Can't View Print Jobs - LawsonGuru.com - LawsonGuru.com Forums -

Name	Points
Greg Moeller	4184
David Williams	3349
JonA	3291
Kat V	2984
Woozy	1973
Jimmy Chiu	1883
Kwane McNeal	1437
Ragu Raghavan	1372
Roger French	1315
mark.cook	1244

msjmg111

Veteran Member

Posts: 74

11/1/2007 1:38 PM

I have a multi-step job defined with 2 steps, the first step is a ftp and the second runs hr511. I also have a distribution list set up on the hr511 step to distribute the report to a person still using the LAUA security and a person using the LS 9.0 security. The person with the LAUA security gets the report and can view it in their print manager, the other person with 9.0 gets the report but cannot see it in her print manager. So we know the distribution is correct, but something in 9.0 security is preventing her from viewing it. I have given that person "all access" to everything I can think of and it still is not viewable. The person can run hr511 as a single job and the report is viewable in her print manager. Is there something with multistep jobs where one of the steps is a non-Lawson script that is preventing her from viewing? LIS won't touch this one because security is "working as intended".

k-rock

Veteran Member

Posts: 142

11/1/2007 5:14 PM

Have you tried making a copy of your 2-step job but only have it distribute to the 9.0 person? Maybe the combo of LAUA and 9.0 Security is the problem.

msjmg111

Veteran Member

Posts: 74

11/1/2007 5:44 PM

No, I have not tried it for that job, but we have other distribution groups that have reports going to both LAUA and 9.0 people. This is the only job currently set up that uses a custom token as the first step.

John Crudele

Veteran Member

Posts: 50

11/1/2007 8:23 PM

Does the user who cannot view the report have security rights to the custom token

John Henley

Posts: 3353

11/1/2007 8:33 PM

How are you accessing FTP in the first step of the job...via a user form?

Does the 9.0 security user have access to:
Securable Types-Environment-EXECUTABLE

msjmg111

Veteran Member

Posts: 74

11/2/2007 1:00 PM

Yes, the FTP step is a user form and it is defined in the secuable type - executables. We have a group labeled User Forms and the user is granted all access to it. Now you know why I'm puzzled by all of this, it seems I have eveything in place.
Can one step in a multi-step job have a distribution group defined and another not?

John Henley

Posts: 3353

11/5/2007 8:09 PM

The distribution group is assigned on each step of the job...one step can have a different distribution group than another step. However, environment/user forms don't have reports, so they can't have a distribution group anyway...

How is this job being run...from Portal, from LawTerm or from LID? How was it defined, via Portal or via LID/jobdef?

John Henley

Posts: 3353

11/5/2007 8:32 PM

Just to clarify: when the multi-step job is run, is the HR511 report being loaded into the print manager for the 2nd (LS) user, and it's just that they can't view the report CONTENT, correct?

John Henley

Posts: 3353

11/5/2007 8:33 PM

Also, can you post your version / platform info?

msjmg111

Veteran Member

Posts: 74

11/5/2007 8:35 PM

The job was defined in LID but is being run in Portal. I removed the first FTP step and ran HR511 as a standalone job - still not seeing it. Given that, it must be an issue with HR511 security. I have defined everything I can think of for HR511 but still no luck. Does anyone else run and distribute HR511 with Lawson Security 9.0?

msjmg111

Veteran Member

Posts: 74

11/5/2007 8:37 PM

the multi-step job is run, is the HR511 report being loaded into the print manager for the 2nd (LS) user, and it's just that they can't view the report CONTENT, correct? Yes, that is correct.

John Henley

Posts: 3353

11/5/2007 8:39 PM

Use 'lstinvk' command to figure out which other tokens are INVOKEd by HR511:
$ lstinvk prod hr511
These other tokens also need to be accessible in order for the user to be able see the report.

msjmg111

Veteran Member

Posts: 74

11/5/2007 8:39 PM

LSF 9.0.0.2 (Unix) - Websphere 6.0 - Oracle 10g - Apps 9.0 MSP3

msjmg111

Veteran Member

Posts: 74

11/8/2007 6:07 PM

How are ftp steps handled in your shops? Do you have similar setups (multistep jobs using unix scripts to ftp data)?

Ben Coonfield

Veteran Member

Posts: 146

11/9/2007 1:50 PM

[quote]Posted By Julie Gardner on 11/08/2007 1:07 PM

How are ftp steps handled in your shops? Do you have similar setups (multistep jobs using unix scripts to ftp data)?[/quote]
Yes, we have a number of jobs that work that way, with a ftp step before or after the "main" step.

msjmg111

Veteran Member

Posts: 74

11/9/2007 2:51 PM

Does your "main" step have a distribution list tied to it? If so, do they have LS 9.0 = yes and can they see the distributed report? Other than granting all access rights to the unix script, is there any other security rights granted - I can't figure out what I'm missing.....

msjmg111

Veteran Member

Posts: 74

1/8/2008 5:56 PM

Update: I found that an user form (my ftp script) does not have a productline associated with it. So when the job stream runs (first step is ftp and the second is HR511), Lawson security 9.0 cannot secure the first step because no productline was passed, so it flags the whole jobstream and denies access.

trueblueg8tor

Advanced Member

Posts: 41

2/26/2008 1:34 AM

I'm going through an environment upgrade from 8.0.3 to LSF. Some of my users could not export reports as csvs like GL200. I opened a GSC which got me no where. I found that users that could export it had the Environment Form "rptgen" in the Develop category of the security class. I haven't dabbled enough with LSF 9.0 Security but I'd suggest granting access to this for your LSF 9.0 user.