Security Considerations for Invoking Orchestrations and Notifications from B98ORCH

When invoked, B98ORCH uses the credentials of the EnterpriseOne user to establish the AIS Server session and invoke the orchestration or notification. The EnterpriseOne user must have UDO view security for the orchestration or notification called by B98ORCH.

It is recommended that you use roles to establish UDO view security for orchestrations and notifications called by B98ORCH. All components associated with an orchestration are managed as separate UDOs, therefore you must associate the orchestration and all its components to the same role. For example, if you use B98ORCH to launch an orchestration from a table trigger, for security purposes, you need to associate the orchestration and all its components to the same role allowed to update the table.