Database property names for security
Messages about security might refer to properties by their database names, most of
which begin with WorkflowSystem. The database property names for security include the database property names for
Lightweight Directory Access Protocol (LDAP).
In the Editable column:
- Yes means that an authorized user can change the value after the initial security setup.
- No means that an authorized user cannot change the value.
Security properties
| Database name | Notebook tab: Field name | Brief description | Internal values | Editable |
|---|---|---|---|---|
| User.AccountStatus | : Account status | Shows the current status of the user account. |
|
Yes |
| WorkflowSystem.AdLdap.EmailAddress | : Email attribute | Specifies the LDAP attribute that RICOH ProcessDirector gets user email addresses from. | Yes | |
| WorkflowSystem.AdLdap.GroupMap | : Product to LDAP group mapping | Specifies the mapping of RICOH ProcessDirector groups to LDAP groups. | Yes | |
| WorkflowSystem.AdLdap.GroupSearchBase | : Group search base | Specifies the branch of the LDAP external directory tree that RICOH ProcessDirector searches to identify the organizational unit (OU) that contains LDAP groups. | Yes | |
| WorkflowSystem.AdLdap.GroupSearchFilter | : Group search filter | Specifies the filter that RICOH ProcessDirector uses to determine if a group with the specified name exists within the LDAP group search base. | Yes | |
| WorkflowSystem.AdLdap.GroupSearchMember | : Group search member | Specifies the LDAP attribute RICOH ProcessDirector uses to get the distinguished names of LDAP group members. | Yes | |
| WorkflowSystem.AdLdap.ManagerDN | : Manager distinguished name | Specifies the full distinguished name (DN) of the user that binds to the LDAP server for user searches. | Yes | |
| WorkflowSystem.AdLdap.ManagerPassword | : Manager distinguished name password | Specifies the password for the user listed in the Manager distinguished name property. | Yes | |
| WorkflowSystem.AdLdap.rootDN | : Root distinguished name | Specifies the distinguished name (DN) that is not limited by administrative limit restrictions or access control restrictions for the database. | Yes | |
| WorkflowSystem.AdLdap.Server | : LDAP server | Specifies either the network IP address or the fully-qualified host name of one or more LDAP servers and the ports that the system uses for authentication. | Yes | |
| WorkflowSystem.AdLdap.SyncLdapGrp | : Synchronize with LDAP groups | Specifies if RICOH ProcessDirector updates the product security groups for a user, based on the values for the Product to LDAP group mapping property, each time the user logs in. |
|
Yes |
| WorkflowSystem.AdLdap.UserSearchBase | : User search base | Tells the server which part of the external directory tree to search, relative to the base distinguished name (DN) in the LDAP URL. | Yes | |
| WorkflowSystem.AdLdap.UserSearchFilter | : User search filter | Specifies the filter that RICOH ProcessDirector uses to determine if a distinguished name (DN) of the user exists in LDAP. | Yes | |
| WorkflowSystem.AdLdap.YesNo | : Authenticate with LDAP | Specifies whether users can log in to RICOH ProcessDirector with a user ID that is defined in the existing Lightweight Directory Access Protocol (LDAP) server. |
|
Yes |
| WorkflowSystem.ComplexRules | : Enforce password complexity rules | Specifies whether all users must use complex passwords. |
|
Yes |
| WorkflowSystem.InactiveLength | : Account inactivity period | Specifies the number of days that RICOH ProcessDirector lets a user account be inactive before that user is locked out of the system. | Yes | |
| WorkflowSystem.LockOutLength | : Lockout duration | Specifies the amount of time that RICOH ProcessDirector locks a user out of the system after the user exceeds the Account login threshold. The unit of time for the value can be minutes, hours, or days. Use the toggle control to the right of the property name to select the unit of time for the value. | Yes | |
| WorkflowSystem.MaxLoginAttempts | : Account lockout threshold | Specifies the number of unsuccessful login or password change attempts that are allowed before the user is locked out. | Yes | |
| WorkflowSystem.MinPasswordLength | : Minimum password length | Specifies the minimum number of characters required for a password. | Yes | |
| WorkflowSystem.PasswordReuseCount | : Password reuse count | Specifies how many times a user must enter a unique password before they can reuse an old password. | Yes |