Setting Up Access to the metadump and metaload Utilities

If you receive a "Security Violation" message when you attempt to run any of the metadump and metaload utilities, you must either turn off security before running the utilities or you must set up security to allow access specifically to the utilities.

To turn off security

  1. At the command line, type

    lsconfig -c password OFF

To set up access to metaload and metadump utilities through Lawson Security

  1. If you want to use a new security role for access to the utilities, such as one designed only for a select group of developers or administrators, access the Resource Management Administrator. If a role already exists that can be used for providing access, skip to the next main step.

    1. In the Resource Management Administrator, close the View selector and select Role from the Add menu.

    2. Provide an ID and description for the role, such as "AppDeveloper" and "Application Developer."

    3. From the Edit menu, select Add and then close the window and then the

  2. Add the metadump and metaload utilities to the Form ID Definition utility (tokendef).

    1. In a Lawson Interface Desktop session, access the Form ID Definition utility (tokendef). At the command line, type

      tokendef

    2. Select Environment Form IDs.

    3. Select the DEVELOP (Development tools) category.

    4. Move the cursor to within the list of existing form IDs and press Insert (F8).

    5. Enter the following form ID definitions (note that the Form ID field only accepts the first eight characters of the utility names):

      Form ID Title Type
      metaloadel Metaload Elements Online
      metaloadli Metaload Libraries Online
      metaloadmn Metaload Menus Online
      metaloadms Metaload Messages Online
      metaloadpg Metaload Programs Online
      metaloadsk Metaload System Key Numbers Online
      metaloadsy Metaload System Online
      metaloadtb Metaload Tables Online
      metaloadwr Metaload Work Files Online
      metadumpel Metadump Elements Online
      metadumpli Metadump Libraries Online
      metadumpmn Metadump Menus Online
      metadumpms Metadump Messages Online
      metadumppg Metadump Programs Online
      metadumpsk Metadump System Key Numbers Online
      metadumpsy Metadump System Online
      metadumptb Metadump Tables Online
      metadumpwr Metadump Work Files Online

    6. Press Enter and then exit the Form ID Definition utility.

  3. Create a security class that provides access to the metadump and metaload utilities. If you have an existing security class that it is suitable to modify, you can skip this step.)

    1. Access the Lawson Security Administrator.

    2. In the list of profiles, select the Environment profile and click Select Profile.

    3. On the security list window, click Add.

    4. Provide a name and description for the security class, and click Add.

  4. Add access to the security class for the metadump and metaload utilities.

    1. In the Lawson Security Administrator, select the security class within the Environment profile and click Rules for Class.

    2. On the Rules window, click Add Rule.

    3. Expand the Development Tools category of executables.

    4. Select each of the metaload and metadump utilities.

    5. Select Grant All Access and click Apply.

  5. Assign the security class to the role for users who need access to the utilities.

    1. In the left navigation pane, click Class Assignment.

    2. In the Role Name field, select the role.

    3. Click the Assign Security Classes button.

    4. Select the security class you want to assign to the role and move it to the Assigned Security Classes pane by clicking the right arrow (>).

    5. Click Close.

  6. If the user who needs access to the utilities does not already have the role, assign the role to the user.

    1. In the Lawson Security Administrator, click User Maintenance under User Management.

    2. Perform a search for users.

    3. Right-click on the user in the search results list, and select Edit RM Information.

    4. Verify that the CheckLS field is set to Yes.

    5. Double-click the Role field to open a list of roles.

    6. Select the appropriate role, click the right arrow button (>), and click Finish.

    7. On the Change RM Object window, select Change from the Edit menu.

  7. Verify that the user has access.

    1. Verify that Lawson Security is on. At the command line, type

      lsconfig -l ON

    2. Have the user start a Lawson Interface Desktop session.

    3. Have the user type at the command line one of the utility names. For example:

      metadumpmsg

      The system should display the syntax for the utility rather than a "Security Violation" message.