JD Edwards Security
JD Edwards Security
(OP)
Hi All
We are running JD Edwards World version A7.3 and our company wants to start using JD Edwards group support I've reviewed the documentation and it seems straight forward enough but I can't find the part of the guide that gives the
step by step details or specifics about the process.Is there a security administrator guide? We have the complete
documentation but the documentnation I've got looks like the users guide. Maybe a group setup example would be nice.What we are talking about is creating an JD Edwards *AP group and all the people in AP users would be in that group. There's so many levels of security.Any feedback, suggestions or comments would be greatly appreciated.
Thanks
Roscoe
We are running JD Edwards World version A7.3 and our company wants to start using JD Edwards group support I've reviewed the documentation and it seems straight forward enough but I can't find the part of the guide that gives the
step by step details or specifics about the process.Is there a security administrator guide? We have the complete
documentation but the documentnation I've got looks like the users guide. Maybe a group setup example would be nice.What we are talking about is creating an JD Edwards *AP group and all the people in AP users would be in that group. There's so many levels of security.Any feedback, suggestions or comments would be greatly appreciated.
Thanks
Roscoe
RE: JD Edwards Security
RE: JD Edwards Security
information on defining classes. I'm using the JDELIST website as well thanks for the suggestions.
RE: JD Edwards Security
RE: JD Edwards Security
1.) Menu Masking
2.) Grant All - Deny individual access (All Access plus
Action Code Security for Denied programs)
3.) Deny All - Grant back individual access
If you are required to provide audit info on what transactions/functions a user has access to, I recommend Opt 3 - the DENY ALL strategy (Vs using Menu Masking and/or Denying access to Sensitive programs only).
Deny the Group/User access to everything & grant back access to individual programs. This is a bear to set up, but requires the least maintenance and is the easiest to report on for an Audit. Although work intensive, it is fairly simple to convert your existing Security strategy to DENY ALL.
1.) Duplicate each GROUP on JDE, suffix with a '2'.
2.) Create duplicate User ID's, suffix with a '2' and
attach to the new Group.
3.) Deny All at the Group Level.
4.) Grant back common access at the Group level
5.) Grant back individual User access if necessary
After granting access to Programs for Groups/Users that are required, have Users do their daily tasks using the new User id's for a 2 or 3 week period. This will let you know what one-off access a User(Group) will require.
RE: JD Edwards Security