Search this forum:
Search
To join the discussion you need to register first. (Registration is free!) If you are already a registered user please login to join the discussion.
Page 6 of 6 << < 23456
Topics
 Replies
 Views
 Last Post
3 Replies and 3921 Views Securing Drill on ESS - MSS Role  3921  3 Started by  Deleted User Hi, all! We are on 9.0 and using LS security. We have a single sign on for our Lawson users using Active Directory bound with&160;ldap. For those users who have access to forms directly (we call them dual users such as payroll clerks, purchasing requestors etc…) and who have self service roles we secure them through rules which seem to be holding pretty well. Such as confined to their own process levels etc... Lawson provides out of the box ESS and MSS standard roles. With a little tweaking t...
3 3921
by  NickJump to last post
10/06/2008 5:38 AM
7 Replies and 4041 Views Mass Updating/Changing SSOP passwords  4041  7 Started by  shashank Hi, I need to mass update&160;SSOP&160;passwords for all users. Does anyone know if&160;this is&160;doable, and how thanks. &160;
7 4041
by  John HenleyJump to last post
10/03/2008 10:09 AM
2 Replies and 2619 Views Restricting Report Parameters: PA100  2619  2 Started by  Number5 PA100 offers a parameter for Update or Report Only.&160; My customer would like to limit certain users to Report Only.&160; Standard Security restrictions (version 9.0) on this field have been ineffective.&160; (I assume this is because the field options are not table-based, but are provided by the Cobol code.)&160; Does anyone know of a way to restrict this through 9.0 Security
2 2619
by  Number5Jump to last post
10/01/2008 6:00 PM
3 Replies and 2486 Views Auditing Software Recommendations?  2486  3 Started by  Deleted User We're looking to establish some fine-grained auditing here - at least specifically to try to track who deletes data from specific tables. The weblogs are, how shall I say this - filled with a lot of information --> and still don't provide a good trail to find this data. IOS provides the same voluminous info, again, without the detail we need. Our oracle logs give great info - except that since it's database auditing, the user ID is always the admin ID (and he doesn't have rights to mess with dat...
3 2486
by  John HenleyJump to last post
10/01/2008 1:49 PM
2 Replies and 3822 Views Login and Cookie format  3822  2 Started by  Russ I can open a url in IE constructed like this to login, access /servlet/Router/Transaction/Erp, and get valid xml returned: http://lawson-server:port/sso/SSOServlet_action=LOGIN&_ssoUser=myid&_ssoPass=mypa55wd&_ssoOrigUrl=http://lawprod:9082/servlet/Router/Transaction/Erp... with proper params. This does not work the same from an asp, for remote login, using Msxml2.ServerXMLHTTP.4.0: code sample: Set objSvrHttp = Server.CreateObject('Msxml2.ServerXMLHTTP.4.0') objSvrHttp.ope...
2 3822
by  RussJump to last post
10/01/2008 8:48 AM
0 Replies and 1841 Views Best way to migrate 8.0users to LSF9?  1841  0 Started by  Jimmy Chiu What would be the best way to keep all the users NT in tag and migrate all the details from the old environment to LSF9
0 1841
09/29/2008 1:12 PM
2 Replies and 5176 Views Parsing the Form ID Security report  5176  2 Started by  RobT Hi, I am new to Lawson and I'm in the process of writing a script to parse the Form ID Security Report. I'm wondering if anyone has a listing of all the possible values for the 'Unsecured FCs' column as well as a definition of what they mean No one in accounting (who's been managing the system) knows or knows where to look and I'm trying to have IT take over administration of this.&160; Example: &160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&160;&160;...
2 5176
by  k-rockJump to last post
09/25/2008 2:46 PM
1 Replies and 4384 Views LDAP setup  4384  1 Started by  Ben Coonfield I have a working LSF9&160;environment and I want to create a second one.&160;I created a new LDAP instance (TDS 6.1).&160; It seems that I need to create a new suffix and define an object to be used as the top of the hierarchy.&160;&160; When I try to create a new subtree with an ldif import, something like dn: o=lwsn,dc=net,dc=myorganization,dc=org changeType: add objectclass: organization objectclass: top I get an error.&160; Either I get 'Suffix entry has not been created', or if I...
1 4384
by  Ben CoonfieldJump to last post
09/18/2008 5:38 PM
4 Replies and 2343 Views Deletion of AR customers - Audit  2343  4 Started by  Petter Can you permanently delete customer accounts in Lawson If so, is there a way to see what accounts have been deleted and by who Thanks
4 2343
by  PetterJump to last post
09/17/2008 10:20 AM
9 Replies and 4081 Views ESS/MSS - Org chart - conflict with core user  4081  9 Started by  ChrisW Hi!&160; Has anyone implemented ESS/MSS and Org chart functionality in Portal and LS 9&160; Because of the access required on the Employee table, I'm having issues with core users (i.e. AP processor) and the ability to 'drill' on an employee's information which shouldn't be available to anyone but the employee&160;(salary). I've tried field level security on the Employee and PAEmployee tables, but the performance is really bad, to the extent of not returning data. Any suggestions
9 4081
by  ChrisWJump to last post
09/12/2008 3:42 PM
10 Replies and 4648 Views Process Level Security and ESS - HR Tables Secured  4648  10 Started by  GregSl I have a security class on LAUA (eg. HRUser)&160;, which&160; restrict users&160;from accessing the EMP(Employee Table) &160;based on the Process Level. On the Employee Self Service>&160;My Pay option&160;,&160;&160;the&160;HRUser security&160;Class users, does not&160;&160;see any Pay/Tax data.The reason being the PAYMASTER and other related &160;tables' &160;access is secured by Company/Process Level. The affected&160;Users are on the same Process Level that is secured. I am t...
