Login
Register
Search
Home
Forums
Jobs
LawsonGuru
LawsonGuru Letter
LawsonGuru Blog
Worthwhile Reading
Infor Lawson News Feed
Store
Store FAQs
About
Forums
Infor / Lawson Platforms
S3 Security
LSF9 Security along with HR Data Security
Home
Forums
Jobs
LawsonGuru
LawsonGuru Letter
LawsonGuru Blog
Worthwhile Reading
Infor Lawson News Feed
Store
Store FAQs
About
Who's On?
Membership:
Latest:
Chris Radcliffe
Past 24 Hours:
0
Prev. 24 Hours:
0
Overall:
5187
People Online:
Visitors:
315
Members:
0
Total:
315
Online Now:
New Topics
S3 Customization/Development
Cobol - Extract Current Time
4/24/2024 7:21 PM
How do you extract just the Current System Time in
Lawson Landmark
LPL INSTR Functions
4/5/2024 8:32 PM
I'm writing a simple report using the Create R
Infor SCM
Translating 856 to get the ~ REF^CN^ field
4/3/2024 8:24 PM
We are trying to get the tracking number which is
IPA/ProcessFlow
Sample XML file create Flow
4/3/2024 3:43 PM
Hello everyone, I am new to creating XML files
Lawson S3 HR/Payroll/Benefits
bn105 error message
3/26/2024 6:40 PM
I need to change some of the set ups in our Life I
IPA/ProcessFlow
IPA executing Job
3/13/2024 7:08 PM
New to the IPA world and was wondering, can an IPA
Lawson S3 HR/Payroll/Benefits
Life Age Reduction on benefits plans
3/12/2024 7:15 PM
For our optional life we have an age based coverag
Lawson S3 HR/Payroll/Benefits
BN53.1 Add-In
3/7/2024 3:31 PM
We are migrating to Solstice. They require a
Lawson Business Intelligence/Reporting/Crystal
Domain Name Change
3/5/2024 7:45 PM
Our domain name needs to change and was hoping I c
S3 Customization/Development
Cobol calling Shell Script
2/29/2024 1:27 PM
Has anyone created or modified a Lawson Cobol prog
Top Forum Posters
Name
Points
Greg Moeller
4184
David Williams
3349
JonA
3288
Kat V
2984
Woozy
1973
Jimmy Chiu
1883
Kwane McNeal
1437
Ragu Raghavan
1351
Roger French
1311
mark.cook
1244
Forums
Unanswered
Active Topics
Most Liked
Most Replies
Search Forums
Search
Advanced Search
Topics
Posts
Prev
Next
Forums
S3 Security
LSF9 Security along with HR Data Security
Sort:
Oldest First
Most Recent First
You are not authorized to post a reply.
Author
Messages
Kartik
Posts: 5
4/6/2011 3:43 PM
I have set up LSF9 security in HR with TRAdmin Role (for Training Administrator) and appropriate security class with restrictions on HR11 (cannot view SSN, pay rate etc). Since I am migrating from LAUA, there is already the existing HR Data and User security set up in HR09, HR10 and HR12. I find that the HR Data security completely overrides the security rules set up in the security class. For instance, if I deny access to view SSN in the security class, but the appropriate security level in HR09 and HR10 allows SSN view, then the Data Security prevails over LSF9 security. Has that been the experience with others? Is there a way to turn off the HR Data Security so that all the access requirements are encapsulated in the security class only?
Roger French
Veteran Member
Posts: 545
4/6/2011 3:55 PM
Could you remove the employee's info from HR09? And also the security level from it's HR11 record?
Al
Basic Member
Posts: 17
4/6/2011 4:02 PM
Make sure the checkLS flag is set to Y for the ID's you are using to test this out.
Greg Moeller
Veteran Member
Posts: 1498
4/7/2011 1:02 PM
Yes, HR09 will override any security setup in LS. We stumbled upon this when we were testing our security implementation. Had to remove all HR09 records if we wanted LS to behave correctly.
Kartik
Posts: 5
4/15/2011 9:32 PM
Thanks for your insights. I have done the following to reset data level security. I have not been able to test it due to other issues. I shall keep the forum posted
1. Reset Security Level / Location to 9 / 9999999999 in Company Set up HR00
2. Reset Security Level / Location to 9 / 9999999999 in Process Level Set up HR01
3. Reset Security Level / Location to 9 / 9999999999 in Department Set up HR02 (Table DEPTCODE fields SEC-LVL and SEC-LOCATION)
4. Delete all values in User Data Item Security (HR09)
5. Reset the Security Level field in Data Item attributes to 9 (Table PASCRTY field SEC-LEVEL)
6. Reset Security Level / Location to 9 / 9999999999 in Employee Set up in HR11 (Table EMPLOYEE fields SEC-LVL and SEC-LOCATION)
ScottG
New Member
Posts: 1
4/28/2011 8:48 PM
Can anyone offer a reason why HR security is not affecting access for a user recently converted to LS? I am in the process of converting from LAUA to LS an existing account, under LAUA the user is unable to see executive records in the HR11.1, under LS the HR security is not kicking in. I talked to Lawson support, and was advised that HR security is not used in LS, now I read that it is.
Please go easy on me on this one, just took the admin course, less than 2 months working with the system in any meaningful way, so stumbling along as best i can.
Thanks!
Eric.Beck
New Member
Posts: 2
5/1/2011 8:44 PM
LSF9 Security requires that you create an Element group for Security Level and Location, if you would like to use the HR Application security. The setup must be correct in the application and in the RULES you right in in the LSF9. You also need to review the HR Security suppliment that show what forms in the HR Suite that can be secured by SEC_LOCATION. I think I have the PDF of this if you needed.
Eric.Beck
New Member
Posts: 2
5/1/2011 8:45 PM
Sorry I misspelled Write.
Mark Petereit
Advanced Member
Posts: 21
5/1/2011 9:24 PM
It's been a couple of years since I looked at LSF9 security, but from what I remember, there really wasn't a clean path from LAUA security to LSF9 security, being that LAUA security was subtractive (i.e. users start with access to everything and you add restrictions) whereas LSF9 security is additive (users don't have access to anything until you grant it.) Most organizations, especially those employing data security professionals, opted to completely abandon their LAUA security setups and start over in LSF9 with a clean slate. As I recall, after our own thorough analysis of LSF9 security, we came to the same conclusion and created all new profiles before migrating to LSF9.
You are not authorized to post a reply.