secadm service - Security Administration: Maintain Security System Services
secadm service add servicename [--description description] --servicetype servicetype [--version version] [--loginscheme loginschemename] [--loginschemeexpression loginschemeexpression] [--isreference Yes|No|1|0|True|False] [--referenceservicename referenceservicename] [--accountlockoutpolicy accountlockoutpolicy] [--passwordresetpolicy passwordresetpolicy] [--allowsanonymous Yes|No|1|0|True|False]
[--deleteconstraints deleteconstraints] [--assignmentconstraints assignmentconstraints] [--passwordpolicy passwordpolicy] [--serviceprotocol serviceprotocol] [--hasownssopages
Yes|No|1|0|True|False]
secadm service update servicename [--description description] [--version version]
[--loginscheme loginscheme] [--loginschemeexpression loginschemeexpression] [--isreference Yes|No|1|0|True|False]
[--referenceservicename referenceservicename]
[--accountlockoutpolicy accountlockoutpolicy]
[--passwordresetpolicy passwordresetpolicy] [--allowsanonymous
Yes|No|1|0|True|False] [--deleteconstraints deleteconstraints] [--assignmentconstraints assignmentconstraints] [--passwordpolicy passwordpolicy] [--serviceprotocol serviceprotocol] [--hasownssopages Yes|No|1|0|True|False]
secadm service delete servicename
secadm service assignloginscheme servicename --loginscheme loginscheme [--servicetype servicetype] [--description description]
secadm service display servicename
secadm service list
secadm service exportidentities servicename| ALL exportFileName
The secadm service command maintains services
in the system. Through this command, you can accomplish the following:
-
Add, modify, or delete services. The installation of Landmark and Landmark applications includes the installation of some services. You may, however, need to add more, for example, if you want to create a database service in order to modify how users are authenticated for access to the database.
-
Define whether the services are primary services (ones uses for logging in) or whether services refer to other services for the log in procedure
-
Assign login schemes and service protocols (HTTP, HTTPS, or HTTPS for sensitive data only)
-
Assign security policies in order to control password creation and resetting
-
List services and display service properties
In addition, through the secadm Maintain system services menu
option (secadm -m), you can turn on "Last successful
login tracking" for a service. If you turn on this feature, the last
successful login is listed in the actor records.
| Options | Description |
|---|---|
add
|
Add a service to the system. |
update
|
Update a service in the system |
delete
|
Delete a service from the system. |
assignloginscheme
|
Assign a login scheme to a service as well as optionally modified a limited set of service properties. |
display
|
Display the properties of a service in the system. |
list
|
List the services in the system. |
exportidentities
|
Export to an XML file the identities for a service or for all services. Use Note:
The identity passwords are replaced with a value of "***************". You must re-assign passwords for each identity after you import the identities to another Infor Landmark Technology system. |
servicename
|
Specify the name of the service. |
exportfileName
|
The name of the file to export the identities to. |
--description description
|
A 30-character text description of the service. |
--servicetype servicetype
|
One of the following service types:
|
--version version
|
The version of the service. This value is normally pre-configured by Lawson; it should rarely require modification. Valid values are
The default is 2.0. Note:
Version |
--loginscheme loginschemename
|
Specify an existing login scheme. Lawson recommends that you use the default login scheme, SSOPV2, for services at this time. The login scheme determines what service types are allowed, whether the service supports time-out or session management, and whether the login procedure is an LDAP or reference look-up procedure. |
--loginschemeexpression loginschemeexpression
|
Specify a login scheme expression. |
--isreference Yes|No|1|0|True|False
|
Specify whether this service references another service. Landmark services will most often reference the primary service, SSOPV2. The referenced service will own and manage the identities for the service; they will not be replicated for this service.
– or –
This field requires that a Reference Service Name is specified. |
--referenceservicename referenceservicename
|
A 40-character text field that specifies the referenced service. This field is required when the IsReference
field is set to |
--accountlockoutpolicy accountlockoutpolicy
|
Specify the account lockout policy for the service. |
--allowsanonymous Yes|No|1|0|True|False
|
When set to True (Yes, or 1) this parameter causes the anonymous actor to be created for this service. This allows users to access portions of the application that allow anonymous access.
– or –
This field requires that a Reference Service Name is specified. |
--deleteconstraints deleteconstraints
|
Not implemented. Indicates how deletes are performed.
– or –
|
--assignmentconstraints assignmentconstraints
|
Not implemented. UniqueAssignments
indicates that the identities for the service must be unique. |
--passwordpolicy passwordpolicy
|
Specify the password policy for the service. |
--serviceprotocol serviceprotocol
|
Specify the HTTP protocol for the service. |
--hasownssopages Yes|No|1|0|True|False
|
Indicate whether the service has its own page for single sign-on. |