PrevPrev Go to previous topic
NextNext Go to next topic
Last Post 12/5/2012 6:03 PM by  John Henley
MSS & LAUA - LSF 9.0.1.9
 4 Replies
Sort:
You are not authorized to post a reply.
Author Messages
jdever
Senior Infor/Lawson Consultant
Southeast ERP, LLC
Advanced Member
(73 points)
Advanced Member
Posts:29


Send Message:

--
11/30/2012 9:56 PM
    I have a custom Lawson form that has a drop down select via a system key number.  This select should view all employees.  It works fine for HR super users (those with a UNIX identity tied to a security class).

    MSS users can only see his/her direct reports when they access the form.  MSS users do not have a UNIX identity and use the "ONLINE" privledged identity tied to "weblaw" in a LAUA secuirty class.

    How can I over-ride Lawson's "my data security"  for this form ???
    We are LAUA.
    LSF version 9.0.1.9
    Thanks.
    John
    Roger French
    Private
    Private
    Veteran Member
    (1304 points)
    Veteran Member
    Posts:542


    Send Message:

    --
    12/3/2012 4:53 PM
    In your custom form, is the Lawson security logic (written in COBOL) inside your custom form?

    I would try to review it and see if it make sense for your purposes, to change or remove it according to your needs.


    jdever
    Senior Infor/Lawson Consultant
    Southeast ERP, LLC
    Advanced Member
    (73 points)
    Advanced Member
    Posts:29


    Send Message:

    --
    12/5/2012 1:37 PM
    There is no security calls written in the COBOL code.  No calls the any security libraries.
    When executing this form as a user that has no UNIX identity and thus uses the ONLINE privileged identity (weblaw) the form automatically limits any drill select based on employee number.
    Interestingly, I can enter any employee number in the form without a security error.
    --
    If there was a Lawson command to tell the drill to ignore "My Data" security, I would be all set.
    jdever
    Senior Infor/Lawson Consultant
    Southeast ERP, LLC
    Advanced Member
    (73 points)
    Advanced Member
    Posts:29


    Send Message:

    --
    12/5/2012 5:43 PM
    Lawson/INFOR came through for me.
    The issue was that the RMID had the ACCESS flag set to "NO" instead of "YES".
    --
    In LAUA this opens you a small security hole that wold allow mangers to run DME & AGS calls if they know how.
    I don't know of any managers that do... so I am good to go.
    John Henley
    Private
    Private
    Senior Member
    (9899 points)
    Senior Member
    Posts:3317


    Send Message:

    --
    12/5/2012 6:03 PM
    I disagree with the size of the security hole, and that's why i didn't recommend it...
    Thanks for using the LawsonGuru.com forums!
    John
    You are not authorized to post a reply.