10 4648
by  GregSlJump to last post
09/09/2008 1:30 PM
2 Replies and 2840 Views Auditing LDAP changes made via loadusers  2840  2 Started by  Ellen Melton I posted this on Lawson Community as well, but thought I'd try here too. Has anyone found a way to capture LDAP changes made via the loadusers utility. We have a nightly scheduled job running under the lawson userid that uses loaduser utility to add new employees to the LDAP for ESS. I am not seeing any of these changes when I look in the Lawson Security Admin Audit Report even though I include lawson user in my report list. I do see all changes made by a given individual via the LS Administrat...
2 2840
by  Kwane McNealJump to last post
09/08/2008 9:40 AM
1 Replies and 2018 Views Migrating LS from one server to another  2018  1 Started by  MattM I have been researching the migration process for security from one LS9 box to another.&160; As far as I have found, the best way would be to do an lsdump on the profile to get all of the security classes over. Then either use lsdump one at a time on the roles or recreate the roles by hand. Does anyone have any experience doing this or is there a better way Any ideas or help would be greatly appreciated. &160; &160;
1 2018
by  Kwane McNealJump to last post
09/08/2008 9:34 AM
3 Replies and 3973 Views ESS file *** is secured message  3973  3 Started by  Wade-T I am receiving messages 'file PROJECT is secured' and 'file SYSTEM is secured' when I click on Personal Profile and Emergency contacts in ESS.&160; After I click 'OK' on the pop-up message, the data displays. It doesn't do that in my test environment and I checked the security rules between the two systems. I really don't want to deal with Lawson Support. What am I missing Thank you,
3 3973
by  John HenleyJump to last post
08/28/2008 9:44 AM
2 Replies and 2487 Views MSS Direct Reports Security Rule  2487  2 Started by  Eugene Sarabia Has anyone able to secure the Manager Self Service to only allow access to direct reports and employees reporting under the supervisors I had used the Lawson examples but I am getting errors and it is not working. Here's the formula: &160;&160;&160; &160;&160; if(user.isSupervisorOf(getIdFromEmpNbr(lztrim(table.COMPANY),lztrim(table.EMPLOYEE))))'ALL_ACCESS'; else'NO_ACCESS'; &160;
2 2487
by  Eugene SarabiaJump to last post
08/26/2008 4:43 PM
3 Replies and 2846 Views Print Manager and JobScheduler  2846  3 Started by  trueblueg8tor Thanks for reading. I have a user that's missing the 'PrintManagrer' and 'JobScheduler' when using IC229. I added the environment forms 'prtmgr' and 'jobschd' but it's still missing for him. Any suggestions
3 2846
by  trueblueg8torJump to last post
08/22/2008 10:25 AM
2 Replies and 2981 Views LSF9, RSS and Templates (Shopping)  2981  2 Started by  Elizabeth Ardito We have a shopping list that is company wide with basic items.&160; Is it possible to lock down PO15.1, based on the name of the template and if it is a specific user and give everyone else inquiry only access Any assistance would be greatly appreciated. Elizabeth Ardito Systems Analyst Middlesex Health System
2 2981
by  Elizabeth ArditoJump to last post
08/22/2008 7:14 AM
0 Replies and 2114 Views LSLOAD crashing LS Security Server  2114  0 Started by  Maris Fisler Is anyone having issues using the LSLOAD programs&160; We are simply dumping a profile that exists then trying to load it as a new profile.&160; This profile has about 450 security classes and as it is doing the LSLOAD it fails in different places and takes down the Security Server and the Application every time.&160; We have to restart Websphere and Lawson from the beginning.&160; GSC has been of no use as of yet, anyone surprised about that&160; Thanks
0 2114
08/20/2008 5:29 PM
2 Replies and 2534 Views ESS/MSS Rules  2534  2 Started by  Wade-T Is there a listing of which files to grant access to for ESS/MSS to work
2 2534
by  Wade-TJump to last post
08/14/2008 2:12 PM
2 Replies and 3476 Views ESS/MSS Password Change  3476  2 Started by  Steve Datish We are in the process of rolling out ESS to 4,000 users and are trying to limit the maintenance on ESS passwords.&160; I have a few questions: What logic do you use to assign the initial ESS password (ex. birth yearlast 4 of SSN) Do you allow ESS users to change their password Do you force users to change their password after initial log on Do Lawson users have two separate ID's, one for ESS/MSS and a separate ID if they are a Lawson application user Thanks.
2 3476
by  kflores01Jump to last post
08/06/2008 10:53 AM
1 Replies and 2038 Views Form Tab  2038  1 Started by  trueblueg8tor Thanks for reading. I think I know the answer but I wanted to make sure. With 8.0.3 security, if a Change Function Code is given the user is able to perform Change on all form tabs given correct &160;
1 2038
by  John HenleyJump to last post
08/05/2008 9:27 AM
2 Replies and 2583 Views Workunits  2583  2 Started by  trueblueg8tor Thanks for reading OS: Unix Apps: 8.0.3 PF: Integrator RM: MS Adam DB: DB2 Is there a way to increase the number of workunits displayed in an inbasket
2 2583
by  trueblueg8torJump to last post
08/05/2008 8:44 AM
1 Replies and 2067 Views Securing HR tables w/o Proc Lvl from Add-Ins  2067  1 Started by  RMS Using LSF 9 Lawson Security:&160; I would like to secure the&160;BENEFITS table to a subset of employee IDs based on the&160;users&160;allowed process levels. &160; I've created a multi-value attribute 'MultiProcLvls' on the users RM schema that contains the&160;process levels the user is allowed to see.&160; This works great to secure tables that contain Process Level from Add-ins query, but other tables, such as Benefits, only contain&160;Company and Employee.&160;So I'm trying to us...
