (logged in as myself, but changing the username on the job definition), will it use that us...
2 1350
by  RandallJump to last post
02/18/2010 3:57 PM
5 Replies and 1417 Views Identifying managers for loadusers self-service portal role  1417  5 Started by  BarbLR I am working to automate the initial 'loadusers' user load and maintain it on a daily basis (using input from&160;Lawson&160;HR and Lawson RM).&160;&160;I will have two&160;portal roles, one for manager self-service and the other for employee self-service.&160;&160;I have recently learned that some non-managers will be using manager self-service (e.g. Executive secretaries, Administrative staff).&160; Has anyone automated their user RM maintenance, and if so, how do you identify which em...
5 1417
by  John HenleyJump to last post
02/18/2010 11:44 AM
6 Replies and 3738 Views LSDUMP from one profile to another  3738  6 Started by  Jay2 I am in the process of copying all of my security from one profile to another on my development box. I&160;have run the LSDUMP/LSLOAD for the profile &160; Now I have all the security classes under the new profile and I can see all the ROLES under the new profile, as they are on the same box, but none of the security classes are associated with the roles. Do I need to go in and add them all manually or is there an easier way
6 3738
by  MattMJump to last post
02/11/2010 11:52 AM
4 Replies and 1661 Views LAUA and Merge  1661  4 Started by  Greg Moeller Anyone have a quick/easy way to merge 2 existing LAUA security classes together to come up with a brand new security class I&160;can merge one with the other, but then it is left in the target security class which is still needed in it's unmerged state. Anyone&160; Thanks much!!! -Greg
4 1661
by  Greg MoellerJump to last post
02/02/2010 4:42 PM
12 Replies and 6007 Views Dumping out Identity information for users in Lawson Security  6007  12 Started by  John Cunningham Has anyone had any luck dumping out identity information, specifically requester identities from the Lawson Security Module. &160;
12 6007
by  TeriKJump to last post
02/02/2010 8:46 AM
2 Replies and 1105 Views Limit a users to run CB175 with update No only  1105  2 Started by  John Crudele We are on LS security. The CB175 Bank Transaction posting job has update options of Yes or No We want to grant access to some users to run this job but only have the update option of No. Can this be done in LS security, if so how would you set this up &160; Thanks JC &160;
2 1105
by  John CrudeleJump to last post
02/01/2010 7:01 AM
4 Replies and 1019 Views Security Issue with ESS  1019  4 Started by  Greg Moeller Hi all!&160; Hope everyone is having a GREAT week!! Question-&160; We are trying to nail down which table the Goalview 'Completion Comments' resides in. I suspect it's one of those darn L&160;underscore tables, but as to which one it is baffling me. Any help would be appreciated. -Greg
4 1019
by  wintergreenJump to last post
01/27/2010 3:05 PM
2 Replies and 1076 Views ESS Security and GoalView  1076  2 Started by  Greg Moeller Trying to figure out which table the Goalview 'Completion Comments'&160;are stored in. I suspect its one of those darned L&160;underscore tables, but cannot figure out which one. Any help would be appreciated. -Greg
2 1076
by  Greg MoellerJump to last post
01/25/2010 3:40 PM
3 Replies and 1868 Views Adding Privileged Identity on Iseries  1868  3 Started by  Louis Brockinton Since RD30 is no longer used in version 9.0.1 on the Iseries, we don't know how to link Company and Employee to the user id.&160; Does anyone have experience doing this on the Iseries&160; We keep running across the loadusers -g username Qshell command but are not confident in how it works.&160; Any suggestion would be appreciated.
3 1868
by  Louis BrockintonJump to last post
01/19/2010 4:37 PM
To join the discussion you need to register first. (Registration is free!) If you are already a registered user please login to join the discussion.
Page 4 of 6 << < 23456 > >>


RSS Feed Available