User Security based on Roles in EO8.10

Hi
I have done an upgrade from XE to EnterpriseOne 8.10. And when I am trying to setup User security based on roles, it is not assigning the user security to individual users having the role assigned.
It used to work fine in XE, when we had GROUP on which we could set up the User security instead of doing it for individual users.

Does anyone have an idea about this issue?

Regards

You will have to drop each role and re-add them one by one. The security
records will stay as is. We had this problem on our upgrade to 8.9.







_____

From: [email protected] [mailto:[email protected]] On
Behalf Of mansat1
Sent: Thursday, December 23, 2004 2:01 PM
To: [email protected]
Subject: User Security based on Roles in EO8.10



Hi
I have done an upgrade from XE to EnterpriseOne 8.10. And when I am trying
to setup User security based on roles, it is not assigning the user security
to individual users having the role assigned.
It used to work fine in XE, when we had GROUP on which we could set up the
User security instead of doing it for individual users.

Does anyone have an idea about this issue?

Regards

_____


The entire <http://www.jdelist.com/ubb/showflat.php?Cat=&Board=> JDELIST
thread is available for viewing.


This is the JDELIST EnterpriseOne Mailing List.
The instructions on how to unsubscribe from any JDELIST mailing list are
available here <http://www.jdelist.com/unsubscr.shtml> .
JDELIST is not affiliated with JDEdwards(r).

Do you have multiple roles assigned to the users? If
so you need to check the role sequences to determine
which role take priority if there is a security
conflict between the roles.

I have only onr role assigned to the user that I am testing right now. And one more thing is, when I add User Security (System User assignment for database access)to the role, the user having this role assigned does not get any security record in F98OWSEC.

There are different ways to handle security. Usually most people restrict everyone from everything and then apply the object security. It is easier to apply security to a role than to individual users. The System User for DB access is separate. This ID on SQL is for, as you said DB access. It has no Peoplesoft security records assigned to it. Again, most people use the same System ID assigned to all Peoplesoft users. If you use different System ID’s for each user then you need to maintain user security on Peoplesoft and SQL.

For your problem, I take it that you cannot access the objects from the test role with the user ID that you assigned to it. If you just upgraded you may get mixed results. As mentioned, drop the test role and re-create it and then re-assign the user ID for it.

Please make sure you have the following in place:

1) Object security for the role. In XE the role used to be a group. Since the group now becomes a role, the object security records will still exist.
2) Make sure that you have an environment assigned to the role or user ID. It is easier to manage by assigning environemnts to roll.
3) Make sure that the role relationship to the user is set up.

Good luck!

Thanks!
I think I have not made the problem clear.
I did the following:
1>Create a new role in 8.10
2>Create a system user in P980001(with same name as role).
3>Create a new user
4>Assign the role to this new user
5>Create a security record for the role
try logging into PSFT 810 with the new user. And this does not work.
Same scenario in XE, where role would replace group would work fine.

Any comments

Ok, make sure the system user is defined on SQL and has sufficient access to
all PSFT DB's. Did you assign the system user to the user ID? You can
temporarily give full access to see if you can log in. Did you assign the
system user to the user ID? If it still fails, sent the error during login.







_____

From: [email protected] [mailto:[email protected]] On
Behalf Of mansat1
Sent: Thursday, December 23, 2004 4:55 PM
To: [email protected]
Subject: Re: User Security based on Roles in EO8.10



Thanks!
I think I have not made the problem clear.
I did the following:
try logging into PSFT 810 with the new user. And this does not work.
Same scenario in XE, where role would replace group would work fine.

Any comments

_____


The entire <http://www.jdelist.com/ubb/showflat.php?Cat=&Board=> JDELIST
thread is available for viewing.


This is the JDELIST EnterpriseOne Mailing List.
The instructions on how to unsubscribe from any JDELIST mailing list are
available here <http://www.jdelist.com/unsubscr.shtml> .
JDELIST is not affiliated with JDEdwards(r).

Hi,
Check the Password assigned to the user while adding the security record. Default is the User ID.
Rgds,
Gary

Re: RE: User Security based on Roles in EO8.10

thanks for the reply!
I think I have the oracle user ID setup fine.
I had a call with Peoplesoft GSC, and they told me that individual user needs to have security record assigned to be able to access database.It cant be set on role level.

any comments?

Re: RE: User Security based on Roles in EO8.10

Yes, you can use role security and role relationships for object security. But you must first have a user security for every individual user, in that screen, you will assign which user ID will be used to access DB.