Managing user permissions and security

You manage user permissions and security through the Security menu option in the Infor OS application.

This option is available to the user who has one of these security roles:

  • IFSApplicationAdmin
  • DataAdministrator
  • UserAdmin
  • Infor-SystemAdministrator

To access Security:

  1. Click the Application Menu.
  2. From Applications, select the Infor OS application.
  3. Select the Security tab.

The Security option provides the capability for Infor OS applications to manage users. The users for the Infor OS applications are first created within Security. The user information is then replicated across the different Infor OS applications.

The Security option has the concepts of users, security roles, distribution groups, accounting entities, and locations.

Security has these menu options:

  • Manage
  • Configure
  • Security Administration
  • Metadata

This table describes the functionality of each menu option.

Option Description
Manage > Users View and manage users including:
  • Adding users
  • Deleting users
  • Importing and exporting users
  • Assigning/Un-assigning:
    • Security roles
    • Accounting entities
    • Locations
    • Distribution groups
    • Custom properties
    • ERP Person IDs
    • Client access (access can be revoked)
  • Resetting passwords
  • Viewing user activity
  • Exporting all users
  • Activating users (this option is displayed only when Create Users in Draft Status is enabled)
  • Searching users by using Simple or Advanced Search
Manage > Client Access View and manage clients that users have used to access Infor OS Portal:
  • Revoking client access
  • Searching for clients
Manage > Service Accounts View and manage accounts that have been created to allow applications a resource owner grant to contact the Infor Authorization Service to obtain a token for use in making API requests.
Manage > ERP Person IDs View and manage the ERP person IDs that have been added to your users.
Manage > Contacts View and manage contacts including:
  • Adding contacts
  • Deleting contacts
  • Assigning contacts to contact groups
Manage > Contact Groups View and manage contact groups including:
  • Adding contact groups
  • Importing and exporting contact groups
  • Deleting contact groups
  • Assigning contacts to contact groups
Manage > Groups View and manage groups including:
  • Adding groups
  • Importing and exporting groups
  • Deleting groups
  • Assigning users to groups
Configure > Master Data > Types > Security Roles View and configure security roles including:
  • Adding security roles
  • Importing and exporting security roles
  • Deleting security roles
  • Assigning users to security roles
  • Assigning documents to security roles
Configure > Master Data > Accounting Entities View and configure accounting entities including:
  • Assigning users to accounting entities
Configure > Master Data > Typess > Locations View and configure locations including:
  • Assigning users to locations
Configure > Document Authorizations View and configure document authorizations including assigning security roles to documents.
Security Administration > Federated Security View and configure federated security settings including federated single sign-on using SAML.
Security Administration > Service Providery View and configure service provider settings if your tenant has been configured with service provider options.
Security Administration > Domain Security View and configure an Allowed or Blocked domain list.
Security Administration > Authentication URL Options View and configure the authentication mode and view URLs that allow you to access your system with different authentication methods.
Security Administration > ION-Person ID View and configure the default setting for ION Person ID.
Security Administration > Session Configuration Time-out: View and configure the default idle session time-out.

Concurrent Sessions: Configure the number of concurrent sessions allowed.

Security Administration > Settings > General Settings View and configure other general settings:
  • Trusted Domains
  • Change Icon
  • Email Settings
  • System Use Notification Settings
  • Manage Features
    1. Enable SCIM Service
    2. Enable IFS Audit
  • Account creation status

    Create users in draft status.

  • Application specific settings

    Do not auto-generate a user alias while creating users.

Security Administration > Settings > Infor OS Portal Configuration: View and configure users who can log in using Infor OS Portal Identities.

Password Management: View and configure password strength and complexity requirements for Infor OS Portal Identities.

Metadata > User Properties View and configure options for user properties.