Database property names for security

Messages about security might refer to properties by their database names, most of which begin with WorkflowSystem. The database property names for security include the database property names for Lightweight Directory Access Protocol (LDAP).

In the Editable column:

  • Yes means that an authorized user can change the value after the initial security setup.
  • No means that an authorized user cannot change the value.

Security properties

Database name Notebook tab: Field name Brief description Internal values Editable
User.AccountStatus SecurityUsers: Account status Shows the current status of the user account.
  • Active
  • Locked-Inactive
  • Locked-Password Failure
Yes
WorkflowSystem.AdLdap.EmailAddress SecuritySettingsLDAP: Email attribute Specifies the LDAP attribute that Ricoh ProcessDirector gets user email addresses from.   Yes
WorkflowSystem.AdLdap.GroupMap SecuritySettingsLDAP: Product to LDAP group mapping Specifies the mapping of Ricoh ProcessDirector groups to LDAP groups.   Yes
WorkflowSystem.AdLdap.GroupSearchBase SecuritySettingsLDAP: Group search base Specifies the branch of the LDAP external directory tree that Ricoh ProcessDirector searches to identify the organizational unit (OU) that contains LDAP groups.   Yes
WorkflowSystem.AdLdap.GroupSearchFilter SecuritySettingsLDAP: Group search filter Specifies the filter that Ricoh ProcessDirector uses to determine if a group with the specified name exists within the LDAP group search base.   Yes
WorkflowSystem.AdLdap.GroupSearchMember SecuritySettingsLDAP: Group search member Specifies the LDAP attribute Ricoh ProcessDirector uses to get the distinguished names of LDAP group members.   Yes
WorkflowSystem.AdLdap.ManagerDN SecuritySettingsLDAP: Manager distinguished name Specifies the full distinguished name (DN) of the user that binds to the LDAP server for user searches.   Yes
WorkflowSystem.AdLdap.ManagerPassword SecuritySettingsLDAP: Manager distinguished name password Specifies the password for the user listed in the Manager distinguished name property.   Yes
WorkflowSystem.AdLdap.rootDN SecuritySettingsLDAP: Root distinguished name Specifies the distinguished name (DN) that is not limited by administrative limit restrictions or access control restrictions for the database.   Yes
WorkflowSystem.AdLdap.Server SecuritySettingsLDAP: LDAP server Specifies either the network IP address or the fully-qualified host name of one or more LDAP servers and the ports that the system uses for authentication.   Yes
WorkflowSystem.AdLdap.SyncLdapGrp SecuritySettingsLDAP: Synchronize with LDAP groups Specifies if Ricoh ProcessDirector updates the product security groups for a user, based on the values for the Product to LDAP group mapping property, each time the user logs in.
  • Yes
  • No
Yes
WorkflowSystem.AdLdap.UserSearchBase SecuritySettingsLDAP: User search base Tells the server which part of the external directory tree to search, relative to the base distinguished name (DN) in the LDAP URL.   Yes
WorkflowSystem.AdLdap.UserSearchFilter SecuritySettingsLDAP: User search filter Specifies the filter that Ricoh ProcessDirector uses to determine if a distinguished name (DN) of the user exists in LDAP.   Yes
WorkflowSystem.AdLdap.YesNo SecuritySettingsLDAP: Authenticate with LDAP Specifies whether users can log in to Ricoh ProcessDirector with a user ID that is defined in the existing Lightweight Directory Access Protocol (LDAP) server.
  • Yes
  • No
Yes
WorkflowSystem.ComplexRules SecuritySettingsGeneral: Enforce password complexity rules Specifies whether all users must use complex passwords.
  • Yes
  • No
Yes
WorkflowSystem.InactiveLength SecuritySettingsGeneral: Account inactivity period Specifies the number of days that Ricoh ProcessDirector lets a user account be inactive before that user is locked out of the system.   Yes
WorkflowSystem.LockOutLength SecuritySettingsGeneral: Lockout duration Specifies the amount of time that Ricoh ProcessDirector locks a user out of the system after the user exceeds the Account login threshold. The unit of time for the value can be minutes, hours, or days. Use the toggle control to the right of the property name to select the unit of time for the value.   Yes
WorkflowSystem.MaxLoginAttempts SecuritySettingsGeneral: Account lockout threshold Specifies the number of unsuccessful login or password change attempts that are allowed before the user is locked out.   Yes
WorkflowSystem.MinPasswordLength SecuritySettingsGeneral: Minimum password length Specifies the minimum number of characters required for a password.   Yes
WorkflowSystem.PasswordReuseCount SecuritySettingsGeneral: Password reuse count Specifies how many times a user must enter a unique password before they can reuse an old password.   Yes