1 2067
by  John HenleyJump to last post
08/04/2008 1:43 PM
5 Replies and 2903 Views Search Box Lockdown  2903  5 Started by  GregSl I need to restrict ESS users from using the Search box, as they have access to HR11 to inquire Personal data. Any assistance is greatly appreciated. &160; &160; &160;
5 2903
by  GregSlJump to last post
08/01/2008 7:00 AM
16 Replies and 6616 Views LDAP Login  6616  16 Started by  Deleted User I am attempting to log into are new development lawson ldap server.&160; I must be missing something.&160; Does anyone have an example of what this looks like&160; Here is the ldap information from the install.cfg file. LDAPBINDDN=CN=root,CN=lsfdev01,DC=prod,DC=bcidaho,DC=loc LDAPDATADN=o=lwsnrmdata LDAPHOST=LSFDEVAPP1.some.place.loc LDAPLOCAL=TRUE LDAPOIDARC=1 LDAPPASSWORD=xxxxxxxxxxxxx LDAPPORT=389 LDAPPREFIX=zz LDAPTYPE=ADAM LDAPTYPEGEN=com.lawson.lawrm.ldifgenerators.ActiveDirG...
16 6616
by  Kwane McNealJump to last post
07/31/2008 12:18 PM
3 Replies and 2402 Views LS FastTrack  2402  3 Started by  MattM Can anyone offer insight on what exactly FastTrack is
3 2402
by  itsjustmeJump to last post
07/25/2008 1:51 PM
1 Replies and 2520 Views Related Forms  2520  1 Started by  MattM Does anyone know how to remove or secure the 'Related Forms' drop down from forms like AR11.1 Or a way to secure the forms listed I have denied access to the forms listed and the users can still access them via the related forms link.&160; Any help would be appreciated.
1 2520
by  John HenleyJump to last post
07/25/2008 9:40 AM
17 Replies and 8546 Views Loadusers utility problem  8546  17 Started by  Deleted User OK, I have the following code setup in my loadusers.xml script.&160; For the life of me, I cannot figure out why this works when I don't have the Email tag setup.&160; If I put in the email bit, it fails.&160; Can anyone shine a light on this FYI, Agency, UnixID, ProxyUserID WfUser are custom fields and work fine.&160; I've tested all of them individually.&160; The only one that fails is email. &160;&160;&160;&160;&160;&160;&160; od 90' Role='LoganAllAccess' Agency='014' U...
17 8546
by  GregSlJump to last post
07/23/2008 8:59 PM
6 Replies and 3729 Views substitue SSOP id while using AD BIND  3729  6 Started by  Ashley Ardoin Need to be able to substite an SSOP identity&160;... Example have an RMId of pr100rw1, a SSOP User of jsmith (bound to AD), and OS id (Window NT) of localcomputer\xpr100rw1 (local computer account...not AD account!)... would like to change out SSOP User jsmith (AD account) with mjane (also an AD account) &160;and leave the rest unchanged... an thoughts
6 3729
by  RMSJump to last post
07/23/2008 3:27 PM
8 Replies and 3650 Views 9.0 Apps & Security  3650  8 Started by  trueblueg8tor Has anyone implemented 9.0 Apps & Security at the same time
8 3650
by  itsjustmeJump to last post
07/22/2008 6:28 AM
1 Replies and 2842 Views Social security number  2842  1 Started by  Deleted User How would you secure the SS number field on HR11 form. We are windows, still using Laua on version 9. Any help appreciated
1 2842
by  MattMJump to last post
07/17/2008 3:07 PM
1 Replies and 2402 Views Drill around and Select Tables/Systemcodes  2402  1 Started by  MattM Has anyone got any ideas on how to determine which files and/or systemcodes are required for drill and select access on forms. Currently, the method I am using is to do a drill explorer on the fields with a drill or select available within the security admin tool. How is everyone else doing this It would be nice to determine at least which sysemcodes files are being accessed. &160; HELP!! Any ideas would be appreciated.
1 2402
by  Kwane McNealJump to last post
07/11/2008 2:04 PM
2 Replies and 3328 Views Process Levels and attributes  3328  2 Started by  MattM I am working on how to best build access to our process levels. There are 50&160;accounts with a range of accounting units underneath as follows Account = 101 Accounting units = 101001 - 101999 Account = 102 Accounting Units = 102001-102999 And so on..... I would like to create a custom attribute for Account of 101, 102, etc... and grant access to the associated accounting units. Being that there are so many accounts, I would like to be able to accomplish this with a rule referencing t...
