Search this forum:
To join the discussion you need to register first. (Registration is free!) If you are already a registered user please login to join the discussion.
Page 4 of 7 << < 23456 > >>
 Last Post
3 Replies and 3608 Views Laua: Security Class  3608  3 Started by  LF I a new to LAUA security.  Does anyone know how to compare to diffenent security classess and show the difference between the two besides doing the tknscrpt 
3 3608
by  John HenleyJump to last post
9/8/2011 12:03 AM
4 Replies and 3941 Views MSS Rule on Employee table  3941  4 Started by  msjmg111 We are working on writing rules for the Direct Reports link in MSS.  We've had ESS in for some time and my rule writing is a bit rusty, so I would appreciate any help with MSS.  I loaded the MSS delivered template and the rule for the Employee table  - if(user.isSupervisorOf(getIdFromEmpNbr(lztrim(table.COMPANY),lztrim(table.EMPLOYEE))))'ALL_ACCESS';else'NO_ACCESS'.  When I try to access one of my direct reports I get an error retrieving database records.  The ...
4 3941
by  msjmg111Jump to last post
9/7/2011 7:33 PM
2 Replies and 4209 Views Security - Schema/Table  4209  2 Started by  Jose Hello, I would like to know if anyone knows the schema/table for Lawson Security Group nad Roles.
2 4209
by  John HenleyJump to last post
8/24/2011 4:01 PM
1 Replies and 2855 Views You cannot transfer directly to this form error - any ideas?  2855  1 Started by  CindyW We use LAUA, and just upgraded from 8.0.3 apps to (env is now, and so far we've had very few issues.  However, I am unable to resolve one issue.  I have a security class that has limited access to just a few screens.  We have a problem that where the users in this class alone, are unable to access the PA16 form. When they do, they get this message:  PA16.1: You cannot transfer directly to this form... Every other class t...
1 2855
by  Jimmy ChiuJump to last post
8/9/2011 12:15 PM
4 Replies and 5982 Views Looking to create users using SSIS and DirectoryServices (VB)  5982  4 Started by  EBassett Has anyone successfully used SSIS and DirectoryServices (VB) to create user accounts I have written similar code to create users in Active Directory, but I get errors when doing the same for Lawson Users. I can modify existing Lawson users but get an error when doing the add. The error is thrown on the newUser.CommitChanges() command. it is COMException (0x80072035) which when I look into states is because the password is not set, but if I try to set password first it throws a different e...
4 5982
by  EBassettJump to last post
7/26/2011 2:35 PM
12 Replies and 11660 Views Employee Self-Service under Lawson Security  11660  12 Started by  John Costa Has anyone successfully implemented Employee Self-Service under Lawson Security I ask because I am running into headaches trying to set up the correct access to the tables and forms behind each link.&160;&160;I've been using the technical documentation for the Employee and Manager Self-Service application but it really provides nothing more than a starting point. For example, for the ESS&160;link 'Payment Modeling', the technical documentation indicates that I need to provide access to...
12 11660
by  John HenleyJump to last post
7/25/2011 4:55 PM
6 Replies and 2773 Views Newbie to advanced security writing needing help!!  2773  6 Started by  Ronnie Ok, This is probably my first official post on the forum, but I have run into something that is a little more in depth than my security skill level currently resides at. Here is the situation: We are using the new lawson RQC (requisition center...former RSS) and within the shopping area on the accounting tab there is a field with a drill around called 'Activity' I am told that this pulls its info from AC10. We are wanting to limit the drill around info to certain data for cert...
6 2773
by  RonnieJump to last post
7/20/2011 11:20 AM
6 Replies and 4497 Views Autoprovision new Lawson Users  4497  6 Started by  Sarah We are in the process of identify the best way to auto provision new users to Lawson LS Security, and deprovision roles when transfers/terminations occur.  We are ldap bound, and would like to utilize either PFI or an ldap provisioning tool (CA/FIM/etc). How have others resolved this issue  What tools did you use  Thanks!
6 4497
by  JeffRJump to last post
7/19/2011 8:56 PM
0 Replies and 2668 Views Usergroup  2668  0 Started by  Jose Does anyone know how to restrict users from being able to view other users other than those defined in the usergroup from accessing jobschedule and printmanager. Ex..if you are in HR, you should only be able to view users within HR when selecting from the dropdown within jobschedule or printmanager.
0 2668
7/15/2011 4:50 PM
0 Replies and 2399 Views Security to be setup to allow user to drill around in Asset Template in RSS  2399  0 Started by  Saurabh Hi We are testing the Asset Module and the process of linking a Asset Template in the RSS. I have tried to setup security as much as i can think of but still when i click on the Drill Around in Asset Template in RSS i do not see any of the templates. The templates are not setup compamny specific - so should be availaible to all users have attached screenshot of what i have given with respect to security - can anyone help to point the missing setup thanks Saurabh
0 2399
7/14/2011 1:01 PM
0 Replies and 2508 Views Company Table Security  2508  0 Started by  KB Trying to determine what the best way to do global table security.  Element rules appear to block access to another company from the screens but Add-in users can query other company data. Do I have to add company criteria in my table access rules Any assistance would be appreciated.
0 2508
7/12/2011 4:23 PM
2 Replies and 2869 Views ESS LS  2869  2 Started by  KB We are troubleshooting our ESS LS rule and are having a problem with a DME call.  On the table we have tried to secure we have a conditional rule as follows... if(user.getEmployeeId()==table.EMPLOYEE)    'I,' else    'NO_ACCESS,' We are trying to lock the table down so they can only see their own data.  A DME call against this same data returns 0 results.  Shouldn't this rule work 
2 2869
by  John HenleyJump to last post
7/6/2011 2:01 PM
6 Replies and 2525 Views USERNAME change due to marriage ETC, in LSF9 Security to include LDAP  2525  6 Started by  Deleted User How do I change the userid for a user who has married, divorced, etc
6 2525
by  Greg MoellerJump to last post
6/29/2011 5:52 PM
2 Replies and 2379 Views LSF9 Security on Add-ins  2379  2 Started by  jzetting We are testing a new attribute in LSF9. It appears to be securing the correct records in the portal but when you run an add-in with that same username, the query shows all records and doesn't secure. What am I missing
2 2379
by  Roger FrenchJump to last post
6/29/2011 11:52 AM
0 Replies and 2935 Views Lawson function to read table  2935  0 Started by  RobertL I am trying to process the RQACCTU table with accounting unit records to match ICLOCATION table with requesting locations. I think a loop process is better than if/then/else to read and process the tables. Do you know any Lawson functiion that can work on this Thanks.
