Login
Register
Search
Home
Forums
Jobs
LawsonGuru
LawsonGuru Letter
LawsonGuru Blog
Worthwhile Reading
Infor Lawson News Feed
Store
Store FAQs
About
Forums
Infor / Lawson Platforms
S3 Security
LDAP on Lawson 8.0.1.3 After Domain Move
Home
Forums
Jobs
LawsonGuru
LawsonGuru Letter
LawsonGuru Blog
Worthwhile Reading
Infor Lawson News Feed
Store
Store FAQs
About
Who's On?
Membership:
Latest:
Saef
Past 24 Hours:
0
Prev. 24 Hours:
0
Overall:
5226
People Online:
Visitors:
464
Members:
0
Total:
464
Online Now:
New Topics
User Group Announcements
Carolina User Group Meeting
12/20/2024 3:15 PM
Date & Time: February 6, 2025, 8:30am - 4:00pm
S3 Systems Administration
ADFS certificate - new cert
12/3/2024 9:38 PM
The certificates on the windows boxes expired and
Lawson S3 HR/Payroll/Benefits
Post Tax Benefit Plan Table
11/14/2024 9:16 PM
Hi, totally new to Laswon. I have a repor
Lawson S3 Procurement
ED501 Error: Map 850 not supported by /law/c15vda/lawson/test10/edi/bin/laws_out_91
11/12/2024 3:47 PM
Tried runnning ED501 and getting the atathced erro
Lawson S3 HR/Payroll/Benefits
Error
11/6/2024 9:54 PM
When I try to enroll a retiree in 72.1 health plan
Infor ERP (Syteline)
Syteline: New Data Maintenance Wizard (Error) Need help
11/1/2024 4:24 PM
Hi, I need help with an error on syteline while us
Dealing with Lawson / Infor
Implementing Lawson v10 with Cerner Surginet, Case Cart Picking, and Quick Adds for the OR
10/29/2024 4:20 PM
Hi Everyone, I am wondering if there is any org
Lawson S3 HR/Payroll/Benefits
Canada Tax Calculation (Federal and Provincial) Issue
10/23/2024 5:00 AM
Initially, we had problem with CPP2 calculation is
Lawson S3 HR/Payroll/Benefits
CA Section 125 401k Plan
10/22/2024 10:13 PM
Does anyone have any recommendations on how to fac
S3 Systems Administration
Running AC120 deleted records from ACMASTER table
10/22/2024 3:40 PM
We recently ran the AC120 as normal and somehow it
Top Forum Posters
Name
Points
Greg Moeller
4184
David Williams
3349
JonA
3291
Kat V
2984
Woozy
1973
Jimmy Chiu
1883
Kwane McNeal
1437
Ragu Raghavan
1372
Roger French
1315
mark.cook
1244
Forums
Filtered Topics
Unanswered
Unresolved
Announcements
Active Topics
Most Liked
Most Replies
Search Forums
Search
Advanced Search
Topics
Posts
Prev
Next
Forums
Infor / Lawson Platforms
S3 Security
LDAP on Lawson 8.0.1.3 After Domain Move
Please
login
to post a reply.
1 Replies
0
Subscribed to this topic
15 Subscribed to this forum
Sort:
Oldest First
Most Recent First
Author
Messages
Marvel
New Member
Posts: 4
10/10/2008 6:50 PM
Lawson 8.0.1.3
SQL Server 2000
Windows 2003
Greetings! I am completely new to Lawson & have never had any training on the app. I am also completey without any support documentation on how the application 7 the Portal work. SoemhowI have managed to fumble my way through getting it to work. We performed a P2V of 4 servers from one domain to another & then reverse engineered the new environment on the new domainby changing all the server references in the web config & in all the bookmarks. After a few issues that had me pulling my hair out, things are working well on the new domain. Now on to the next challenges:
I need to get the application & the Portal authenticating against the new domain. There is a trust relationship with the old domain but the authentication is being passed to the domain controllers there, which are going to be retired. Based on what I have been able to glean by reading the Lawson forums, there's a bit more to it than simply changing the webconfig files to point excusively to the new domain. Does anyone have any documentation that they can send me about setting up LDAP in our version of Lawson?
I am also in dire need of information on how to set up users. I understand that they must first be set up on the client side & then added to a local group on the web server. That's all I know. Any info on both of these processes would be greatly appreciated!
John Henley
Posts: 3353
10/12/2008 4:26 PM
Since you are running Lawson on Windows, there are two different aspects of authentication:
1) LID users, batch jobs, etc. authenticate using their domain accounts.
On Windows, Lawson stores these key elements related to user IDs:
- Windows SID is stored in registry in v7/v8 Environment, in Lawson's LDAP in LSF9.
- User is setup in a local machine group (note: can be a local machine group containing domain users groups...)
- as NTxxxxxx in GEN security tables
- as a numeric User ID (UID) in LSF9 in Lawson's LDAP.
Since you've moved your domain, that has invalidated your SIDs, so you will need to remove the users from the LAUA/usergrpdef, local Lawson user group, etc. then re-add them using their new domain\user information.
2) Users also authenticate via IIS basic authentication for Portal, self-service, etc. This is done by specifying a domain/realm in IIS, and then by the RD30 records in LOGAN, which map an IIS authenticated user to a Lawson LID user.
Needless to say, there is a awful lot of stuff that needs to be addressed/configured, and you'll probably need more background/education than you'll be able to get from a forum. You should probably take some of the Lawson-provided webcast/training on Lawson administration on Windows and/or go to some of the user groups/training sessions, or hire some consulting.
Please
login
to post a reply.