Does anyone have or know where I can get some documentation that tells me what each field on the 'edit RM information' screen is used for  We recently upgraded our environment to 9.0.1.5 and I noticed there are some new fields and some fields were taken away.  I would like to know if I could be using these fields for something useful.

Using Design Studio we have been successful at removing the Drill Around ability on a few of our forms that a specific set of employees use.  But when they select that field and the Select Window (its actually titled as 'Drill Around -- Webpage Dialog') still allows employees to Drill Around on any record in the window.  Better Example.  Using Studio we have removed the Drill Around Option on HR11.1 on the Employee field.  When you right click on the field it no longer displays Drill Around as ...

Have anyone tried extract data out of ADAM (lawson security) I'm trying to extract data out from it and into table. Any ideas or help will be greatly appreciated. Thanks.

Greetings: I'm creating some advanced security roles within LS Security, specifically for other security administrators. I've successfully secured the granting of specific roles in the ROLE attribute, which means that for users with this role, they cannot see or grant specific roles for other users within those users' security profile. Example: My advanced security role is called 'SpecialAdminRole'. I also have a role called 'BenAdminRole'. If I give SpecialAdminRole to Joe, then whe...

Both tknsecrpt and secrptbtch show the UNsecured FCs by form by SecClass. I'm guessing they do this by listing the valid FCs for the form  minus the Secured FCs in USERSCR. In order to do this, the valid FCs for each form must be known. I can't find these in the GEN database. Where are they coming from The TranMaps for each form Am I missing a table somewhere. Is scrgen updating a table not in Gen Thanks. Eric

Our test environment has multiple productlines.  Is there any way for us to share a profile so we don't have to have duplicate security on another profile

Help! Lawson Portal login page gives the following warning message Do you wan to view only the webpage content that was delivered securely Background:  Upgraded environment from 9015 to 9018.  Noticed queries in ESS is extremely slow.  Problem is likely a new version of lawsec.jar.  Lawson support recommeded uninstalling the offending patch.  Performance in ESS no longer an issue but getting the annoying warning message every time.

Fairly new to lawson and laua, so bear with me...please...  We are wanting to implement drill-around security, and I've found many resources that explain the process.  We use laua (not lawson security), and if I understand things correctly, if I apply security at the element level, we can block all fields defined by that element in a product line -- exactly what I want! Here is my dilemna, I'll use a single example.  I want to prevent users from seeing the Social Security number in drill arou...

We have had several instances where for whatever reason we needed to know who had access to a particular form (or securable object) under LSF9. To that end I wrote a simplistic windows app that connects to the LDAP and backtracks from securable object all the way up generating a list of security classes, then roles, and finally users who have access to a particular form. It's not the best code ever, but it gets the job done.  I haven't seen anything else that does this. I'd be happy to ...

Help!  I need to be able to limit users to their print manager only. We are on a Windows platform and I wrote a rule on Element UserName in batch security class in GEN. Username==user.getHotServiceId()    All Access else No Access. Unfortunately this must not be right as I then get a security violation trying to access my own print jobs. Any suggestions would be greatly appreciated. Thanks, Jim

I saw a tip about securing access to only the employee's data, but I'm not getting it correct.  (Below is the code I am looking at). I want to limit the employee to only be able to drill around / selects only on his own data. 1.  I thought that I needed to put this on the employee table,  then I tried the employee field itself - Still no luck.  The employee can select anyone and drill around on anyone. 2.  in the object - user   what is in getEmployeeID   Is that the employee number and ...

I denied access to EEO-CLASS (Ethnicity) in HR11 and on PAEMPLOYEE but I'm still seeing the description on HR11.  The field is blocked, but it still shows the description to the right of the field.  Where is that located (so that I can get it blocked) or how do I block it from view

I know there is the User Security Report in Lawson where you can choose objects and it shows who has access to them, but our auditors want to be able to run adhoc queries about various forms and at various times to find out everyone who has access to a specific form. For 'auditing' reasons, they don't want this done from the internal Report by a Lawson administrator, they want to do it themselves. My question is what files would I need to hit in a query to gather this information An example wo...