0 2935
6/27/2011 3:51 PM
3 Replies and 3165 Views Company Control  3165  3 Started by  KB I am wondering if anyone has developed any Company Control security rules and would be willing to share an example of a rule that has been written using Company Control. Thx
3 3165
by  Jimmy ChiuJump to last post
6/27/2011 11:47 AM
7 Replies and 4405 Views Windows NTFS app server security for a Unix-to-Windows conversion  4405  7 Started by  George Hi. New to this LawsonGuru forum, newbie to Lawson (been around a long while doing Windows server admin). I am not a Unix admin. Our organization is converting from Unix/Oracle Lawson S3 (LSF v9.x) to Windows2008R2/MsSQLserver (LSF v9.x). Having some issues with proper NTFS security. Microsoft Subsystem for Unix Applications (Ms-SUA) is, of course, installed as a Windows Server role for our Lawson application server. Been reading up on mapping Unix to NTFS permissions. And a...
7 4405
by  Jimmy ChiuJump to last post
6/24/2011 3:07 PM
0 Replies and 2402 Views Calling RQ04 to match Accounting Unit  2402  0 Started by  RobertL Anyone familiar with global function getidFromRequester I am trying to use the RQ Files Securable Type in Lawson Security Administrator to set up access rule calling RQ04 to match the ACCT-UNIT (Accounting Unit in RQ04 . Thanks.
0 2402
6/23/2011 7:14 PM
0 Replies and 4473 Views DSSO Logout Redirect to Portal  4473  0 Started by  pianoman We have DSSO setup for Lawson Budgeting and Planning.  When we hit the logout button in LBP it redirects us to the Portal Login Screen.  We would expect/like it to return to the LBP login screen instead.  Any ideas
0 4473
6/23/2011 5:54 PM
7 Replies and 2642 Views AR115 - EFT Files and Required Permissions  2642  7 Started by  Garth Gerwing We are attempting to test the AR EFT process(s) - and are running into an issue whereby the EFT payment file(s) are being created - but are empty (0KB) where there should be data written. We setup the 3 required directories under productline\work\ - as the job required these be present before exeucting. Upon closer inspection of the job log - we noted a 'Security Violation' line being written. Anyone have any ideas as to what might be the issue here
7 2642
by  Garth GerwingJump to last post
6/22/2011 3:19 PM
6 Replies and 4154 Views LSF9 - Lock Drill access  4154  6 Started by  Jose I'm new to LSF9 and trying to figure out how to restrict user(s) from drilling on 'employee' and viewing of social security.
6 4154
by  Karen SheridanJump to last post
6/21/2011 2:23 PM
4 Replies and 4604 Views online only users  4604  4 Started by  Deleted User I am trying to use the LSF security for a very simple class - The users will only be able to access one form.  I thought that I would not have to set up a UNIX account if the users were to use Portal only and only an online form, but so far no luck.  I get this that says 'portal cannot load because the profile service returned an error'.  ANy ideas where to start looking
4 4604
by  Deleted UserJump to last post
6/14/2011 3:33 PM
3 Replies and 2376 Views Securing Identites  2376  3 Started by  Roger French Good morning, Has anyone found a way to secure Service Identities in security administrator I'm setting up security for other sec admins and I haven't been able to find a way of security the identities. I've looked far and wide but nothing yet. Lawson is also saying it can't be done. Really  Ok, anyone have any ideas Thank you in advance, Roger
3 2376
by  Kwane McNealJump to last post
6/6/2011 1:01 PM
8 Replies and 3961 Views Delete a Role in LSF9  3961  8 Started by  TBonney Can a single role be deleted from multiple users in LSF9, without impacting any of the other roles, groups, etc. that are assigned to these users We have a role that was created and assigned to several hundred users previously. However, due to changes made since then, this role is now obsolete and unnecessary so we'd like to remove it from all users. However, we do not want any other changes to be made to these users. Any ideas Thank you.
8 3961
by  TBonneyJump to last post
6/2/2011 11:18 AM
0 Replies and 2271 Views How to manage Lawson licenses  2271  0 Started by  RickyY I was wondering and would like to know how everyone is managing their application/users licenses with Lawson Security 9 Any ideas would really help. Thanks. Neng
0 2271
6/1/2011 3:40 PM
2 Replies and 3784 Views HR11.1 tab security  3784  2 Started by  Deleted User We are on LSF9. We have a section of HR employees who currently have view only access to HR11.1.  I've been asked to provide them with full access to only one tab (Work Tab).  Current HR11.1 conditional rule: if (user.getCompany()==form.EMP_COMPANY)&&(user.getEmployeeId()==form.EMP_EMPLOYEE) then ,-,I,N,P ElseIf     (user.getEmployeeId()!=form.EMP_EMPLOYEE)&&isElementGrpAccessible('PROCLEVEL','','HR',form.EMP_COMPANY,form.EMP_PROCESS_LEVEL) th...
2 3784
by  GregSlJump to last post
5/31/2011 3:10 PM
5 Replies and 2839 Views Revisiting Company Level Security  2839  5 Started by  Greg Moeller I see the previous thread posted on Company level security, but would like some more clarification/revisit. We have had no luck here trying to get company level security to work, and now we are going to be bringing on another company and trying to fold them into our existing LS security. Although setting up the new company shouldn't be difficult, they shouldn't see anything but themselves...  there will be existing users here that will also need access to the new company.  I'd li...