2 3328
by  MattMJump to last post
07/01/2008 4:04 PM
2 Replies and 4007 Views Element Groups  4007  2 Started by  trueblueg8tor Are Element Groups simply a set of keys across Lawson tables Is this statment correct - 'even though the column names in some Lawson tables are different they may refer to the same thing' What are some Element Groups commonly used Is this mainly for Data Level Security
2 4007
by  John HenleyJump to last post
07/01/2008 2:10 PM
5 Replies and 2575 Views EMSS and LS9  2575  5 Started by  MattM After looking at Lawson's ESS and MSS Security Classes in the provided role templates, it appears that these are only for use with EMSS users that do not have access to the search bar as they provide access to many forms and files that many users with the search bar should not have access to. Has anyone any good suggestions on how to approach EMSS on LS9 for users hat have access to the search bar
5 2575
by  kliveJump to last post
07/01/2008 2:00 PM
8 Replies and 11128 Views Securing based on Process Level  11128  8 Started by  Shari We have a new position that needs inquiry access to HR11 but only for those employees within the same process level. For example: John Doe is in PLevel 001 - should only be able to see employees in his PLevel=001 Jane Doe is in PLevel 002 - should only be able to see employees in her PLevel=002 Has anyone found a fairly simple way to accomplish this Thanks! -Shari
8 11128
by  kliveJump to last post
07/01/2008 1:48 PM
4 Replies and 3239 Views WF12 and LSF9 Process Flow  3239  4 Started by  Deleted User &160; In are current Lawson implementation we have give certain users access to wf12 in order to update routing.&160; In LSF9 it looks like WF12 is gone.&160; Is there a way to do this in LSF9 without giving the users&160;full access to ProcessFlow Admin Thanks --JayR &160; --JayR
4 3239
by  David WilliamsJump to last post
07/01/2008 8:08 AM
3 Replies and 2616 Views LSF9, HR/PR and limiting access to one process level  2616  3 Started by  Elizabeth Ardito Is there a way to limit someone's access for company and process level&160;at a high level or do we need to modify individually all tables, online programs and batch programs Any assistance is greatly appreciated. Thanks! Elizabeth Ardito Systems Analyst Middlesex Health System
3 2616
by  Elizabeth ArditoJump to last post
06/27/2008 9:18 AM
3 Replies and 3835 Views Design Studio  3835  3 Started by  trueblueg8tor I know that a user's security class affects which forms he or she can open in Design Studio. But what exactly grants access to Design Studio itself
3 3835
by  trueblueg8torJump to last post
06/26/2008 12:09 PM
1 Replies and 2910 Views AP Vendor drill shortcut  2910  1 Started by  Wade-T What would the IDA call be to create a shortcut for a few of our staff to monitor their A/P payments in the 9.0 environment&160; The 8.03 shortcut was: https://servername/servlet/ida_TYP=OV&_OUT=HTML&_PDL=PROD&_SYS=gl&_FN=APVENMAST&_OV=281&_ON=VendorPaidInvoices&_IN=VENSET1&K1=VNDG&K2=vend &160;
1 2910
by  John HenleyJump to last post
06/23/2008 10:53 AM
1 Replies and 2585 Views Blank under Name in LAUA Security profiles  2585  1 Started by  Deleted User I have a sample output in the following from Lawson LAUA Security profiles: &160; Security Class User Name ADMIN NT00000131 &160; USER ...
1 2585
by  John HenleyJump to last post
06/18/2008 4:21 PM
3 Replies and 2587 Views 9.0 Apps & 8.0.3 Security  2587  3 Started by  trueblueg8tor Is 9.0 Security required for 9.0 apps
3 2587
by  trueblueg8torJump to last post
06/17/2008 10:02 AM
3 Replies and 3696 Views laua Data Security reports  3696  3 Started by  Deleted User I'm confused about a few specific but correlated things on the laua data security listing report: &160; 1) If there is no value in the 'System Code' spot, does that mean that for&160; every system code the Security Class has access to based on the FormID Report - they have access to for the *same*&160; 'From' and 'To' Company/Process Levels based on that row in said Data Report &160; 2) same type of thought - if there is no value in the 'Product Line' AND 'System Code' does that make th...
3 3696
by  k-rockJump to last post
06/14/2008 12:49 PM
1 Replies and 2168 Views Process Level/Site Per User  2168  1 Started by  trueblueg8tor When converting to LSF 9 security how are you attaching Process Levels to users Are you using a custom attribute in RM Our enterprise has two ids (one apps one ess) per user so I there isn't a need for me to create an ESS service for app users.
1 2168
by  John HenleyJump to last post
06/06/2008 9:21 AM
5 Replies and 2944 Views LAWSON SECURITY - APPS REPORTING  2944  5 Started by  Deleted User I work for a small shop on a Lawson 8.1 apps, 8.1 environment, Unix - AIX, &160;DB2 applications. We are going thru a SOX audit and the auditors have found several 'issues' with our Lawson procedures.&160;Since my boss and I are the only Lawson Sys. Admins - and there is no program promotion software in place, the current procedures we follow are documenting changes, documenting user testing, submitting change control docs to committee which meets weekly and then I (the developer) move the mod...
5 2944
by  John HenleyJump to last post
06/03/2008 11:44 AM
3 Replies and 2525 Views LS9 - Unix  2525  3 Started by  ChrisW Hi!&160; We are on LSF9 using Lawon Security 9 on Unix and&160;are getting ready to deploy ESS/MSS.&160; Does each employee need to have a UNIX id in order to store who updated the field for audit purposes
3 2525
by  ChrisWJump to last post
06/03/2008 6:55 AM
2 Replies and 3825 Views laua vs. 9.0 Data Security  3825  2 Started by  Peter Wilmot Anybody have any ideas on this&160; In laua security, we had the system code AC for Data Security tied down to specific activities for specific security classes. For example, activity 41279901 was secured using the combination of 'company/activity group range', 'company/activity range' and 'security code/activity range'. This would have looked like this: From Company&160;&160;&160;&160;&160; To Company&160;&160;&160;&160;&160;&160;&160;&160; From Process Level&160;&160;&160;&...
2 3825
by  Peter WilmotJump to last post
05/30/2008 12:20 PM
1 Replies and 2304 Views WARN [LauaSecurityUser] Value for attribute 'VENDOR' and data area '' is NULL  2304  1 Started by  Ben Coonfield I am seeing many lines in the ios.log file such as: WARN&160; &91LauaSecurityUser&93 Value for attribute 'VENDOR' and data area '' is NULL or WARN&160; &91LauaSecurityUser&93 Value for attribute 'CUSTOMER' and data area '' is NULL This is a 9.0.0.4 environment, using LAUA security exclusively, and we have not defined any rules with the new security tool.&160; Is there some kind of misconfiguration causing&160;these messages&160; They do not appear to be causing anything to fail as ...
1 2304
by  John HenleyJump to last post
05/30/2008 7:10 AM
3 Replies and 3113 Views Disabled Assignment Tab(HR11) does not refresh  3113  3 Started by  GregSl I have managed to disable the Assignment Tab by using the following rule. If (isElementGrpAccessible('PROCLEVEL','I,','HR',form.EMP_COMPANY,'CORP')) 'NO_ACCESS' else ''I' My problem is when I enter an Employee ID from a different Process Level it will work the first time, but the Assignment info is blank. If I enter an ID from Corp process Level it will freeze the tab.But will not refresh or enable, when I enter different Process Level EID. Has anyone come across this situation Greatly ap...
