permissions by module/session question.

In Baan V, does it work along the same line as they did in IV? Meaning someone (a role) who needs access to just about all of a module can get Full Authorization to the module but then I can go in an allow no authorization for the session in that module that is a parameter session?

we are redoing the authorizations and need to simplify it someway and for most, this is good because people in our company generally need most of a module except for a few sessions - rather than explicitly doing each session!

Any help appreciated.

It is possible to define Authorization likewise in Baan IV. In session Role Data (ttams2100m000) click the Button "Specific". There are four possibility for Session Authorization:
Session Authorization by Company
Session Authorization by Package
Session Authorization by Module
Session Authorization by Session.

Right.

And if I gave some role full authorization for a module, then created an authorization by session that was opposite to that (i.e. gave full TDSLS but then removed tdsls4405m000 or something). Baan V should give full access to everything in TDSLS except the one session - right?

Yes, you can choose "No Authorization" for Session.