If JavaScript is disabled, please continue to the
sitemap
.
Infor Landmark Technology User Setup and Security for CloudSuite
Home
Home
Back
Back
Forward
Forward
Search
Help
Copy URL
PDF
Print this page
Help
Help
Copy URL
Copy URL
Topic URL copied to clipboard
PDF
PDF
Print
Hide the Table of Contents
Show the Table of Contents
Landmark Security Overview
Landmark Security Introduction
Application Security Architecture
Web Applications
Applications accessed through the web interface
Landmark Security Setup Overview
Landmark Administration Tools
Security for Administrative Users
Administrative user access
Authorizing Access to the GEN Product Line
What Are the GEN Security Classes?
GEN Security Classes
Framework classes
What Are the GEN Product Line Roles?
Assigning GEN Security Classes to Roles
Security Policies
What Security Policies Can I Define?
Activating Security Policies
Configuring Login Schemes
What Are Login Schemes?
What Are LDAPBind Login Schemes?
Adding or Updating Login Schemes
Deleting Login Schemes
Viewing Login Scheme Information
Listing login schemes
Displaying login scheme properties
Configuring Account Lockout Policies
What Is an Account Lockout Policy?
Adding or Updating Account Lockout Policies
Adding a lockout policy
Updating a lockout policy
Deleting an Account Lockout Policy
Viewing Account Lockout Policy Information
Listing account lockout policies
Viewing the values assigned to a lockout policy
Configuring Auto-Logout of Inactive Users
Configuring Auto-Lockout of Inactive Users
Configuring Password Policies
Password Policies
Adding or Updating a Password Policy
Adding a password policy
Updating a password policy
Viewing Password Policy Information
Listing all password policies
Displaying a password policy
What Is a Password Reset Policy?
Configuring Password Reset Policies
How Are Password Reset Policies and Questions Defined?
Initial System Setup for Password Reset Policies
Determine the Primary Authentication Service (PAS) for the internal domain
Create the service property for GenPwd
Create a do not reply email address
Ensure anonymous user access
Restart Landmark and the application server
Adding (or updating) a password reset policy
Creating a custom email template for password reset
Deleting a Password Reset Policy
Viewing Password Reset Policy Information
Listing all password reset policies
Displaying a password reset policy
Requiring Users to Reset Passwords
Requiring an individual user to reset a password
Configuring Security Questions and Answers
Adding or Updating a Security Question
Adding a security question
Updating a security question
Deleting a Security Question
Viewing Security Question Information
Listing all security questions for a service
Displaying information for an individual security question
Adding or Updating Security Answers
Deleting Security Answers
Viewing Security Answer Information
Listing security answers
Viewing security services
Customization Options for Authentication
Customization options: Overview
Adding your custom logo to the Infor Landmark login and password reset pages
Configuring a custom label for the user name field
Configuring a custom name for the password field
Configuring a custom message string for password retrieval
Configuring CAPTCHA for password reset pages
Configuration for Step-up Authentication
Step-up authentication: Overview
Device registration
Adding the stepupauthentication.enabled configuration parameter to the gen data area
Configuring a business class action as privileged
Landmark Application User Setup
User Setup Overview
What Is a Landmark User?
What Is the Anonymous User?
Adding Landmark Actors to your CloudSuite
Deleting Users
Delete ActorContext records
Delete the identity/actor record
Delete the identity record
Delete the actor record
Purging an Actor record
Resetting User Passwords
Force a user to reset their password
Working with the UI Access Control feature
Creating access control policies for web applications and associated navigation items
Granting access to a web application
Creating and configuring an access control policy for a navigation item
Copying a navigation access control policy to a different role
Managing policies for navigation items
Creating access control policies for delivered reports
Enabling the Report Catalog
Creating and configuring an access control policy for a delivered report
Copying a delivered report access control policy
Managing policies for delivered reports
Configuring User Access Using Landmark Security
Understanding Landmark Security
What Is the Landmark Authorization Model?
