PrevPrev Go to previous topic
NextNext Go to next topic
Last Post 12/07/2017 10:32 AM by  tambrosi
Security Reports For Auditors
 2 Replies
Sort:
You are not authorized to post a reply.
Author Messages
tambrosi
Enterprise System Analysis
Private
Veteran Member
(102 points)
Veteran Member
Posts:48


Send Message:

--
12/07/2017 6:44 AM

    Hello All,  

       Our auditors are asking us to produce a security report that will show users that get a "Security Violation".   We have been looking around but cannot find a report that would satify that criteria.  

    Would somebody know if a report like that is available, or can that data be captured in security log someplace.  I looked thru the security logs, but nothing is really showing up.   

    Any help would sure be appreciated.

    Thanks

    Terry

     

    Brian Allen
    Private
    Private
    Veteran Member
    (279 points)
    Veteran Member
    Posts:95


    Send Message:

    --
    12/07/2017 8:36 AM

    In Lawson Security under Server Management | Server | Auditing + Logging, there's an option for Auditing ON.  If you check the Access Denials option, then going forward you can report on denials from the LSAUDIT table in Logan.  

    If you enable this option, I would monitor the size of LSAUDIT every few months to check it's growth.  We purge older records every 6 months or so.

    tambrosi
    Enterprise System Analysis
    Private
    Veteran Member
    (102 points)
    Veteran Member
    Posts:48


    Send Message:

    --
    12/07/2017 10:32 AM

    Hi Brian, thanks for the info.   We turned that on and looked at the table---but I am not sure on how to interpret the data.  I was expecting more detail. 

    that user trainlaw2 has very minimal security,  For PR26.1, they are not authorized. 

    On the OBJECT_Secured.PROCLEVEL.trainlaw2---Came thru an HR11 tran where that user can only see certain employees.   

    Is there any doc on that, the LSF manually did not explain it.  

    Any help would be appreciated.

    Thanks

    Terry

     

    You are not authorized to post a reply.