You use the Security Controls action to specify the following defaults for new user records:
Default security group for new users - New users are automatically assigned to a security group, which defines their security permissions until they are assigned to additional groups. The default group is DEFLTREG. The permissions for this group are limited to access to the Start Center and permission for the user to change their own password.
Default status for new user records - The default status is NEWREG. This status allows you to search for new user records, or to route them into a Workflow process.
Group for all users - The default security group for global permissions is EVERYONE. When you select Group for All Users in Security Controls, the user is added to EVERYONE.
Electronic signature dialog - When you select Display User ID in the Electronic Signature Dialog? in Security Controls, the system displays the user ID in the dialog box, and prompts the user to enter their password.
You can access the Security Controls action from either the Security Groups or the Users applications.
From the Select Action menu, select Security Controls. The Security Controls dialog box opens.
In the User Defaults section, specify the following defaults:
In the Default Group for New Users field, enter the name of the group or click Detail Menu to select an option and retrieve a group.
In the Initial Self-Registered User Status field, enter a user status or click Select Value
In the Group for All Users field, enter the group for global permissions (the default is EVERYONE) or click Detail Menu to select an option and retrieve a group.
Select the Display User ID in the Electronic Signature Dialog? check box to display the user ID in the dialog box when the system prompts users to enter their password.
Note: If you implement electronic signatures, you must enable login tracking.
Click OK.
Note: If implementation uses an application server to authenticate with an external directory (via LDAP), you will not use the system to perform some functions. These functions include:
Self registration - This function is not supported in conjunction with an external directory.
Setting or changing passwords and password hints - All password-related functions are managed by the directory.
By default, when you use an application server for authentication, the directory manages user and group creation. You can set properties to allow user and/or group creation to be performed directly in the system. The settings of these properties result in certain features being enabled or disabled in the system. See the System Administrator Guide for additional detail.
Enable or Disable Login Tracking