5 2839
by  Greg MoellerJump to last post
5/27/2011 6:12 PM
1 Replies and 2442 Views Upgrading from 9.0.0 to 9.0.1  2442  1 Started by  TBonney We're planning to upgrade everything from 9.0.0.x to 9.0.1.x. (environment, applications, security, etc.) Are there any tips/tricks anyone who has already made this leap can provide, as it relates to converting Security from 9.0 to 9.0.1 We're on LS9 security, but are not LDAP bound. This too is something we'd like to do, but assume it would be best to do it after the upgrade, not as part of the upgrade. I'm not sure this factors in at all, but we're also upgrading the O/S at the same time t...
1 2442
by  Roger FrenchJump to last post
5/23/2011 4:39 PM
3 Replies and 2741 Views RSS Receiving  2741  3 Started by  Karen Sheridan Sorry - this is somewhat of a cross-post We would like to limit who can receive in RSS, but allow all RSS users access to the receiving page because of the other imformation provided on that page including PO information. Is PO30 the backoffice form for this  Our RSS security class doesn't have PO30 access, but users are receiving that shouldn't.  Any help would be appreciated. Thanks, Karen
3 2741
by  Karen SheridanJump to last post
5/23/2011 2:40 PM
1 Replies and 2721 Views Security Administrator Locks Up  2721  1 Started by  Woozy We are having a heck of a time with Security Administrator locking up on a regular basis - like every couple of times we try to change something.  We've been having this issue for some time under LSF, but we recently upgraded to LSF and the latest version of SecAdmin and now the problem is even worse. We've contacted Global Support, and didn't get much help. Does anyone have any solutions or suggestions Thanks!
1 2721
by  Greg MoellerJump to last post
5/18/2011 2:59 PM
1 Replies and 3310 Views How to change user ID to run Law9 system?  3310  1 Started by  Huizong Hi, Our Lawson 9 system is LSF and APP on IBM iSeries and the subsystem is LAW9. Now the user ID to run LAW9 system is LAWSON. I would like to change the user ID from LAWSON to LAW9. Would anyone know how to change the user ID which was used to run Law9 sub system Thanks a lot. Huizong
1 3310
by  Jimmy ChiuJump to last post
5/10/2011 4:27 PM
0 Replies and 2659 Views S3 LAUA Security - User Groups  2659  0 Started by  Ryan Speight We have a user assigned to a service account which runs recurring 100 level (update) jobs for AP; lets call the service account SERVICEACCT.  Other Lawson users have access to the SERVICEACCT jobs because they are in the same LAUA User Group.  Is there anyway to prevent users who are in the same LAUA User Group as the SERVICEACCT user from recovering update jobs that have gone into needs recover or is my only option removing them from the User Group Your help is greatly appreciated.
0 2659
5/9/2011 9:56 PM
8 Replies and 4177 Views LSF9 Security along with HR Data Security  4177  8 Started by  Kartik I have set up LSF9 security in HR with TRAdmin Role (for Training Administrator) and appropriate security class with restrictions on HR11 (cannot view SSN, pay rate etc). Since I am migrating from LAUA, there is already the existing HR Data and User security set up in HR09, HR10 and HR12. I find that the HR Data security completely overrides the security rules set up in the security class. For instance, if I deny access to view SSN in the security class, but the appropriate security level in HR0...
8 4177
by  Mark PetereitJump to last post
5/1/2011 9:24 PM
0 Replies and 2987 Views Turn off Drill Around in Print Manager  2987  0 Started by  Ronald I have created a new security class to run HR170 for field users.  However, when viewing the report in Print Manager it has the ability to drill around in the information.  I need this ability to be turned off. Does anyone have any suggestions Yes, we are using LSA.
0 2987
4/28/2011 2:44 PM
2 Replies and 2335 Views Moving os users from Unix to Windows  2335  2 Started by  msjmg111 We are moving from Unix to Windows and am looking for a quick () way to load online/batch users into the gen database (i.e. convert the UID's to NTxxxxxxx).  If anyone can give me some help with this, I would truely appreciate it.
2 2335
by  Kwane McNealJump to last post
4/19/2011 4:33 PM
3 Replies and 2456 Views Combo Roles ESS MSS w LS9 Security  2456  3 Started by  Margie Gyurisin We just discovered that if we give a manager both the MSS and ESS role, they are able to drill back to information on their direct reports that they should not be able to see. Example: With MSS role only, they do not see dependents. When ESS role is added they do even though the EMDEPEND table has this conditional rule on it. if(isElementGrpAccessible('COMPEMP','','HR',lztrim(table.COMPANY),lztrim(table.EMPLOYEE))) { 'ALL_ACCESS,' } else { 'NO_ACCESS,' } Any help you can provide wou...
3 2456
by  Jimmy ChiuJump to last post
4/19/2011 2:46 PM
4 Replies and 2586 Views Field level unconditional rules not working  2586  4 Started by  Kartik I was testing my security set up at my client. I find that I cannot get my field level rules to work on any form. For example, If I want to deny access to Pay rate in HR11.1 or inquiry only access to Vendor Name in AP10.1, the unconditional rule does not work on their server. However, exactly the same rule works in another environment. Has anyone encountered similar issue. Is this a technology patch issue or am I missing something
4 2586
by  AlJump to last post
4/19/2011 11:27 AM
5 Replies and 6282 Views Securing Portal Drill around  6282  5 Started by  msjmg111 We would like to remove access to the drill around button on a form in portal.&160; First, is that possible in LS9&160; We are trying to secure ESS and found an issue where a user was able to get access to other people data by drilling on the employee number.&160; We are working to close that hole, but it led to a discussion on the possibility of removing their ability to even select drill around.&160; Can anyone help me with this
5 6282
by  msjmg111Jump to last post
4/13/2011 4:55 PM
0 Replies and 2618 Views hard coding generic user id and password for auto log-in  2618  0 Started by  Jess O. I need to set up a screen that users can access without logging in. This screen would use data transactions (dme) to display non-confidential information. I am trying to figure out a way to pass in a hard coded user id and password (this would be the same user/password for everyone that accesses the screen) then perform the data transaction. Does anyone know of a way to do this   I have tried using jsp and the lhc.jar but am running into a “HTTP Error 405 - The HTTP verb used to a...
