Browse By Tags

Hello, I am the Administrator (Supervisor) for our Timeslips program. A few months ago, I set up rights and permission for each Timekeeper. I haven't logged on as Administrator /Supervisor since then. Today I needed to change rights via the Set-up/Security…

Is anyone automating the installation of a SSL cert for X3? For years we have been using the cert import via X3 UI but this becomes tedious. Most of our apache, tomcat, and IIS web servers are getting lets encrypt certs via win-acme on an automated…

Good day all, Hoping you can help. We looking at setting up MFA or something similar to MFA for Sage X3 but making use of a users Microsoft account rather than the google account. We would like to provide an additional layer of security where users…

This released component corrects the following security issues: CVE-2023-38545 (High Severity) and CVE-2023-38546 (Low Severity): Curl and libcurl vulnerabilities. CVE-2020-1938 is a file read/inclusion vulnerability in the AJP connector in Apache…

When making changes to a production system such as updating SQL passwords, changing SQL servers, or using a different SQL account, how do we get to the edit screen for the Vault and Store databases configurations? Alternatively, is there a way to make…

Hello, I'm trying to add the "Declarations" module with it's functions to a specific functional profile. I've tried adding the specific functions to the functional authorizations as well as to a menu profile. The declarations section is not show up…

Is it possible to limit bank access for a specific user to a particular bank? I have always understood this to work as authorizations for the module and then the functions within the module. If no, is there a way to limit access to the payroll transaction…

The password to install or update Sage X3 Automated Test Platform has been modified for security reasons. For new installations use the credentials provided in the atp-3.0.0.1-win.zip file. For all existing users whatever the version of Sage X3 Automated…

Hello, my Syracuse installation does not show the OAuth2 authentication option. Am I missing something? Does my version lack this feature? (Sage X3 V11 LP19) I already modified the nodelocal.js configuration: added an OAuth2 server configuration…

Hello, Is it possible to restrict a user to acces a folder? I'm trying to give acces to only one of the 2 folders we have but the workaround i've done is to create a new group and give acces only to said folder. Is this the correct way or i am doing…

Just wondering if Sage 300 (or any Sage product) is vulnerable to the new Text4Shell vulnerability? In a recent security scan the following files came up vulnerable file: c:\sage\sage300erp\gs\solr\server\solr-webapp\webapp\web-inf\lib\commons-text…

We are hosting Sage X3 on Amazon server and very time when the sever restart, it's losing the SSL certificate. The external link will not be working, every time this happens, I have to reload the SSL certificate in SageX3 under Administrator. Then after…

What security is needed for a user to use the copy feature in the GESANM function to copy sequences from one folder to another. I have a user that tries to copy from our test folder to our PRD folder and gets an error saying "Folder PRD Access Error to…

A Security Alert, CVE-2022-22695 , has been raised for the Spring Framework which encompasses Spring MVC or Spring WebFlux. Another article from Kaspersky, Spring4Shell , mentions the Spring4Shell critical vulnerability as well. The description of…

I have an usual situation where I'm trying to setup Sage Intelligence on a new workstation and I have all the proper permissions set on the BI folders, the program data folder and the registry for the excel add in. There's multiple reports that use the…

Someone at our office received a pop-up saying that it was a Windows Security pop-up titled PeachMail64 and requesting user login credentials. The user canceled it without putting in the password information and was wondering if this could be malware…

A user can either not be able to change any passwords including their own or be able to change all passwords including the MANAGER account. This acts as a high security risk and that there are no options to require a strong password. Is there any enhancement…

Bonjour à tous , Nous avons cette erreur lorsqu'on essaie de créer une commande d'achat Quelqu'un a t'il une idée de comment résoudre ? Merci d'avance de votre aide .

We have a user in X3 V12 that is set up to call web services. This user is set up as a web services user, but is restricted to a single pool/endpoint. The user has worked in the past, but has stopped working. The error is "Access denied in pool XXX".…

The ONLY impacted component in Sage X3 is Elasticsearch. Sage X3 V11 and V12 use Elasticsearch 7.9 and above, which is part of the Elasticsearch versions impacted by this issue. Sage X3 Version 9 or earlier are not impacted. On installations where…

I have got a server where I would like to install antivirus. I have got sage X3 installed on the server. Can someone please provide me any advice on how should I move forward with this? Are there any important files/folder that I need to exclude…

We are having issues with unauthorized people changing job cost codes, moving people around in the D-board and activating jobs. We need to set up read-only access for SM work orders and found the area to restrict access in the Security Administration…

A security risk within Sage X3 has been discovered that may impact customers using Sage X3, Sage X3 Warehousing and Sage X3 HR & Payroll. The security risk is related to a platform component and has no impact on the Sage X3 application code or customizations…

Hello. Is there a way to suppress/hide the Billing Rate of an Activity Item during Time Ticket entry? Employees enter their own Time Tickets using Jobs and Activity Items. We have a use case where we want the Billing Rates to be set to employee's hourly…

I have a single user in our system that no longer works with us. I go into User Maintenance and Click the check box to Lock the account and the date in the upper right fills in with today's date for account expiration. I click accept. Then as soon as…