Landmark Security Setup Overview

The installation of a Landmark Environment includes the installation of the Single Sign-On authentication service and the creation of at least one user. (It may also include additional users if you bring over users from an existing Lawson System Foundation Environment.) After the initial installation, the security administrator can configure security for the following features:

• Single Sign-On

  This includes modifying the initial configuration of the Single Sign-On service (generally SSOPV2). Optionally, you can also create SSO domains and then configure the security policies for the services for those domains.

• Database Authentication

  You have several options for database authentication. You can configure your system so that all database requests are authenticated through a single user or you can set up the database service so that it requires each user to authenticate individually when accessing the database.

• Security Policies

  This includes login schemes, account lockout policies, password policies, and password reset policies. Different services can have different login schemes, account lockout policies, password policies, and password reset policies.

• User Setup

  This includes adding users to your system and linking identities to actors and roles.

• User Access

  This includes configuring each user's access to Landmark applications and Landmark Environment data and tasks. This is done through the set up of links between identity, actor, role, and security class records.

• Security Administration Access

  You can control access to the Security Administration utility through user restrictions and password protection.