0 2618
4/12/2011 10:03 PM
5 Replies and 3124 Views Mass Load Roles  3124  5 Started by  Jose Hello, I am trying to figure out how to mass load roles to each ESS users. Going to each user and adding these roles is very time consuming and was in search of finding a faster way of doing this task. Also, is there a way to have roles, prodline, and CheckLS set as a template so when a new user is added, we dont have to bother with adding roles, prodline, checkLS.
5 3124
by  JeffRJump to last post
4/12/2011 9:31 PM
2 Replies and 2780 Views getDBField question  2780  2 Started by  Al We have some user fields in the Billing and AP modules where staff is entering numeric client ID’s for one of our divisions. Problem is we have run into a data quality issue where users are entering invalid ID’s. I want security to allow form change action only if the user field is blank or if the value in the user field matches a valid client ID.   The data entered into those user fields should match a valid client ID in a custom Lawson table we have created called ...
2 2780
by  AlJump to last post
4/4/2011 11:45 AM
5 Replies and 4776 Views Company/Accounting Unit Level Security  4776  5 Started by  terrig I am fairly new to Lawson Security and we have received a request to set up an additional level of security in HR11. We would like to be able to set controls at the Company/Accounting Unit level.  We have several companies and within each of those we can have the same Accounting Unit number.  I have not been able to find anything on how to utilize the combination Example: Co 100 AU 4350 Co 300 AU 4350 Co 870 AU 4350 Any suggestions would be appreciated.
5 4776
by  JesseJump to last post
4/1/2011 4:13 PM
2 Replies and 2595 Views Add new Securable Type for Executables  2595  2 Started by  Roger French I have a requirement where I need to add a new Securable Type within Security Administrator. For example in the ENV profile, I see a Class called TransITools, with rules which secure environment executables such as listed under the System Administration: appinst, autoinst, and so on. I want to add a brand new tree under the Securable Types/Executibles called 'Custom Scripts' for example, along with existing (custom) scripts or html files located on Lawson. Then of course, I want to have the a...
2 2595
by  Roger FrenchJump to last post
3/29/2011 3:55 PM
1 Replies and 2504 Views Dump Groups from RM  2504  1 Started by  msjmg111 I'm creating a new LSF environment and need to dump and load GROUPDATA.  Can someone tell me where are groups stored 
1 2504
by  Kwane McNealJump to last post
3/27/2011 5:54 PM
5 Replies and 3144 Views LS Security with HR11 Drill Around- wait time  3144  5 Started by  ThomasT I'm relatively new to LS Security and I'm building a new security class for HR users so that they can only see employees with the same user level. I built a new attribute in RM called 'UserLevel'.  I've read many of the postings regarding LS security so I'm familiar with some of the solutions. I've also read the security manuals too. I built a new ElementGroup called 'COUL' which contains Company and User Level Here is the rule of the element group 'COUL' on the new Security class...
5 3144
by  Roger FrenchJump to last post
3/18/2011 3:06 PM
3 Replies and 3705 Views GetDBField  3705  3 Started by  Jay2 I am trying to secure AP90.3 using the following rule: isElementGrpAccessible('EGProcLevelAP','','AP',getDBField('APINVOICE','PROC-LEVEL',form.API_COMPANY,form.API_VOUCHER_NBR)) When I check the log it shows that it is not returning the PROC-LEVEL value: 2011-02-28 15:08:06 com.lawson.lawsec.default.FINEST input parameters: userId=Jeremy.Test dataSource=INTTEST tableName=APINVOICE fieldName=PROC-LEVEL keys=10, 174785, ...
3 3705
by  Jay2Jump to last post
3/1/2011 4:37 PM
11 Replies and 4732 Views Process Level Security and ESS Pay  4732  11 Started by  KerriR We have LS set up to restrict user's access (those who have access to more than just EMSS) based on Process Level using the element group PROCLEVEL.  The problem arises when an employee, who used to be in process level ABC, transfers to a new job and is now in process level DEF.  With this transfer, her access also changes and she is now restricted to process level DEF.  When she goes into ESS to look at her pay checks, her old pay checks are not visi...
11 4732
by  KerriRJump to last post
2/23/2011 9:17 PM
6 Replies and 6085 Views LS9 Default Roles VS Lawson Security Accelerator Roles  6085  6 Started by  JimIII We are new to Lawson with a go live date of early July. My question is: What are the default security roles that LS9 provides and are the practical to use for a 3500 employee company, Self Service, HR, Materials, Finance Or, would it be quicker and easier to set up with the Security Accelerator that we could purchase that my trainer in MN told us about, and what roles are included with it We had a crash course of 4 days and it seems that this could take quite a long time to setup and have it w...
6 6085
by  Guy HensonJump to last post
2/23/2011 5:00 PM
4 Replies and 2288 Views Inquiry Access for roles during a specific time  2288  4 Started by  Jose Hello, I have been approached to basically locked down anyone in HR during a certain time once every other week to avoid having any changes occur when payroll is processing. I'm quite new to security using LSF9 and just think there has to be a simple way of doing this. Any ideas anyone
4 2288
by  JoseJump to last post
2/17/2011 1:32 AM
2 Replies and 2412 Views Duplicating Data Level Security in LS for Co / AcctUnit  2412  2 Started by  Jake Miller In LAUA we use the Data Level Security (Company and Process Level) to specify Company ranges and Accounting Unit ranges for Financials security.  It works great.  Now, I need to duplicate this setup in LS.  According to Lawson, the only way to secure FB40.1 (Budget Journal Entry) to a specific Company and AcctUnit is to apply conditional statements to the form detail line fields. Element Groups only validate the first line and invalidate Next or Previous actions if the fi...