3 3113
by  John HenleyJump to last post
05/29/2008 7:47 AM
5 Replies and 4888 Views Minimum security settings  4888  5 Started by  Deleted User What are the minimum laua security settings for LOGAN items to allow a typical end user to access the Portal What are the minimum laua security settings for Environment items to allow a typical end user to function We are at env 8.0.3
5 4888
by  John HenleyJump to last post
05/14/2008 7:34 AM
1 Replies and 3067 Views 9.0 Security Best Practices  3067  1 Started by  trueblueg8tor Background: In general, most of our users are restricted to their site that's assigned in HR11/Employee file. We use 2 ids, 1 for ESS and another for application users. The application users are generated by an algorithm and stored in a table. Issue: How is everyone else enforcing what was 'Data Level' security in 8.0.3 for application users Possible Solutions: (A.) I could create a custom RM attribute that holds a user's site/process level and have a Process Flow (PF Integrator) maintai...
1 3067
by  John HenleyJump to last post
05/05/2008 1:46 PM
6 Replies and 6887 Views Lawson 9 Security-Role does not recognize Rules  6887  6 Started by  GregSl I came across a situation, when I set CheckLS='YES', the Role does not recognize the Rules to access the Company and Process Level, based on the element group. It gives access to everything ! Same thing happens,&160; if I deny access to HR system code, for the same Role. They work fine on LAUA with checkLS = 'No' When using LAUA it's easy to find exceptions&160;from the ios.log. In the above situation, what are the logs I can check where the Role's permissions are located &160; Greatly ...
6 6887
by  trueblueg8torJump to last post
05/04/2008 10:54 AM
4 Replies and 12367 Views Lawson 9.0 Security  12367  4 Started by  Kate Liamero I have 2 security classes assigned to a role in Lawson LSF 9.0 security. One class only allows access to all AP20 tokens and denies all other AP forms. The second class only allows access to MA64 tokens and denies all other MA forms. Both classes assigned to a role and to a user. When I login I can access all MA and AP forms. If I go back into the classes and explicity DENY ALL MA forms including the MA64 in the AP CLASS and explicity deny ALL AP forms includi...
4 12367
by  trueblueg8torJump to last post
05/01/2008 9:12 AM
13 Replies and 5272 Views ESS and LS9.0  5272  13 Started by  Deleted User I would like to use LS 9.0 for users to access their ESS information. We have over 100 companies and need users to access their own ESS information.
13 5272
by  Deleted UserJump to last post
04/29/2008 3:50 PM
3 Replies and 4043 Views Lawson Account can not log into portal  4043  3 Started by  John Crudele We are using the LDAP bind. The only user we are having an issue with the the Lawson user. The error we receive when we log into portal is WARNING: LDAP authentication failed for user with dn 'CN=Lawson User,OU=Service Accounts,OU=Administrative Accounts,DC=endurancebermuda,DC=net'. Message: javax .naming.AuthenticationException: &91LDAP: error code 49 - 80090308: LdapErr: DSID- 0C090334, comment: AcceptSecurityContext error, data 531, vece Any ideas would be appreciated &160; Thanks J...
3 4043
by  trueblueg8torJump to last post
04/24/2008 1:30 PM
0 Replies and 2539 Views Hooray!  2539  0 Started by  trueblueg8tor This has probably already been solved but I've been waiting so long for this I had to share it. Here is an example of a query you can use if you ever wondered what security classes have a form with certain function codes. (Note, obviously, this is intended for LSF environments where GEN is a relational db) Enjoy! --Tell Me Which Security Classes Have “A” AND “S” Function Codes for PO420 --All Security Classes Minus... SELECT DISTINCT SECCLASS FROM YOURSCHEMA.SECCLASS WHERE SECCLASS NOT ...
0 2539
04/23/2008 3:03 PM
0 Replies and 3104 Views secload -m not merging and stoplase issues  3104  0 Started by  Joe O'Toole I'm trying to merge some new security settings for HR into a Finance only LAUA security class. Per Lawson's documentation, I ran the secload -m and then ran a secinteg -V (no errors) then ran a bldsecdict -d (no errors). Did a stoplase / startlase and did a lawsec off / on. Went into LAUA and the security class does not show any of the new items merged. As a side note, every time I do a stoplase and startlase our&160;job and printmgr security does not come back up properly - everyone can see ot...
0 3104
04/23/2008 2:44 PM
9 Replies and 3298 Views Password Recovery for ESS Users?  3298  9 Started by  Deleted User For those who have implemented LSF90 ESS on Windows environment and ADAM - how do you take care of users forgotten password Do your users call your IT and let the IT&160;folks&160;reset and issue a temporary password or have you implemented a password recovery application that emails a password reset link to your users and let the users take care of resetting their own password Appreciate the insight.
9 3298
by  Deleted UserJump to last post
04/23/2008 1:30 PM
7 Replies and 5284 Views Bookmarks Missing for ESS Users  5284  7 Started by  trueblueg8tor In our test Lsf environment some of our ESS users who have are being secured with 9.0 security are missing bookmarks. - They are a member of a bookmark group that has been granted access to the ESS bookmarks - They have a portal role where I've locked the ESS bookmarks (Subscription and Layout) - They all have an 'EssRole' that has a Security class that has a rule that grants access to the Logan productline. - My ESS id works fine but the only difference I can see is that I have an ...