Pessimistic and Optimistic Security Approaches
Default Access Determination
What Are Actor Context Values?
What Are Roles, Rules, and Security Classes?
How Is Access Granted to Users, Actors, or Identities?
Managing User Access
Creating roles using the Web UI
Assigning Roles to Actors
Removing Security Classes from Roles
Removing security classes from roles
Configurable Features for user setup and security
Enable Configurable Features
Disable Configurable Features
Update security roles for Configurable Features
Enabling the Rich Text Assisted Authorship feature
Setting Up User Proxies
User proxies
Setting Up User Proxies as an Administrator
Setting up user proxies as an administrator
Setting Up a User Proxy as a User
Viewing Proxies as a Grantee
Enabling Security
How Does the Security Run-time System Work?
How Is Authorization Enabled?
Enabling Run-time Authorization
Enabling run-time authorization
Actor Context Templates
Actor Context templates: Overview
Creating an Actor Context template
Linking a single Actor to an Actor Context template
Linking all Actors to an Actor Context template
Linking an Actor Group to an Actor Context Record
Linking a Role to an existing Actor Context record
Linking a Role Group to an Actor Context Record
Configuring Session Management
Configuring Session Timeout at the Domain Level
Configuring Internet-Facing Applications
Overview of Setup Tasks for Internet-Facing Application Setup on Landmark
Configuring Multiple Endpoints for External and Internal Web Servers on Landmark
Prerequisite procedure: Create a new web server
Create an SSO Domain for External Users
Link the External Domain to the Service
Create an HTTPS Endpoint for the External Domain
Link the New Domain to the HTTPS Endpoint
Create an Endpoint Group
Link the new endpoint to existing services
Activating Internet-facing Application Rules for Landmark
Prepare the rule file for the Employee and Manager Application
Activating the new external domain and the rule file
Working with permission BODs
Permission BODs: Overview
Enabling permission BODs
Run permission BODs initially
Creating a schedule for permission BODs to run automatically
Sending / Receiving Data Using PGP Encryption
Configuring Pretty Good Privacy (PGP): General information
Key management and encryption tasks
Services for key management and encryption tasks
Managing PGP key pairs
Generating a key pair
Uploading a PGP public key
Downloading a PGP key using a menu
Deleting a PGP key pair using a menu
Configuring an expiration date for PGP keys
Log Files and Debugging
Landmark security log files: General information
Viewing security logs online from the Security Session Debug list
Debugging a security session: Example
Configuring a logger for troubleshooting
Archiving a log file created through the ViewLog action
Security Reports
Overview
Role Security Classes By Actor
Missing Security Classes
Actor Role History Audit
Actor Role
User Security
Securable Object Policy
Securable Object Access Details
Securable Object Prediction
Securable Object Conditions
Security Class Inheritance
Security Class Inheritance Summary
Security Menu
Web App and Content Evaluation
User Permissions
Security Session Debug
Inquire Condition Optimization Validation
Segregation of Duties Report: Overview
Creating a template for a Segregation Duties Report
Running the Segregation of Duties Report
Managing Segregation of Duties report templates
Printing and scheduling options
Delete reports that are no longer needed
Creating Customized Security Classes
Security class customization: Knowledge prerequisites
Accessing tools for creating customized security rules
Methods for creating customized rules
Creating customized security rules through the security administration interface
Using the Condition Builder window
Creating customized security rules using Security Administration for the web: Overview
Using the web-based LPL editor
Deleting security rules
To delete all security rules for a securable object
To delete an individual security rule
Configuring SAML Claim Rules
Create security claim mapping
Create a rule that uses the SecurityClaim
Creating security classes using inheritance
Security Class Inheritance: Overview
Properties of inherited classes
Creating or updating a security class to use inheritance
Open link in new tab
Open link in new window
Copy link to clipboard