2 2412
by  Jake MillerJump to last post
2/4/2011 5:41 PM
6 Replies and 3162 Views Copy users to new environment  3162  6 Started by  JohnO We are running in windows and using ADAM as our ldap and I need to copy all the users from my existing production environment of to our new environment. Does anyone know how this can be accomplished The new 9.0.1 environment is on 2008 server with ADLDS and the old environment is on 2003 server with MSADAM. I have over 1100 users and we can not just recreate all of them in the new environment. Any help you can provide would be great.
6 3162
by  JohnOJump to last post
1/26/2011 9:00 PM
20 Replies and 10542 Views LSF9 security, ESS, search box and restricting Drill Around  10542  20 Started by  Elizabeth Ardito We are implementing LSF9 security with the goal to have one user id for each employee.&160; If an employee has application access then through portal they will have a search box.&160; We are attempting to limit access to HR/PR and remove drill around access.&160; I have gotten this to work with the exception of the Wage Analysis drill around.&160; I have placed conditional security on the Employee table as a whole and have deny all access to all the salary fields and the Wage Anaylsis still ...
20 10542
by  JoseJump to last post
1/24/2011 9:10 PM
1 Replies and 2121 Views LSF9 Sub Administrators  2121  1 Started by  Greg Moeller Hi, all! We have a need to create sub-administrators to just have limited access to LSA.  Both the class that I took and the manuals mention creating sub-administrators, but neither of them go into ANY detail about doing so. I'm mostly interested to create sub administrators to assign groups and roles to already created users.  That is it!  Can anyone point me in the general correct direction Thanks in advance, -Greg
1 2121
by  Greg MoellerJump to last post
1/10/2011 7:16 PM
14 Replies and 9730 Views LDAP Bind to new domain controller  9730  14 Started by  Wade-T We have a couple of domain controllers and Lawson isbound to one of them. This controller keeps failing and crashing and needs to be replaced.&160; I asked Lawson where thedocumentation was for changing my LDAPbind and they stated I needed to contact Professional services. How difficult is it to do Do I really need to spend $2**/hr with them WouldI be better off with someone like Ciber or Absolute (not a partner, but half the price and no issues when we used them in the past. Go Todd!) Two ...
14 9730
by  Wade-TJump to last post
1/4/2011 9:23 PM
2 Replies and 5687 Views Security violation on available programs  5687  2 Started by  Deleted User We have a strange issue occuring in production.  Our payroll users reported security violations when attempting to view alternative rates (HR14.1) from the HR11 screen.  The same users reported that some of the team members can run PR260 other team members with an identical security role recieve a security violation. Strange!  The lawson security object and user object report shows that the payroll team should have access to HR14 and PR260. It could be coincidence but I ran an ...
2 5687
by  LynnJump to last post
1/1/2011 10:40 PM
3 Replies and 2895 Views View only security  2895  3 Started by  Deleted User We have implemented Lawson HR/Payroll/TA and are using LS9 security. What is the easiest way to implement view only access to all the screens for audit purposes. I am trying to figure out a quick way to do this without have to create a security class for all the screens. Thanks, Usha
3 2895
by  Jimmy ChiuJump to last post
12/21/2010 5:42 PM
6 Replies and 5259 Views LSF9 - Strange issue with AC10.1 after going to portal  5259  6 Started by  alincoln This one is a stumper for me, hoping someone else has seen this. For any of our LSF9 users, any time they go to AC10.1, they receive the following error: &160;com.lawson.ios.agent.SystemRuntimeException: 2009-07-22 09:18:27 : INCIDENT_ID1248275907899-0009 An error occurred outside of IOS while accessing Lawson Security &160;at This is just going to the program, not on inquire or anything else, ju...
6 5259
by  Rhonda CordesJump to last post
12/20/2010 4:16 PM
2 Replies and 2237 Views LDAP Failover/Loadbalancer  2237  2 Started by  mark.cook We are looking at implementing a solution for our LDAP that will failover or have a load balancer in place to avoid a single point of failure with 1 LDAP server. Is anyone using a failover solution or load balancer How is it working for you and is there any issues that you ran into with setting this up
2 2237
by  Jimmy ChiuJump to last post
12/13/2010 4:11 PM
0 Replies and 2205 Views CLASSDATASTRUCTURE and PROCLEVEL Security  2205  0 Started by  mrdey We created a CLASSDATASTRUCTURE to defice HR regions, then created the attribute 'Region' to assign to users.  Then we used 'PROCLEVEL' to define a conditional rule if(isStructNodeTitleAbove('ClassDataStructure',PROCESS_LEVEL,user.getAttribute('Region')))    'ALL_ACCESS,' else    'NO_ACCESS,' yet in testing, they are getting full access to all the regions not what is defined in their attribute.  ANy advise would be greatly appreciated
0 2205
12/10/2010 3:00 PM
0 Replies and 2515 Views Loadusers to modify users RM data  2515  0 Started by  mwilliamson Our users currently have a numbered RM account and a named RM account, we are ready to move to the numbered account only so we need to add their named RM info to their numbered account, items such as groups, roles, change to checkLS yes, email, portalrole, workflow user if they are an WF approver, and also created their requester identity, they already have an employee identity.  I have modified the addiding the fields I need and the requester identity.  I am receiving lots ...
0 2515
12/8/2010 6:30 PM
0 Replies and 2299 Views Securing Archive Audit button in Security Administrator  2299  0 Started by  Rod Does anyone know how to restrict access to the Archive Audit button on the Audit  Logging page in Security Administrator We have a sub-admin role that we created and restricts them from everything but creating/modifying users, but they still have access to archive the auditing. I need to restrict them from having access to this function but I am unable to find any securable object to remove their access away from. The role has inquiry access to the Server page only and this still ...