7 5284
by  Joe O'TooleJump to last post
04/15/2008 9:36 AM
2 Replies and 3271 Views Automating authentication for DME calls  3271  2 Started by  Deleted User I am looking to use DME to interface data out of Lawson to some non Lawson app. The issues is a need a to automate the authentication. Any ideas
2 3271
by  Deleted UserJump to last post
04/10/2008 10:16 AM
6 Replies and 3315 Views wiped out all security classes for all users on test!!  3315  6 Started by  Deleted User On the test system, I removed the security class for ONE person and it removed it for ALL USERS...We can no longer log into the test system, since none of us have SECURITY CLASSES or ROLES, etc. Our network admin cannot even log on. This was on the test system and I think my downfall was when I did a control home on the users list to go to the top and it put signs to the left of each person...which I now recognize must have selected ALL users...when I went into the one user to remove her sec...
6 3315
by  Deleted UserJump to last post
04/08/2008 4:30 PM
4 Replies and 2736 Views Lawson Security before or after 9.0 apps?  2736  4 Started by  Ellen Melton We just went live on LSF9 using LAUA and 803 apps.&160; I'm&160;interested in recommendations on when to implement Lawson Security.&160; I was&160;ready to start discussions on Lawson Security&160;and looking for Lawson consulting help on the planning phase when my lead developer said everything she is hearing from our Lawson Project Manager indicates that it is best to wait until we are fully migrated to 9.0 applications before we even begin looking at Lawson Security. What are the pros/c...
4 2736
by  kliveJump to last post
03/10/2008 12:16 PM
0 Replies and 2464 Views Securing MSS to see only their positions  2464  0 Started by  psherry I wrote a rule on PAPOSITION&160; in LS9.0 if(trim(getDBField('EMPLOYEE','POSITION',user.getCompany(),user.getEmployeeId())) == table.SUPERVISOR) &160;&160; 'ALL_ACCESS,' else &160;&160; 'NO_ACCESS,' This does show only the positions that report to the supervisor in MSS but I can't figure out how I can also show the positions under employess who have their own direct reports. So a Director sees positions that report to him but doesn't see the manager positions. Wondered if anyone has t...
0 2464
03/04/2008 5:06 PM
5 Replies and 10913 Views Lock pay field  10913  5 Started by  Deleted User Hey, I'm looking to see if it is possible to lock the pay field so that you can't see it for just certain departments. Like say ER there is a sec class called eradmin. Lock the pay field for them so they can't see say erdirector but they can see every other class Is that possible or is it just a all or nothing Thanks Kevin
5 10913
by  kliveJump to last post
02/28/2008 4:07 PM
4 Replies and 2669 Views Securing RSS...  2669  4 Started by  klive Haven't seen much on this and I have tried several things thought someone here might be able to help...I want to be able to setup security for RSS to not allow requesters to approve their own requests...My thought was to attack this from the Approvers perspective...but since RSS doesn't give me forms and fields its a little difficult to determine where and what rules to write.&160; Any assistance would be greatly appreciated...
4 2669
by  kliveJump to last post
02/26/2008 3:18 PM
17 Replies and 13667 Views Can't View Print Jobs  13667  17 Started by  msjmg111 I have a multi-step job defined with 2 steps, the first step is a ftp and the second runs hr511. I also have a distribution list set up on the hr511 step to distribute the report to a person still using the LAUA security and a person using the LS 9.0 security. The person with the LAUA security gets the report and can view it in their print manager, the other person with 9.0 gets the report but cannot see it in her print manager. So we know the distribution is correct, but something in 9.0 sec...
17 13667
by  trueblueg8torJump to last post
02/25/2008 8:34 PM
1 Replies and 2912 Views Provisioning & Password syncronization  2912  1 Started by  Deleted User I'm new to Lawson, and more experienced with the middleware that Lawson9 uses, (WAS, LDAP, etc) so need some assistance on a couple of issues. I'm using TAMeb (WebSEAL) to secure Lawson, however we would like to provision users using ITIM, or use IDI to syncronize the passwords between Lawson and TAM. However Lawson uses 'Bouncy Castle' to encrypt the passwords stored in the LDAP. It is responsible for encrypting the users password (using the selected algorithm) and storing it in the Law...
1 2912
by  trueblueg8torJump to last post
02/25/2008 8:29 PM
3 Replies and 2878 Views Copy RM Groups between LDAPs  2878  3 Started by  Ellen Melton Is there a way to copy groups defined on RM Administrator between LDAP instances&160; I have my groups now defined in our Production box (going live in a couple weeks) and now want to setup the same groups in our Test box.&160; The lsdump/lsload doesn't appear to have a parameter&160;for Groups, only Roles.&160; We are LSF 9.0.0.3 / UNIX / Tivoli.
3 2878
by  John HenleyJump to last post
02/12/2008 4:35 PM
3 Replies and 5466 Views Restricting employee from seeing one dept  5466  3 Started by  psherry The payroll manager wants her payroll clerks to see all employees except for employees with their departments. On example is I built a security class for Pay Modeling, so they have access to PR89.1. I wrote a conditional rule on the table Employee stating if table.department == 4710 no access else all access and that works on the selects but they can still enter the employee in the emp-employee field on the form. I been trying to write a conditional rule on the form to restrict employees in 471...
3 5466
by  psherryJump to last post
01/31/2008 3:20 PM
2 Replies and 2951 Views LS 9.0 not securing  2951  2 Started by  Roger French I've got a user set up in 9.0 LS security (CheckLS flag = Y). User does not exist in laua. User has NO roles assigned to him. User can log into Portal ok; user has ESS and RSS bookmarks assigned to him ok. So, why can the user access every single screen (AP20, HR11, etc) in the search box User does NOT receive any security warning, and is able to look at all data. User can launch RSS and ESS with no problems or security warnings. I have reviewed a few times, and have cleared IOS cache...
2 2951
by  Roger FrenchJump to last post
01/29/2008 3:38 PM
2 Replies and 8516 Views Securing Drill/Select in 9.0  8516  2 Started by  Ellen Melton I'm trying to allow a select, but secure the drill explorer capability on a form. Specifically, we want our hospital campus security department to update vehicle information on PA17.1. I want them to be able to click on the gray down arrow in order to select on Company and Employee field. I've removed the FICA number from display on the form and display on the Select screens. But in allowing the select, it opens up the 'world' if they right-click and drill. Is there any way to allow Selec...
