Bill, you have just a few options available. You could probably run the tknsecrpt output thru some sort of script or something to remove the parts that your folks don't want to see. I know some clients who use Monarch to do that. As for straight queries, you can query against the GEN tables using DME, etc. Once you get to LSF9, this data is stored in a database, so you can use SQL against them. Remember that since LAUA security is "subtractive", you can't just query against a table to find out what a user has access to--you really need to query against TWO tables, one to get the entire population of forms, and then the second to figure out what the user doesn't have access to. If you want to see a sample of what I did, see https://www.danalytics.co.../archive/2006-08.htm Some other posts have touched on this topic as well: https://www.lawsonguru.com/Forums/tabid/96/view/topic/forumid/8/postid/1966/Default.aspx https://www.lawsonguru.com/Forums/tabid/96/view/topic/forumid/8/postid/130/Default.aspx https://www.lawsonguru.co...tid/747/Default.aspx