0 2299
11/30/2010 4:09 PM
3 Replies and 3053 Views Asset Management data security  3053  3 Started by  wintergreen We used to have only one person taking care of Asset Management. Recently, we assign 2 people to process the AM and want to setup the data security, so that users can only access their own data.  I wonder if AM has similar process levels to limit users to access data  For example AM20, AM30, AM40, users can only add, transfer or dispose an asset in their own book (defined in the AM00).  Do I need to find out which field I nee...
3 3053
by  wintergreenJump to last post
11/9/2010 2:47 PM
3 Replies and 2589 Views Removing users with Requester Identity  2589  3 Started by  msjmg111 We need to clean up(delete) a large number of users with a Requester Identity and am looking for a simple, one time method of removal.  I do not want to delete the user, just the Identity.  Any advice on this topic would be appreciated.
3 2589
by  NickJump to last post
11/4/2010 9:49 PM
1 Replies and 2401 Views Add user in usergrpdef programmatically  2401  1 Started by  Nirav Bhatt We can add new user in user group definition manually using usergrpdef command. Does anyone know how can we add user programmatically in user group definition either through command line or through process flow
1 2401
by  ZekeJump to last post
11/3/2010 3:29 PM
1 Replies and 2789 Views Security Can getdbfields access a field in a related table?  2789  1 Started by  Anne I'm using this code to try to get the job class and it's not working.  Do I have the right syntax for the related field  Do I have to do 2 nested queries to achieve this if(trim(getDBField('EMPLOYEE','JOB-CODE.JOB-CLASS',form.REV_COMPANY,form.REV_EMPLOYEE))=='DIR')    'NO_ACCESS,' else    'ALL_ACCESS,'
1 2789
by  John HenleyJump to last post
11/1/2010 7:23 PM
0 Replies and 2338 Views Security rule to compare system date to a stored date  2338  0 Started by  ThomasT I want to write a rule in Security Administrator which compares the current system date to the HIRE DATE  from 'EMPLOYEE' table. I've tried various combinations of the rule functions but cannot get it. I know that the system date is stored in one format and the stored dates within the tables is in another format. Does anyone have any example of a rule they have used to write to compare the system date to a stored date (within any table)  T Thank you , Thomas
0 2338
10/25/2010 5:05 PM
1 Replies and 2878 Views LSF9 security by process level AND security location - is it possible  2878  1 Started by  RachelM We have been able to secure LSF9 using the element groups using either process-level or sec-location but not both; roughly what we're looking to do is ((process-level = 'X' and sec-location = 'Y') OR (process-level = 'Z')). Is that even possible using element groups Thanks.
1 2878
by  Jimmy ChiuJump to last post
10/25/2010 2:47 PM
6 Replies and 2475 Views getEmployeeId fails (return empty string)  2475  6 Started by  Dave Amen To all, Has anyone run into this error I have a simple rule to match the employee number on the screen with the employee number in their Identity using getEmployeeId(), but Inquiry in the screen returns a security violation, and puts this into the lase_server log file: 2010-10-05 09:34:33 com.lawson.lawsec.default.FINEST function return empty string Any thoughts or suggestions are much appreciated! Best regards, Dave (303) 773-353...
6 2475
by  Dave AmenJump to last post
10/21/2010 10:07 PM
2 Replies and 2922 Views Online Benefits Enrollment Security Violation  2922  2 Started by  This_Guy I have implemented Role Based Security (Check LS = Y) for our MSS/ES users combining the funtionality of both. However, when a user with both roles tries to go thru Benefits Open Enrollment they are receiving the 'Security Violation' message... I can't figure out. I have granted access to BN tables i thought would fix it... Any ideas which forms/tables need to be included to go thru the Open Enrollment
2 2922
by  This_GuyJump to last post
10/18/2010 6:54 PM
0 Replies and 2313 Views LAUA security - not allow Emp to change their own timerecord  2313  0 Started by  D Duke     We are not going to the new LSF 9 security until next year.  If anyone can remember LAUA security, we are trying to prevent a payroll clerk entering timerecords on PR36 fromchanging their own timerecords.    Has anyone done this (in the past) and can you remember what you did
0 2313
10/18/2010 1:24 PM
32 Replies and 19908 Views Mass Deleting Users in LSF 9  19908  32 Started by  Ellen Melton Has anyone found a way to mass delete users in LSF 9 - kinda the reverse of loadusers Our migration of users from 8.0 to LSF9 was a total mess. I'd like to basically start over for about 90 of our users. I've got the loaduser xml ready but I know it will fail because the existing users are tied to the SSOP identities that I'll be trying to load - hence I need to delete all the existing RMIDs. Any methods other than manually doing all 5500 one-by-one
32 19908
by  Ellen MeltonJump to last post
10/15/2010 6:21 PM
1 Replies and 3079 Views Process Level Security  3079  1 Started by  Kyle Gray I am trying to use a Process Level Security class to globally secure data by process level.&160; The formula I have written verifies in the build screens but when I apply the security class against the user I am unable to select any records on the HR11 when in fact I should have about 250 records to choose from.&160; I using the RM attribute, ProcessLevelControl (lawson delivered, as multi-attribute).&160; Below is the formula, if((SystemCode=='HR'||'PR'||'BN'||'PA'||'LP')&&(COMPANY=...
1 3079
by  Jimmy ChiuJump to last post
10/12/2010 3:15 PM
1 Replies and 2235 Views Security Reports  2235  1 Started by  Ruma Malhotra Is there a way to get by systemcode , the ids attached, their security class and the actions for every form in Lawson under the system code as a report. Has anyone been able to write or get a custom report and are willing to share &160;
1 2235
by  JoeJump to last post
10/12/2010 12:09 AM
5 Replies and 6029 Views Define element group  6029  5 Started by  wintergreen I created a&160; security class and use the element group(which was delivered by Lawson)&160;to control data security globally for all forms and files from Roles assgined to the user.&160; It is like this: PrimaryDataControl Class: Element groups - PROCLEVEL (Lawson delivered) if(user.attributeContains('PrimaryLevel',PROCESS_LEVEL)) &160;&160; 'ALL_ACCESS,' else &160;&160; if(user.attributeContains('PrimaryLevel',subString(PROCESS_LEVEL,0,3))) &160;&160; 'ALL_ACCESS,' else &16...
