Enabling / Disabling Users' Ability to Change Special User Passwords

Enabling or disabling a users ability to change passwords for a particular service or agent means preventing them from accessing attributes for the service through the Lawson-delivered page (useratts.htm).

You use the ssoconfig utility to perform this procedure, which would apply if you want to change users' access to attributes for the Env/OS service, the database service, or any black box or other service you might have created at your site.

To enable / disable ability to change attributes for services other than SSOP

  1. Run the ssoconfig utility. From a command prompt, type

    ssoconfig —c

  2. At the prompt, type the password for the ssoconfig utility.
  3. From the main menu, select "5" Manage Services and then select "2" for Change Service.
  4. At the prompt for name of form, type the name of the service.
  5. At the prompt to choose authentication method, re-select the number that currently appears. For example, if "1" for Form is currently selected, press "1".
  6. Press Enter to bypass each of the following prompts:

    This authentication method uses (user) for identifying user.

    Enter a comma-separated list of attributes whose values should be encrypted other than password.

    Enter a comma-separated list of attributes whose values are optional.

  7. At the prompt, "Enter a comma-separated list of optional attributes whose values can be provided by the user," do either of the following:
    • If you are disabling the ability to change passwords, remove "password" from the list of attributes.

    • If you are enabling the ability to change passwords, add the word password. If multiple attributes appear in the list, use commas to separate.