2 8516
by  John HenleyJump to last post
01/28/2008 4:00 PM
1 Replies and 7472 Views Security 9.0 - Security based on Department  7472  1 Started by  Stephane I'm using security 9.0 and I would like a user have restricted access for a specific department (Employee.Department). I'm able to restrict access on HR11 form and on Drill Explorer but when I print a report all the department are one the list. Is there a way to have only the restricted department on the report
1 7472
by  John HenleyJump to last post
01/18/2008 2:19 PM
1 Replies and 10260 Views Securing RQ10 - in LSF9  10260  1 Started by  Deleted User I'm trying to secure form RQ10.1 to users based on a custom attribute called DepartmentControl (String 4) - Here's what I've got, but it keeps giving me security violation to users who have multiple values in DepartmentControl... (trim(form.RQH_REQ_LOCATION) == trim(user.getAttribute('DepartmentControl'))) || (trim(form.RQH_REQ_LOCATION) == trim(user.attributeContains('DepartmentControl',getDBField('REQUESTER','REQ_LOCATION',trim(user.getAttribute('DepartmentControl')))))) || (trim(form...
1 10260
by  Deleted UserJump to last post
01/15/2008 10:51 AM
2 Replies and 9896 Views Adding user system code to LawSec 9.0  9896  2 Started by  msjmg111 I created a system code to store user programs, how do I get Lawson Security 9.0 to recognize it I can see it and assign it in LAUA but when I try to add the rule in LS9, my user created system code is not showing.
2 9896
by  msjmg111Jump to last post
01/08/2008 2:35 PM
2 Replies and 10517 Views inquiry only access from LID  10517  2 Started by  Deleted User Is there an easy way to give inquiry only access in LID I currently have to go into each product line (HR, PR, PA, GL, AP, etc) and set up as inquiry only when it seems like I'd be able to give this to all product lines/forms at once Also - this is odd to me - but I gave inquiry only for HR/PR prod lines and the person does not get the drop down selector box on hr11..I went into the table security and by default it appears that they have access to all the tables unless you lock them dow...
2 10517
by  Greg MoellerJump to last post
12/19/2007 4:03 PM
8 Replies and 12188 Views PortalBookmarkRole Missing  12188  8 Started by  Ellen Melton In the Lawson Administration Resources and Security Guide (page 242), one of the Lawson-delievered roles listed is PortalBookmarkRole. In our installation, that role was not delivered; instead, we have a PortalBookmarkAdminRole. In a recent LIS inquiry to Lawson about this, they said the guide was a typo. I was wondering if any other installations actually had the PortalBookmarkRole delivered. What concerns me is the 'Admin' piece of the role title we have. I want to make sure t...
8 12188
by  Ellen MeltonJump to last post
12/19/2007 8:20 AM
1 Replies and 10053 Views GROUPDATA node within loadusers XML file  10053  1 Started by  Roger French Can anyone tell me what the GROUPDATA node is used for within the XML template used for loadusers I have poured over the Resources and Security manual, and it shows GROUPDATA node. It basically says you can add groups to the system, and I can see the examples they show.. Ok so yes I understand that. Ok, so what KIND of groups, and what are the groups used for And how do they work Is it the same as Bookmark Group People Group I wished these manuals would be better at documenting s...
1 10053
by  John HenleyJump to last post
12/17/2007 4:51 PM
10 Replies and 12918 Views Security Files  12918  10 Started by  Deleted User I'm trying to make a query to pull most of the info that can be found on the tknsecrpt but there are parts that the powers above don't care to see. We are currently on 7.2.2.4 if that is going to make a difference in the file names. Basically need to see by Sec Class what forms and options on forms each sec class has access to.
10 12918
by  Deleted UserJump to last post
11/05/2007 2:46 PM
1 Replies and 10667 Views ESS/MSS Using laua - on LSF9  10667  1 Started by  Deleted User We are running into issues regarding users secured through laua and users not secured (Employee Self Service Users only). We implemented LSF9 and are using laua. We have two type of users - Lawson users that are secured via laua and Regular employees that only need to view paycheck or change addresses, etc. and are not secured via laua. Is there anyone in this situation that may be running into access issues security violations Example: If I am assigned a laua securi...
1 10667
by  John HenleyJump to last post
10/04/2007 3:50 PM
1 Replies and 10203 Views LAUA Security files - 9.0  10203  1 Started by  Roger French Has anyone got a format of the 9.0 laua security file formats Such as for USER, USERCND, etc. and then the Environment Group files USERGRP, USERGRPDTL, etc. files. I have searched on support but was unable to find them. I don't know if the format from 7.3.3/8.0.3 has changed in 9.0. Yes I know I could do a dump of 9.0 files before and then get the format. (I am doing a conversion of 7.2.2 security to 9.0). Thanks in advance, -Roger
1 10203
by  John HenleyJump to last post
09/14/2007 11:45 AM
4 Replies and 11249 Views LAUA in 9.0  11249  4 Started by  Deleted User We are testing out 9.0. I know you can still use LAUA security in 9.0; but 1.how do you turn it on 2. add new users in 9 so we can use exisiting laua security classes. We normally in 8 we added new user to lawson local group on server, then user showed up in laua.
4 11249
by  Deleted UserJump to last post
08/31/2007 7:25 AM
2 Replies and 11127 Views employee search security  11127  2 Started by  Deleted User I gave someone access to bn32 but they can not search for the employee by name or number. I apparently need to give them access to something else. I do not want to give them access to hr11, I only want them to have bn32 with the ability to use the drop down on the employee field to be able to pick or search for the employee. This is similar to my next question, I have given someone pa52 access, but when they click the dropdown to select the action, the action list is blank. Since the acti...
