Limiting access to Landmark actors

unknown

We currently have IPA and Contract Management implemented on the Landmark side.  We are in the process of implementing Cash & Treasury Management (CTM) in the Financials suite.  I'm struggling what Landmark security roles to give my CTM power users.  It appears that some of the admin roles (OOFAdmin_ST and CTMAdministrator_ST) give these power users access to actors.  They can add/remove roles to actors.  They also have the ability to modify the security classes that exist in Landmark as well.  I do not want my CTM power users to have the ability to do this.  Does anyone know how I can remove the actor access from these roles?  I really don't want my CTM users to be able to give themselves access to Contract Management or our IPA data area.  Has anyone else encountered this issue?  I have a incident open with Infor Xtreme, but they haven't given me any suggestions that have worked so far.

Derick Safarian

In the OOFAdmin_ST role, there is a security class called OOFAccessToAllActions_ST, which gives access to ALL business classes (including Actors and Roles). Here is the section of the LPL from that security class that grants that access:



"OOFAccessToAllActions_ST is a SecurityClass

description is """"



Access Rights



BusinessClass Type

is accessible

for all actions

unconditionally



person Module

is accessible

for all actions

unconditionally