x Want to participate? Join the group to interact
Options
  • State Suggested Answer
  • Replies 10 replies
  • Answers 1 answer
  • Subscribers 44 subscribers
  • Views 4635 views
  • Users 0 members are here
Browse Forums
Announcements
152
topics
130
replies
General Discussion
368
topics
728
replies
Sage HRMS Training
139
topics
97
replies
KJStech

Sage HRMS 2016 PA Act 32 filing with aatrix forms always asks for administrator credentials?

SUGGESTED
Posted By

We are upgrading from Abra 9.2 to Sage HRMS 2016 and as part of our process we have found that whenever we try to generate the PA Act 32 forms, it launches Aatrix forms but always asks for an administrator username and password.  An IT admin is able to authenticate here and the process continues, however is there a workaround where IT does not have to be around or bothered for HR department to create or file with aatrix forms?

  • 0 in reply to KJStech
    When running any Aatrix report in Sage HRMS it does not normally prompt for Administrative credentials. This would be something set up in your environment. I would recommend working with your IT department.
  • 0 in reply to Lynn C
    I am IT. Here's the issue... we paid for a risk assessment last year (and this year). One of the things last year was that the white hats we paid were able to get in our system and pivot around because local administrator privlages. We've since taken away local admin, even for IT like myself (I now have a separate administrator account to do admin level duties). Besides closing that huge hole, we've done other things as well and they were not able to infiltrate our network and active directory this year. As a financial institution, information security is a top priority. We will not have any user run with administrative privileges, especially high targets like HR and Payroll processors.

    The work around is they just have to call us, we remote onto their screen and authenticate with our administrative credential. There are 6 of us in IT and we all have one regular user and one admin user. It would just be nice if we did not have to do this.
  • 0 in reply to KJStech
    SUGGESTED
    If you have active support for Sage HRMS I would recommend calling into Support for further assistance. The telephone number is 1-800-829-0170. Please make sure to have your customer number available.
  • 0 in reply to Lynn C

    I second this and I have called into Support for this, then they directed me here as per the discussion you can read in the attached document. What I got by calling into support is "this is how it is, and you have to deal with it but here come to Sage City and see if you get enough people to agree with you and get you comments up-voted."  Even though we are new to this system, I am highly considering at looking at different products, as how can I trust a software package that requires you to open your system up to all kinds of vulnerabilities.

    Simply put this is a huge security hole and we do need to rally to get this resolved, we are not only risking exposing our Employees personal information, but we are also giving our Team Members the ability to run malicious code with administrative rights.

    Case #8007125764 -.msg

  • 0

    I don't know about you but this also extends to the current version of Sage HRMS, and I mean just logging into the application.

  • 0 in reply to DKarkanica

    Yes to this day in Sage HRMS 2017 this still is an issue.  Its like they don't care at Sage.  I'm waiting for a company to get breached and have forensics link it back to Sage, then Sage get sued.  Sometimes the law is the only thing to get a company to begin to pay attention.  I hope its not you nor me, but I hate to say it, I hope someone throws a dart at Sage.  The only thing is when fighting an 800lb gorilla like Sage, they probably have nearly unlimited resources comparted to the company going after them. 

    So for us, our people just call our help desk, and then the IT tech remotes onto their machine and supplies an administrative password to allow Aatrix to continue.  Regular HRMS works, its just not the aatrix tax forms.

    Anyway we are in the middle of a core banking system conversion that will take us until next April 2019.  After that's off our plate we will begin to explore two other big projects, a Loan origination system conversion and then an HR System conversion to hopefully get off of this Sage platform.  We're loyal customers.  We've been on our current system since the early Abra days.  Our current core banking system since the late 80's.  Treat us right and we stick around and continue to do upgrades and pay for support.  Ignore us and we walk.  It just takes some time for projects of this magnitude, and these big software companies know it.

  • 0 in reply to KJStech

    Wow that was quick response... I am just glad that I am not the only one who sees this issue. I don't want to be the one that it happens to, but I kind of do so we can sue them.

  • 0 in reply to DKarkanica

    We are thinking of setting up our Sage clients so they don't have internet access at least until Sage gets off their duff and comes up with a more satisfactory solution! Their so called solution is more like a stop gap measure than a solution. We refuse to open up our user's work station to administrative privileges. We agree with previous posts that if Sage refuses to come up with a solution that doesn't compromise security then we may be forced to move to different software.

  • 0

    We are very sorry for your frustration. We hope this information helps clarify Aatrix functionality. Aatrix follows the same operating premise as Sage HRMS Application users. Sage HRMS/Aatrix software users do not need local administrative permissions to operate either of these applications. However, local administrative privileges are necessary when it pertains to software installation/upgrades. Once the installation or upgrade is complete, non-administrative privileges can be used to run the software (e.g., from a user’s workstation). Generally this issue is a result of your current network configuration. Contact Sage Support for guidance on this issue.

*Community Hub is the new name for Sage City