Creating Security Classes for the Administrative Profiles

Securing the administrators and the Schema Editor are essentially optional steps. As delivered, the ADM and RM profiles provide access to everything that security administrators need.

Use these procedures to create security classes that define access to the Lawson Security Administrator, the Resource Management Administrator, or the Schema Editor. You use these classes if you want security sub-administrators who can do some security tasks but not all, or if you need to set up some administrators to work only with resource information. For example, perhaps you want someone to have only the right to view security information. In that case, you set up a security class that allows inquire-only access to the objects in the Lawson Security Administrator.

You can create independent security classes or you can create a security class that inherits from another one. As a general rule, consider using inheritance if you need a security class that varies only slightly from an existing one.

Note: Do not modify the existing security classes that Lawson delivers for the super-administrator role. Instead, create security sub-administrator roles and new, more restrictive security classes, and assign those classes to the sub-administrator roles.

To create an administrative or Resource Management security class

  1. From the Profile Management option set, choose Profiles.
  2. Select the profile you want to work with by double-clicking it or by clicking the Select Profile button.

    The list of classes available from the profile appears.

  3. Click Add to create a new class.

    The Add Class dialog box appears.

    Form clip: Add class dialog box
  4. Make selections for the following options as needed:
    Security Class

    The name of the security class you want to add.

    Description

    A description of the security class.

    Based On

    The name of a parent class for the security class. Leave this blank if you are not creating a security class that inherits from another one.

  5. When you are ready to add rules to the class, double-click the class from the list.

    A dialog box showing the list of rules associated with the security class (if any) appears.

    Form clip: Security classes
  6. Click Add Rules to open the Object Selector and Rules Builder in order to add or modify rules for the security class.