This article covers the steps for configuring Lawson to automatically generate all file types (XML, etc) for each batch job that is run.
In LAWDIR/system, you will need to look for a rpt.cfg file. If the file doesn’t exist, then you must create it.
Next, to generate XML for all batch jobs, you must set RUNTIME_XML to ON. For CSV, the configuration type is RUNTIME_CSV.
See below for a sample file:
lawdir/system/rpt.cfg
There is no restart or downtime required for these changes to take effect. Simply restart the system and your new changes will be applied to your batch jobs moving forward.
To adjust the maximum heap size of a node in Landmark Grid, you first need to be logged into the Grid Management Console. From there, follow these steps:
- Click the Configuration Manager link (the gears icon located at top right corner).
- Next, click “Applications”.
- Select your Landmark deployed application.
- Click “Edit Properties”.
- Under Grid Defined Properties, click “Max Heap”.
- Select the “All” Radio Button.
- Find the node you wish to adjust, and click on value it is currently assigned.
- In the popup window, enter a new value and click save.
- In the top left corner of the screen, click save again to apply the changes.
- Click the home link in top right corner.
- Click the stop link (black box in top right corner of the node you adjusted)
- The system will shutdown that JVM then, automatically restart it for your change to take affect.
And you’re done. Good luck!
For whatever reason that you need a Lawson profile ID, below is a quick way to access it in LID.
- Login into LID and go to a temp directory you’re okay with dumping a file to.
- Run this command lsdump -f roledump.txt ROLE SuperAdminRole
- Go to the directory you dumped the file in and open roledump.txt in a text editor
- Search for ProfileID until you find the one you’re looking for
Chances are, SuperAdminRole is created with an admin class assigned to it. You can also view this file using LASHOW command without having to dump the file.
Good luck!
Many organizations opt to engage Lawson consultant teams for managing their Lawson Security. These consultant teams offer managed services at a fixed monthly rate and possess extensive knowledge and expertise. This service is particularly suitable for larger organizations, but smaller organizations that do not require a full-time Lawson employee on-site may also find it beneficial. Nogalis provides this service, and you can contact us via our contact page for further information.
Follow these steps to edit the domain name on the ADFS instance:
Update the Domain Name
- Open the ADFS Management application from the ADFS server.
- On the right, select “Edit Federation Service Properties”.
- Change the Federation service name and identifier to reflect the new domain name.
Regenerate the Token Certificates
- Open a PowerShell session on the ADFS Server
- Run “Update-ADFSCertificate”, which will generate a new token-decrypting and token-signing certificate.
- The old certificate will remain primary on the instance and cannot be deleted until a new primary is selected.
- In PowerShell, run the command “set-ADFSProperties -AutoCertificateRollover $false”
- Now you can right-click the secondary (new) certificates and set them as primary.
- Delete the old certificates.
- Reset the rollover option in PowerShell: “set-ADFSProperties -AutoCertificateRollover $true”
Deploy the new Server Certificate
- Get the Thumbprint value on the new certificate for the new domain.
- In PowerShell, run command “set-ADFSSslCertificate -thumbprint <value you saved in step 11>”
- Bounce the ADFS service
Your ADFS domain/URL has been updated!
To clear an existing sync lock in order to rerun the sync from the beginning again
From ssoconfig -c:
Login to the Infor Security Services web page
On the menu bar navigate to Federation > Manage Locked Process
If there is a process listed, make a note of the process that is locked
From the command line, run the ssoconfig utility. Type ssoconfig -c
At the prompt, enter the ssoconfig password
Select Manage Locked Processes
Select the number of the process that needs to be unlocked
Once it has been cleared, a message will appear that the process has been cancelled
Select the number that corresponds to Exit to return to the ssoconfig menu
Select EXIT at the ssoconfig utility
From the ISS web page:
Login to the Infor Security Services web page
On the menu bar navigate to Federation > Manage Locked Process
If there is a process listed, kindly check the box and hit the “unlock” button (Note: There may be more than one locked process, but you only need one to unlock, and all will be unlocked).
These 5 tips could make applying patches that much less stressful and are also good practice in general.
Tip 1: Check existing patch logs to see if a patch has already been applied previously and current versioning. This is good to check after a patch has been applied as well.
These logs can be found and generated here in LID:
perl %GENDIR%\bin\patches_installed_report <productline>
perl %GENDIR%\bin\source_versions_report <productline>
Tip 2: Restart the LSF server (or services) to ensure no processes are being held up and when it boots up, turn off Websphere LSF Appserver service before applying a patch to ensure users cannot log on, especially if patch needs to be applied during or close to work hours.
Tip 3: Run dbdef command to make sure there is a connection to the database before patching
Tip 4: When activating or staging multiple patches, run this command to speed up the post compile process:
qcontrol -jlocal,4 – This will set the servers cores to 4 when processing form compiles. Set it back to 2 when done. You can also check the status of the compiled jobs with command: qstatus | head -5
Tip 5: If a Plus dictionary is created after patching, its typically good practice to compile the entire product line with the command: cobcmp (be aware this can take up to 20-30 minutes to complete, tip 4 helps with this). This ensures that all programs are functioning correctly before passed to testers.
Bonus Tip: Verify security is on before sent to the testers! Hope these were helpful.
If you require assistance with applying patches for your v10 system, it is common for organizations to engage Lawson consultant teams for managed services, which are available at a fixed monthly rate. These consultant teams possess significant knowledge and expertise and are suitable for larger organizations. Additionally, smaller organizations that do not require a full-time Lawson employee on-site may also find this service advantageous. Nogalis offers this service, and you can contact us through our contact page for further details.
After an install or an update, you may experience an error “actor_does_not_support_run_as” on certain node types.
Caused by: com.lawson.security.authen.SecurityAuthenException: com.lawson.security.authen.LawsonUserContextImpl.security.authen.actor_does_not_support_run_as
at com.lawson.security.authen.LawsonUserContextImpl.setRunAsUserOnContext(LawsonUserContextImpl.java:1498)
at com.lawson.security.authen.LawsonUserContextImpl.setRunAsUserOnContext(LawsonUserContextImpl.java:1461)
at com.lawson.security.authen.LawsonUserContextImpl.setRunAsUserOnContext(LawsonUserContextImpl.java:1452)
at com.lawson.security.authen.LawsonUserContextImpl.setRunAsUserOnDuplicateContext(LawsonUserContextImpl.java:1593)
at com.lawson.security.authen.DataCtxUserCtxWrapper.setRunAsUserOnDuplicateContext(DataCtxUserCtxWrapper .java:432)
… 15 more
To mitigate this issue, log into ISS, and go to Manage Users. Search for the lawson user and click the Edit button. On the Basic tab, set “RunAs Enabled” to “YES” and click save. Wait for the configuration to take effect, or run a stoplaw/adminlaw/startlaw.
If you are not using ISS, the Landmark command to set the RunAs is:
secadm actor enablerunas lawson
After running this command, run the stoplaw/adminlaw/startlaw.