5 6029
by  Jimmy ChiuJump to last post
10/8/2010 6:30 PM
1 Replies and 2400 Views Security Class  2400  1 Started by  Jay2 In this system, I have adopted, there is a security case on our production server called PRODALLACCESS.&160; This class grants All Access to the following: Online: All the system codes listed (AR,&160;AC, CB, GL etc...)&160;but it does not give specific access to the tokes within. Securable Type: Form, Program, Table Data Source: GEN, LOGAN, PROD Can anyone tell me exactly what the purpose of this class would be&160; seems strange if it was giving access to the whole product line I woul...
1 2400
by  Jimmy ChiuJump to last post
10/7/2010 3:15 PM
18 Replies and 6101 Views How can I copy current version of Lawson Security from one server (environment) and install it on another ? Thanks  6101  18 Started by  RobertL
18 6101
by  Kwane McNealJump to last post
10/1/2010 1:09 PM
4 Replies and 2425 Views Password change date  2425  4 Started by  Jay2 Where does Lawson store the date of the last password change for a user
4 2425
by  Kwane McNealJump to last post
10/1/2010 1:06 PM
1 Replies and 4275 Views LS9 and cnvtape  4275  1 Started by  Dave Amen In the Lawson Security ENV profile you find these: - rptgen.exe is in Development Tools - cnvexp is in Delivery Tokens - cnvimp is in Delivery Tokens &160;- cnvtape should appear in Translation Tools When cnvtape exists in $GENDIR/bin but doesn't appear in the LS9 Security Administrator's 'Translation Tools' (or any other grouping of executables in ENV), does anyone know how to make it appear&160; Best regards, Dave (303) 900-AMEN
1 4275
by  Dave AmenJump to last post
9/30/2010 9:47 PM
2 Replies and 2548 Views Security Config Portal  2548  2 Started by  Scott Krueger We have users who use Portal at the office during the day. These users are Back Office users and they run Payroll and do HR stuff. How can we stop these users from accessing the standard Portal from outside the office and only allow them access to the ESS Can we do this by Port they are using or by IP.
2 2548
by  Dave AmenJump to last post
9/28/2010 5:49 PM
0 Replies and 2317 Views Securing mouseover messages in RSS  2317  0 Started by  Roger French Does anyone have a good method of securing the onmouseover events/messages within RSS I have secured buyers from the ability to actually Checkout, but that has also prevented the mouseover messages from appearing too. When the mouse cursor is put over the requisition information in the checkout list, I DO want the ability to see the messages, but I do NOT want the ability to actually checkout the requisition. Does anyone know how the mouseover messages are secured Thank you, Roger
0 2317
9/24/2010 2:28 PM
1 Replies and 2350 Views HR Security  2350  1 Started by  Jimmy Chiu I have pay information defined in HR10 as SEC_LVL 1 When I go in HR11. Only SEC_LVL 1 users can see the pay info. However, SEC_LVL 2-9 users can drill down on HR11 and still able to see the pay info. What am I missing
1 2350
by  Jimmy ChiuJump to last post
9/22/2010 4:17 PM
2 Replies and 8392 Views Auditing?  8392  2 Started by  MattD Howdy Gurus, Any ideas on ways to audit user activity I have discussed this with Lawson and they can only audit activity in the LSA tool. I want to audit actual users of the system. Any ideas on Lawson functionality or custom processes to audit this kind of activity. I would like to know of what your companies due to handle this or if there is just not a need for it. Many thanks for any replies. Matt
2 8392
by  Dave AmenJump to last post
9/16/2010 11:25 PM
3 Replies and 2418 Views How do I identify when a user has logged into ESS? Is there a way to track logins?  2418  3 Started by  terlec Is there a way to track Employee Self Serve logins&160;&160;&160; Knowledgebase mentions the user table, but I am not sure how that works.
3 2418
by  NickJump to last post
9/10/2010 9:50 PM
2 Replies and 4430 Views Different SOD scenarios for Finance and HR/PR  4430  2 Started by  subba We are planning to install LSF9.0 if any one can you provide different SOD scenarios for LAWSON Finance and HR/PR before creating roles/rules we need review those
2 4430
by  Dave AmenJump to last post
9/2/2010 2:59 PM
3 Replies and 2566 Views GL90 Drill to payments  2566  3 Started by  Margie Gyurisin We are creating a new role for someone to be able to drill back to payment information from the GL90. We have been able to get the payments to appear, but they can not see employee names. We have given them PR51 form access and they can see names on that form but they can not select an employee from the search box We have given them acces to all the tables that the PR51 references - EMPLOYEE, PRSYSTEM, PAYMASTR, PRTIME etc. Do we need to add some invoked program If so, which one(s)...
3 2566
by  John HenleyJump to last post
9/2/2010 2:26 PM
3 Replies and 2570 Views pr260 remove bank info  2570  3 Started by  Deleted User I'm trying to remove bank info from a security class that can run the pr260 Payment Detail report. I've removed the fields/tables in security laua that houses the bank info for the PR area...but it is still showing up on the report. I would have thought that this would surely do the trick.
3 2570
by  Margie GyurisinJump to last post
8/27/2010 7:43 PM
1 Replies and 4619 Views dme call Security Error in custom table  4619  1 Started by  Lorena Hi, We are using LSF9 for ESS. I created some custom htm page that display and update data in a custom file. I also created a custom 4GL program to view and update the table. The Security officer gave me access to the new table. I can look at the file and updated using my custom 4GL program however I can not do dme calls on that table and I can not query the table using Crystal reports. It looks like it is only related with dme calls. Here is the error saying that the Table data is...
