Login
Register
Search
Home
Forums
Jobs
LawsonGuru
LawsonGuru Letter
LawsonGuru Blog
Worthwhile Reading
Infor Lawson News Feed
Store
Store FAQs
About
Forums
Infor / Lawson Platforms
S3 Security
Progam versus Token Security
Home
Forums
Jobs
LawsonGuru
LawsonGuru Letter
LawsonGuru Blog
Worthwhile Reading
Infor Lawson News Feed
Store
Store FAQs
About
Who's On?
Membership:
Latest:
Saef
Past 24 Hours:
0
Prev. 24 Hours:
0
Overall:
5226
People Online:
Visitors:
491
Members:
0
Total:
491
Online Now:
New Topics
User Group Announcements
Carolina User Group Meeting
12/20/2024 3:15 PM
Date & Time: February 6, 2025, 8:30am - 4:00pm
S3 Systems Administration
ADFS certificate - new cert
12/3/2024 9:38 PM
The certificates on the windows boxes expired and
Lawson S3 HR/Payroll/Benefits
Post Tax Benefit Plan Table
11/14/2024 9:16 PM
Hi, totally new to Laswon. I have a repor
Lawson S3 Procurement
ED501 Error: Map 850 not supported by /law/c15vda/lawson/test10/edi/bin/laws_out_91
11/12/2024 3:47 PM
Tried runnning ED501 and getting the atathced erro
Lawson S3 HR/Payroll/Benefits
Error
11/6/2024 9:54 PM
When I try to enroll a retiree in 72.1 health plan
Infor ERP (Syteline)
Syteline: New Data Maintenance Wizard (Error) Need help
11/1/2024 4:24 PM
Hi, I need help with an error on syteline while us
Dealing with Lawson / Infor
Implementing Lawson v10 with Cerner Surginet, Case Cart Picking, and Quick Adds for the OR
10/29/2024 4:20 PM
Hi Everyone, I am wondering if there is any org
Lawson S3 HR/Payroll/Benefits
Canada Tax Calculation (Federal and Provincial) Issue
10/23/2024 5:00 AM
Initially, we had problem with CPP2 calculation is
Lawson S3 HR/Payroll/Benefits
CA Section 125 401k Plan
10/22/2024 10:13 PM
Does anyone have any recommendations on how to fac
S3 Systems Administration
Running AC120 deleted records from ACMASTER table
10/22/2024 3:40 PM
We recently ran the AC120 as normal and somehow it
Top Forum Posters
Name
Points
Greg Moeller
4184
David Williams
3349
JonA
3291
Kat V
2984
Woozy
1973
Jimmy Chiu
1883
Kwane McNeal
1437
Ragu Raghavan
1372
Roger French
1315
mark.cook
1244
Forums
Filtered Topics
Unanswered
Unresolved
Announcements
Active Topics
Most Liked
Most Replies
Search Forums
Search
Advanced Search
Topics
Posts
Prev
Next
Forums
Infor / Lawson Platforms
S3 Security
Progam versus Token Security
Please
login
to post a reply.
1 Replies
0
Subscribed to this topic
15 Subscribed to this forum
Sort:
Oldest First
Most Recent First
Author
Messages
John Costa
Veteran Member
Posts: 154
7/9/2009 8:41 PM
We are in the process of defining our LSF9 security structure and I have waht I hope is a simple question.
When defining security classes for an online object, what is the difference between granting access to a program versus granting access to a token, and why would I use one versus the other?
In other words, why would I grant access to program AC10 versus granting access to token AC10.1? Do I need to grant access to the AC10 program in order to also grant access to token AC10.1? Is granting access to token AC10.1 without granting access to program AC10 and acceptable procedure?
Thanks in advance.
Maris Fisler
Basic Member
Posts: 8
7/10/2009 8:14 PM
The three things you need to grant access to for every screen that a person needs to access are 1. The Category or CAT (this is the system code AP, GL PO, etc), 2. The Program or PGM (this is the screen name AC10, PO10, etc) and 3. The Token or TKN (this is the actual screen itself, AC10.1, PO10.1 etc) you can write your rules on the PGM or Token and depending on the scenario you may need differing rules for either of these.
Of course there is a fourth and fifth access that is needed and the is the Files access, and the Data Source access without that nothing will work.
Hope that helps and good luck with the implementation. It can be a lot of work but be sure to plan it out in advance and consider the long term maintenance when you build your classes and roles. Take into account how hard it will be if you need to add more screens to a role or class later if the class is shared in too many roles. I recommend not trying to "reuse" security classes within other roles except for the classes that have full access to every screen or file. I would rather have lots of security classes and as minimal amount of Roles as is needed.
Please
login
to post a reply.