You use the Security Controls action to specify the defaults
for user records. You can access the Security Controls action from
either the Security Groups application or the Users application.
About this task
You can specify the following defaults for user records:
- Default security group for new users - New users are automatically
assigned to a security group. The default group defines their security
permissions until they are assigned to additional groups. The default
group is MAXDEFLTREG. The permissions for this group are limited to
access to the Start Center. Users can change their own passwords.
- Default status for new user records - The default status is NEWREG.
The NEWREG status allows you to search for new user records. You can
also route records into a workflow process.
- Group for all users - The default security group for global permissions
is MAXEVERYONE. When you select Group for All Users in
Security Controls, the user is added to MAXEVERYONE.
- Electronic signature dialog - When you select Display
User ID in the Electronic Signature Dialog in Security
Controls, the system displays the user ID in the window, and prompts
the user to enter a password.
Your implementation might use an application server to authenticate
with an external directory by means of the Lightweight Directory Access
Protocol (LDAP). In this case, you do not use the system to perform
some functions. These functions include:
- Self registration - This function is not supported in conjunction
with an external directory.
- Setting or changing passwords and password hints - All password-related
functions are managed by the directory.
By default, when you use an application server for authentication,
the directory manages user and group creation. You can set properties
to allow user and group creation to be performed directly in the system.
The settings of these properties result in certain features being
enabled or disabled in the system.