Hi All,

I am facing this strange problem. This is on ERP LN 6.0.

I have defined 2 ROLES as given below For company# 450.

1. DEFAULT -
'Session Auth by Company' - for Co.#450 - Print and Display.
(Thus this includes all sessions of 450)

2. APCLRK -
Here I have defined some exceptions in 'Session Auth by Session'.
Few sessions have FULL AUTH and
Few sessions have NO AUTH

When I link these 2 roles to a User.
All FULL AUTH session work as expected but NO AUTH sessions open in 'PRINT/DISPLAY' mode.

I am not sure what's going wrong.
As per the User Management Doc. 'Session Auth by Session' is on Priority 1.

Please advise. It's urgent. :(

Thanks.

hi,

it seems that there is a Conflict in your Roles, try to put all the authorizations you need in one Role not in two. And make sure to convert changes to Run Time DD

try this solution and if it doesn't work please send me the Role Browser for these Roles ok

Good luck

You always "add" authorizations when combining two roles, you cannot "take away" an authorization that one role grants by adding another role that hasn't that authorization. So, if the user has the DEFAULT role, he/she will be allowed to "Print and Display", no matter what's in any other role that's added on top. Priority on where you define that (session level, module level etc.) is not taken into account here!

Think of roles as little blocks that add some particular authorizations that are *needed* for that (and only that) role, So the basic "default" authorization that every user gets should be as restricted as possible (no authorization except for display in standard tool sessions (like those needed for selecting a printer etc.).

Hope that helps
Uli

I'm totally agree with ulrich.fuchs





Best Regards,
Ahmad Bani Naser
Electronic Resources Planning Co. (ERP)
Email: abaninas@gmail.com