CheckLS flag in LSF10 - does it do anything at all?

asztudenyak

I opened a case with Lawson but not getting a definitive answer.

Since the CheckLS flag still exists in Lawson Security 10, what is the effect if it is set to "N", vs "Y"? Anyone know?

Find more posts tagged with

Infor Lawson Technology Group - Discussion

Comments

unknown

we were told to change that flag to "N" when we upgraded from version 9 to version 10

0712050809193544.doc

unknown

We set ours to Yes. It is supposed to indicate 'check security for this user' for any components linked to LSF.

asztudenyak

Okay I just heard back from Infor. Does not matter what it is set to, Y, or N. Same effect either way. Since there is no more LAUA, the flag has no impact at all.

unknown

Thanks for the info. When we migrated from 9 to 10, I made sure to always set it to "Y".

unknown

The flag was used by clients like us who converted from LAUA to LS Security, but not all at once; during our conversion we had some users on LAUA and others on LS Security, but once we had everyone on LS Security and had upgraded to v10 we no longer used that flag. I actually tested it, and similar to what others are saying, it has no bearing on anything once you are fully on version 10.

asztudenyak

Yes I know how it we use it on LSF9, we are still using LAUA in our production system, and testing security (some folks set to Y and some set to N). Obviously our LSF10 test system has no LAUA and I wanted to ensure that the flag was no longer used, since I have lots of people with it set both ways. So it one thing less to worry about - which is a good thing.

Hmmm....can you guys look at your system account (would start with your env name, would be <env name>_system (e.g LSF10PROD_system) and see what the flag is set to for that account? I was just informed by someone else that these type of accounts always need the flag set to N. And if that is the case, then clearly the flag DOES have an impact.

unknown

If your users still know how to access the Lawson LID if Y isn't checked they can access LID

Gelangens_Anlage_Entwurf.pdf

asztudenyak

T.Kole - I have mine set to Y, and I can access LID. Obviously I use LID all the time so that would not make sense to me.

unknown

You can access Application screens? I know you can access the Environment for DB Uploads etc. when I tested like PO20 or any application screens I was not able to access.

asztudenyak

Yup. Just tried Lapm for HR11, and it came right up. I wonder if this is a difference in our versions. This is 10.0.9.1611 technology.

unknown

Can you also access HR11 via Ming.le/Portal?

I can access GL90 in LID - which I have access to in Portal. I can't access HR11 in LID - in Portal I'm restricted from seeing certain tabs.

asztudenyak

Yes definitely. I have full access, so I can bring up HR11 in portal no problem. What version of LSF are you on?

unknown

Yes I can too with SuperAdmin rights but I have a test user account that doesn't have those rights and I get an error "Server terminated LID is no longer available for end user transactions. Please contact your system administrator" My end users do not know how to access via lapm command they only know how to access LID from the Desktop client. They can access that LID client for DB Uploads but don't anymore as they use the IMDBB screen in Portal instead. Any other App screen they get that error.

asztudenyak

Ah. Yeah I don't even remember how to access the desktop client - I never used it myself. Might have to test that out just to see.

unknown

I tested last year prior to our upgrade and if N I was able to pull up the PO20 screen...we did put some Env patches on since and now when I test without SuperAdmin and flag N it is still giving an error. Either they found a way to totally keep users from LID without the Admin rights or I didn't wait long enough after the change in Security (no patience) to test. Will try again later and update if anything different

asztudenyak

Well I can't even bring up the Desktop Client, it just spins...and it's been years since I have even tried it. I really have only one, maybe 2 users that would ever use it - I will have to check with one of them next week and see if they can access the LSF10 server that way.

FYI - I found this in Infor support. Archived KB 1542542

"The Desktop Client Logon (frontend32.exe) has been decommissioned as of version LID 10. There is only one LID version per release so LID 10.x will work with both LSF901 and LSF10. In addition LID now also has specific installers for 32-bit and 64-bit environments.

Any installations of the Desktop Client Login may continue to work, but will not be supported."

Copyright © 2025 Infor. All rights reserved.