Multiple Roles & Overcoming the Role Sequencer rules

Multiple Roles & Overcoming the Role Sequencer rules

Using multiple roles and had helpdesk queries about why your users can’t access certain programmes, despite having a role that should give them access?

When applying object level security, you need to consider how E1 checks for security. When a user signs in, the system first checks the user ID for security, then it checks the roles that user has, and finally it checks *PUBLIC. Fundamental to the way security works in E1, this is called the JDE security hierarchy, or sometimes officially the ‘net effect’.

What does this mean for you?

If you get a helpdesk call of this nature it needs to be resolved or you may end up with data integrity issues as users don’t update records they can’t access.

So what can you do?

  1. change the role sequence: time consuming and could create unintended consequences
  2. add security exception records: not advised as it flies in the face of Best Practice role-based security
  3. create a new role: but you’ll end up with an over complicated role set.

Ideally you’ll use our CombiRoles tool, using process based roles, allocating multiple roles to a user and allowing the ALLOut Fix/Merge process to automatically adjust the Role Sequencer conflicts for you.

Learn more about our multiple roles solution by emailing hazel.jackson@alloutsecurity.com

Contact Us

We use cookies to give you the best online experience. By agreeing you accept the use of cookies in accordance with our cookie policy. You can always revoke your consent by clicking on the icon at the bottom left of the screen.

Privacy Settings saved!
Privacy Settings

When you visit any web site, it may store or retrieve information on your browser, mostly in the form of cookies. Control your personal Cookie Services here.


These are cookies that are required to enable you to browse our website and use its features, for example, to log into secure areas of our website.
  • mfn-builder
  • itsec_interstitial_browser
  • wam_assigned_roles[0]
  • wordpress_logged_in_
  • wordpress_sec_
  • wordpress_test_cookie

Google Recaptcha is a spam prevention system (Google Recaptcha) to ensure that our site is spam free. Read more here and here
  • _GRECAPTCHA
  • UULE
  • NID
  • CONSENT

Decline all Services
Accept all Services