Who maintains the LS9 security in your organization  Does anyone have it maintained by one of the end-users  If so, is it one person per suite

I am trying to run the Lawson Security smoke test on a new build. I am getting the following message when I sign in through the SSO, in fact as long as I use a valid userid any password will produce it: - Could not convert LSF Identity (null) to LM Identity. Has anyone any experience of this error message As part of the build I have loaded LDAP data exported from another environment...could that be the cause, if so any pointers as to where to start looking Thanks RJ

I am new to Lawson Security and I am surprised by the lack of basic common string functions available for use in rules.  Functions like len() and instr() for string length and position of a string within a string. There is an instr() function but it only returns a boolean if the search string is found.  I am trying to parse the parts of a Accounting Unit using substring and due to the fact that some accounting units are ww.xxxx.yyzzzz and some are ww.x.yyzzzz and some are just ww.xxxx, you get a...

I have created a custom table  which has cost center as a field.  I want to create a security class so that only people assigned to the cost center can view their data.  For example I have a header table with a field called Cost_Center.  I have created a security class called CC123, when I use record level security I have Coster_Center = '123' however when I view the data I can still see everyones' data.  Does anyone know how to set this up or is there something that I am missing Than...

In order to keep the LSAUDIT table from growing too large it is recommended to archive security every now and then. I am wondering if anyone has a best practice as to how often to archive. Quarterly, twice a year, etc Any advice would be helpful. Thanks.

We are on LS Security Can you limit the Report Option parameter  for AP210 through LS Security You can run the report as Basic, Summary and Expanded. We want to not allow the users to choose Expanded. Any help would be appreciated Regards JC

When adding a new user to a user group. I type USERGRPDEF I then enter the user group I want to add the new user to. at the beginning of the list I hit F8 to insert a blank slot and then I hit F4 to get the list of users to choose from. Does anyone know where this list populates from  I checked the users in LAUA but the lists are different.

Hey folks, I'm hoping a Lawson Security guru can help me out here. I'm in the process of building a new environment based on the following: Windows Server 2008, 64-bit LDAP:  Microsoft AD-LDS (residing on the same server) IBM WebSphere 7.0.0.19 Lawson Core Technology 9.0.1.9 At this time, the only components that have been installed is the Core Technology and the Security Administrator application.  I'm trying to log into the Security Administrator for the first time.  After enter...

How do you test for a user attribute that is blank/empty I have tried user.getAttribute('ProcessLevelControl') == ''  and trim(user.getAttribute('ProcessLevelControl')) == '' Neither of which work. If anyone knows the trick, I would appreciate it. thanks!

I'm trying to write a conditional rule on HR11.1 to restrict users from accessing employee records based on security location(SEC_LOCATION).  Here is what I got so far  if(trim(getDBField('EMPLOYEE', 'SEC_LOCATION', form.EMP_COMPANY, form.EMP_EMPLOYEE))== 'OCE' || 'OCEDRE' ) 'ALL_ACCESS', else 'NO_ACCESS' OCE and OCEDRE actual security locations attached to an employee record that user can see. Getting security violation on all records. I'm new to LS. What I'm doing wrong Thanks, A...

Been reading the various forum items and WAS leaning toward the fastrack templates, but not so much anymore. We only have approx 50 bus users for GL & HR and 1500 EMSS users. Is there a current way in lawson to see what forms our users have been accessing I hope to hire a consultant to handhold, but will I incur other expenses such as a listener program or pre-built templates

I have tried writing a rule on GL45 so that users can only see their own transactions (operator) equal their user id.  This denies them access to all data.  I did write a rule on the GLCONTROL limiting the same thing so it prevents drill around on others transactions. However, I don't even want them to see 'others'.  Any ideas  I've tried (userid and employee id are the same here): if(form.SEL_OPERATOR==user.getEmployeeId())    'ALL_ACCESS,' else    'NO_ACCESS,' Also tried: if(getDBF...