x Want to participate? Join the group to interact
Options
  • State Suggested Answer
  • Replies 10 replies
  • Answers 1 answer
  • Subscribers 45 subscribers
  • Views 4672 views
  • Users 0 members are here
Browse Forums
Announcements
152
topics
130
replies
General Discussion
371
topics
734
replies
Sage HRMS Training
139
topics
97
replies
KJStech

Sage HRMS 2016 PA Act 32 filing with aatrix forms always asks for administrator credentials?

SUGGESTED
Posted By

We are upgrading from Abra 9.2 to Sage HRMS 2016 and as part of our process we have found that whenever we try to generate the PA Act 32 forms, it launches Aatrix forms but always asks for an administrator username and password.  An IT admin is able to authenticate here and the process continues, however is there a workaround where IT does not have to be around or bothered for HR department to create or file with aatrix forms?

Parents Reply Children
  • 0 in reply to Lynn C
    I am IT. Here's the issue... we paid for a risk assessment last year (and this year). One of the things last year was that the white hats we paid were able to get in our system and pivot around because local administrator privlages. We've since taken away local admin, even for IT like myself (I now have a separate administrator account to do admin level duties). Besides closing that huge hole, we've done other things as well and they were not able to infiltrate our network and active directory this year. As a financial institution, information security is a top priority. We will not have any user run with administrative privileges, especially high targets like HR and Payroll processors.

    The work around is they just have to call us, we remote onto their screen and authenticate with our administrative credential. There are 6 of us in IT and we all have one regular user and one admin user. It would just be nice if we did not have to do this.
  • 0 in reply to KJStech
    SUGGESTED
    If you have active support for Sage HRMS I would recommend calling into Support for further assistance. The telephone number is 1-800-829-0170. Please make sure to have your customer number available.
  • 0 in reply to Lynn C

    I second this and I have called into Support for this, then they directed me here as per the discussion you can read in the attached document. What I got by calling into support is "this is how it is, and you have to deal with it but here come to Sage City and see if you get enough people to agree with you and get you comments up-voted."  Even though we are new to this system, I am highly considering at looking at different products, as how can I trust a software package that requires you to open your system up to all kinds of vulnerabilities.

    Simply put this is a huge security hole and we do need to rally to get this resolved, we are not only risking exposing our Employees personal information, but we are also giving our Team Members the ability to run malicious code with administrative rights.

    Case #8007125764 -.msg

  • 0 in reply to DKarkanica

    We are thinking of setting up our Sage clients so they don't have internet access at least until Sage gets off their duff and comes up with a more satisfactory solution! Their so called solution is more like a stop gap measure than a solution. We refuse to open up our user's work station to administrative privileges. We agree with previous posts that if Sage refuses to come up with a solution that doesn't compromise security then we may be forced to move to different software.

*Community Hub is the new name for Sage City