2 11127
by  Deleted UserJump to last post
08/16/2007 12:12 PM
1 Replies and 10809 Views Implementing ESS/MSS before LSF 9 security?  10809  1 Started by  Deleted User We are looking at implementing Employee & Manager Self Service and have been told by one person that we may want to wait until we upgrade our environment to version 9. This has to do with the huge differences in the security between 8.1 and 9. I'm not sure if this was a STRONG recommendation or just a SLIGHT recommendation. We have to upgrade the environment to 9.0 before July 2008. What would the pros/cons be if we implemented ESS/MSS now and then did the environment upgrade in ...
1 10809
by  John HenleyJump to last post
08/13/2007 8:25 PM
1 Replies and 10521 Views Security File Question  10521  1 Started by  Deleted User I am looking at users that have access to GL00.1. If the security group has full access to the form in the sec-form file, but does not have a listing for the 'IF' System Code in the Sec-data file. Can they still have access to GL00.1 Thank you, Miles
1 10521
by  John HenleyJump to last post
08/02/2007 10:07 AM
13 Replies and 13940 Views GL40.2 security error on adding records  13940  13 Started by  Deleted User One of our security class is unable to add records on GL40.2 though their security seems to be fine. They have access to create journals. They can't release it though. Any ideas There is no data security but that class has inquiry only access to all other systems.
13 13940
by  John HenleyJump to last post
05/31/2007 2:39 PM
1 Replies and 10761 Views AP91  10761  1 Started by  klive I am trying to get the drill around to work properly it works for some and not for others...i am in LSF9.0 I have researched and added the tables that were seemingly required but still is not working on all of the areas of the form...does anyone have a suggestion...I stripped the security class all the way down and started adding one at a time to see if there were any significant changes and still no working...in need of help...
1 10761
by  John HenleyJump to last post
05/09/2007 1:51 PM
3 Replies and 10745 Views Lawson 9.0 Personnel Action Rule  10745  3 Started by  psherry I have been trying to build a rule in LSF 9.0 security where if a certain personal action is choosen it would only show certain reason codes. I have tried to build this rule on the PCODES table with no luck. Has anyone come across a rule for this on PA52. Thanks!
3 10745
by  psherryJump to last post
05/03/2007 8:00 AM
2 Replies and 11367 Views Get RMID from UserName  11367  2 Started by  ErikSmith We are attempting to write a rule in Lawson Security to allow users access to jobs defined by other users in the same group. When using the function isMemberOf(group,lookup) using the UserName element in GEN, we fail because that UserName is a windows NT identity (NT00001). I cannot find a way to translate that UserName into the RMID that is required for isMemberOf(). Can anyone offer suggestions on how we can accomplish this. We are a new Lawson install and trained on 9.0 and Lawson Securit...
2 11367
by  ErikSmithJump to last post
04/10/2007 9:49 PM
2 Replies and 15615 Views Form Function Code Listing  15615  2 Started by  Deleted User I need a list of all Forms for HR suite with the available function codes for each form. I did the dump file (rngdbdump -c gen vallstuse > functioncodes.dmp) but have a few issues with this unfriendly file: 1) The Value column has more than just function codes in it. In order to eliminate all rows that are not function codes, I'd need a complete/inclusive list of all possible function codes - which I cannot locate. i.e. HR11.2 shows as follows Values of H (hourly) , I (In...
2 15615
by  Deleted UserJump to last post
12/05/2006 11:32 AM
3 Replies and 12658 Views Drill security to field level  12658  3 Started by  Louis Brockinton We have a user who needs to view TR21 to review training information on employees. We do not want this user to be able to drill around on the employee number. Security is set to where the EMPLOYEE file is not available thereby taking care of drill security. However, the search options under the employee number drop-down field on TR21 are also not available so this user cannot select employees by name as this points to the EMPLOYEE file. Is there a way to grant the Employee Name search option...
3 12658
by  John HenleyJump to last post
07/21/2006 9:47 PM
3 Replies and 11711 Views LOGAN security  11711  3 Started by  Deleted User I am not sure about LOGAN security. Do we need to give users LOGAN at all Some of our users are approvers in processflow so I know that that they need to be given security to WF23 atleast so that they can write comments. (atleast their comments end up in WF23). Some are EDI users. But for most crowd, what is the minimum access Please let me know.
3 11711
by  Alex TsekhanskyJump to last post
04/12/2006 6:23 PM
3 Replies and 13301 Views Data Encryption in Lawson  13301  3 Started by  Deleted User 1. Can Lawson handle data encryption Example, decrypt an encrypted value in an Oracle table and display on a form. 2. Can field security be implemented at the form level There is a field security for Drill Around but is there one for Forms so it will be displayed with '*' if restricted.
3 13301
by  M GrahamJump to last post
03/19/2006 5:25 PM
3 Replies and 12480 Views Security Copy mess  12480  3 Started by  Deleted User Hello, I set up AP, GL and AC for SEC1 security class and went to data security and did INQUIRY ONLY for everythig. I was told that this won't stop users from submitting the batch programs in those modules. So I went to each batch program (non-reporting) and took all the options out except for INP. Q: Is that the best way or there is something faster than this Now I had to set up a new class SEC2 where it had INQUIRY ONLY for AP and AC but full access to GL. I copied SEC1...
3 12480
by  John HenleyJump to last post
11/23/2005 8:51 PM
1 Replies and 12638 Views Deletes of comments  12638  1 Started by  Deleted User With version 8.0.3 we are allowed to delete and modify comments (ar17.2) and our business clients do not want the end users to be able to do so. Is there a way to prevent that We have tried security but that has not worked with disabling the delete button. Any thoughts
1 12638
by  John HenleyJump to last post
06/30/2005 2:29 PM
To join the discussion you need to register first. (Registration is free!) If you are already a registered user please login to join the discussion.
Page 6 of 6 << < 23456


RSS Feed Available