1 4619
by  Ragu RaghavanJump to last post
8/21/2010 2:30 AM
10 Replies and 2925 Views LS9 ESS security and Servlet calls  2925  10 Started by  Lien Hi, we are on LS9 and came across an issue where an ESS employee can view another employee’s personal information through a servlet call. The employee uses a debugging tool to get the URL then substitute their employee ID with someone else’s. We’ve tried to lock down all the HR, PA, PR, etc. related tables and forms with conditional rules. But we are still able to return sensitive data using the servlet call. Tried with this rule: if(user.getCompany()==table.COMPANY&&user.getEmployeeId(...
10 2925
by  LienJump to last post
8/20/2010 1:28 PM
2 Replies and 2672 Views Dumb question  2672  2 Started by  This_Guy If there is such a thing...But, I can't figure this out. We are implementing RoleBased Security (Check LS = Y) for Ess/Mss for portal and one thing I cant seem to get to work for Manager Self-Service is the Drill on Employee Information piece in the Direct Reports listing. Basically, I just want to get rid of some of the links in that Employee Drill Menu: Current YEar Earnings, Deductions by Quarter, etc... We dont need managers to see this stuff, and I have resticted access to the files...
2 2672
by  Arvin OjalesJump to last post
8/17/2010 10:49 PM
9 Replies and 3745 Views Mass Assignment in RM  3745  9 Started by  TBonney Is there a tool that can be used to remove a role from multiple profiles at the same time, such as you you would apply it to multiple roles simultaneously using Mass Assignment in Resource Administrator We have a role that we'd like to remove from several hundred user profiles, but leave all other roles on those profiles in place. Has anyone else encountered this situation and know of a way to accomplish this Thank you.
9 3745
by  John HenleyJump to last post
8/13/2010 7:26 PM
3 Replies and 2716 Views Clean up of user accounts  2716  3 Started by  Jay2 I am looking to get rid of user accounts, on my development box, that have not accessed the system in 6 months. Is there a place where the last access date is stored If not, any other ideas
3 2716
by  Marc BurnesJump to last post
7/28/2010 6:30 PM
6 Replies and 3494 Views user reports  3494  6 Started by  Jay2 Does Lawson store the user creation date somewhere I need a user report with date the user was created. Any ideas
6 3494
by  Jay2Jump to last post
7/22/2010 12:50 PM
0 Replies and 2388 Views Report listing RM groups and users  2388  0 Started by  Ellen Melton Maybe I'm missing it somewhere.... Is there a report I can run that will list each RM group and the users assigned to that group
0 2388
7/21/2010 2:31 PM
4 Replies and 3478 Views Delete Update jobs  3478  4 Started by  Greg Moeller Is there a way to restrict the jobschd listing to only allow deletes of non-update jobs in the new Lawson security, or is that already built in&160; Looking at the security class, I only see All_Access or No_Access on the jobschd utility.
4 3478
by  Greg MoellerJump to last post
7/19/2010 4:35 PM
0 Replies and 2163 Views Removing a Role from Multiple User Profiles in LSF9  2163  0 Started by  TBonney Does anyone have a way that a particular role can bve removed from multiple user profiles, removing only that role and leaving any otehrs they have in tact We had created a role and applied it to all users a while back. Now we've determined that role is no longer necessary and would like to reomve it from all users. Has anyone ever made this change, en-masse, for all users Thank you.
0 2163
7/9/2010 3:49 PM
0 Replies and 2187 Views Conditional Rule using getSystemDate()  2187  0 Started by  Roger French Hello all, Trying to create a conditional rule within LSF9 security. I want to do something only if the the System Date is within two other dates on another screen such as the BS01 (a date range). But I can't seem to get the getSystemDate() function within the rule editor to work. Does anyone know the actual format of the returned date by using getSystemDate(yyyyMMdd) I have tried it and it seems to not be returning a correct date in the same format (yyyyMMdd). It seems to be retu...
0 2187
7/7/2010 6:51 PM
1 Replies and 4097 Views Tokendef - Shell Script Error  4097  1 Started by  trueblueg8tor My company is on LSF AIX environment with 8.03 Apps and Security. I created a couple of simple shell scripts and then used tokendef to define them as forms. After I created the job using jobdef, I tried to run submit the job from portal but got a 'Job Queue is Secured' violation. I took a look at the permissions of the actual scripts and they all have read-write-execute permissions for the user I logged in with into portal. Any ideas
1 4097
by  MattDJump to last post
6/30/2010 6:33 PM
3 Replies and 11924 Views 9.0 LAUA -a (Windows/AD)  11924  3 Started by  Roger French Ok, Have discovered that a new option for laua on a Windows/AD platform. There is an issue if using the AD with Windows, and *not* being able to see users who were added to a global group within AD, in LAUA. (The KB Article is 100688.) So if I tried to add a new user to Lawson, first add them to a global user group in AD. Then synch up with the Lawson app server (where the environment is at). (So, this next part I am asking if others have seen this, or if this is t...
3 11924
by  RMcJump to last post
6/29/2010 3:07 PM
5 Replies and 2814 Views Writing rules on Table files  2814  5 Started by  RobertL Anyone knows how to write conditional rule access for Currency Code table file This is the CUCODES table file under IF system code in the Securable Type Files. I have a Currency Code Form CU01.1 and want to write a rule to block user access so that they cannot add or change currency code. I set the Unconditional Access for Action to 'I' for CUCODES under IF system code in the Files level (not Online), but it is not working; user can still add/change a new currency. I want to do this in th...
5 2814
by  Dave AmenJump to last post
6/10/2010 11:36 PM
1 Replies and 2107 Views Internet Access into Lawson  2107  1 Started by  LynnS Not sure if posting in the right forum. My organization is implementing ESS/MSS and plans to open up Lawson access to outside Internet with SSL in place. Please share with me any info you have on the process to setup and any problems or red flags to look for. Thanks.
1 2107
by  John HenleyJump to last post
5/27/2010 2:16 PM
To join the discussion you need to register first. (Registration is free!) If you are already a registered user please login to join the discussion.
Page 4 of 7 << < 23456 > >>

RSS Feed Available