Lawson 9.0 Security

 4 Replies
 0 Subscribed to this topic
 15 Subscribed to this forum
Sort:
Author
Messages
Kate Liamero
Veteran Member
Posts: 70
Veteran Member
    I have 2 security classes assigned to a role in Lawson LSF 9.0 security.

    One class only allows access to all AP20 tokens and denies all other AP forms.

    The second class only allows access to MA64 tokens and denies all other MA forms.

    Both classes assigned to a role and to a user.

    When I login I can access all MA and AP forms.

    If I go back into the classes and explicity DENY ALL MA forms including the MA64 in the AP CLASS and explicity deny ALL AP forms including the AP20 in MA class then security works. I can now only see AP20 and MA64

    WHY do I have to explicity deny. I thought the default was DENY.

    This will be a nightmare to setup and maintain. Most of our users will have more than one class.

    John Henley
    Posts: 3353
      Hi Kate,
      You are correct, in that this is not how it should be working. See if you perhaps have security turned on/off and or 'allow all' set for that product line. Also, do you have any 'role overrides' set up?
      Thanks for using the LawsonGuru.com forums!
      John
      Dave
      Basic Member
      Posts: 13
      Basic Member
        Thanks for the reply John. No 'role overrides' currently exist. In Security Configuration - security is set to ON in each Product Line. Dave.
        John Henley
        Posts: 3353

          Kate, did you ever get anywhere with this? 

          Thanks for using the LawsonGuru.com forums!
          John
          trueblueg8tor
          Advanced Member
          Posts: 41
          Advanced Member
            In the Lawson Security Administrator, when you go to Server Management -> Server-> Security Checking tab is the Security on?