Services and Identities

In Lawson Security, a service is a logical representation of a Lawson component that requires authentication, such as Lawson Portal, Lawson Add-ins and so on. A service defines the credentials that a user must present to the component.

An identity is the specific set of credentials for a user.

When a user is added to the Lawson system, all identities the user needs are linked to the user's RMID, the master identity. During a user session, the RMID tracks a user's movements to determine if the user has access to a specific component or piece of data he or she has attempted to access.

The job of the security application is to keep track of the user's progress through a session to ensure that:

• The session remains active (that is, has not timed out due to inactivity).

• The user has an identity for all components requiring authentication that he or she attempts to make use of during the session.

• The user is authorized to access any application or data he or she attempts to use, including those that do not require separate authentication.