Overview of procedures

Required versions of Infor Lawson products

Configuring EMSS from outside the firewall requires these Infor Lawson products:

Product Supported version/s
Employee Manager Self Service 10.0.5, Update 16 and later
Infor Lawson System Foundation 9.0.1.13 and later, fully patched
10.0.5.0 and later, fully patched
Infor Lawson Portal 9.0.1.13 and later
Infor Lawson for Ming.le 10.0.5.0 and later
Infor Security Services 10.1.0.0 and later

Tasks and where to find information

This table provides an overview of procedures required to enable EMSS to run outside of the firewall without using a VPN. The table includes these procedures:
  • EMSS
  • LSF
  • Infor Security
  • External Portal
Procedure Where to find information

Set up the infrastructure, including:

  • Configuring a new HTTP server instance

  • Creating a web server definition

  • Adding virtual host entries in the WebSphere instance running on the LSF server

 Infor Lawson System Foundation Core Technology Installation Guide
Install the External Portal. This interface handles requests from users attempting to log in from outside the firewall.

Infor Lawson for Ming.le Installation Guide, version 10.0.x (10.0.5.0 minimum).

Infor Lawson Portal Installation Guide, version 9.0.1.x (9.0.1.13 minimum).
Install External EMSS. This makes the EMSS product available to run outside the firewall. Run the EMSS installation on the external web server. To select the installation package to install, select Web Server when prompted. Infor Employee and Manager Self-Service Installation Guide, version 10.0.x (10.0.5.0 minimum).
Create a rule file to give users access to the external EMSS application. Rule templates are delivered with EMSS.

Infor Employee and Manager Self-Service Administration Guide

See Configuring EMSS for internet-facing deployment.

Define a domain and endpoint for the external application.

See the the information about configuring multiple endpoints for external and internal web servers in the Infor Lawson Server Setup and Maintenance Guide

If you use ADFS for authentication, then you or your system administrator must configure a relying party trust for each endpoint.

More information is available in the ADFS sections of the Infor Lawson 10 Authentication Configuration Guide.
Enable Internet-facing applications in Infor Security.

See the information about configuring internet-facing applications in the Infor Security Services Configuration Guide.

Optional: Create a new PortalRole file that you will use as default for users who log in outside the firewall.

See the information about configuring user roles and options in the Infor Lawson for Ming.le Administration Guide.
Enable the rule file and the new PortalRole file (if using).

See the information about configuring internet-facing applications in the Infor Security Services Configuration Guide.

Configure vulnerability mitigation. Infor Security provides tools for things such as session validation and cross-site scripting prevention.

See the information about vulnerability mitigation in the Resources and Security Administration Guide.