Security System Settings

Navigate to Administration > Application Setup > System Configuration > System Settings > Security tab.

Security settings establish an offline environment and specify the authentication mode that your instance uses.

When the system is in offline mode and the database is not accessible, the user must log on using the offline URL. An authentication of the username and password occurs. The user ID and password must match those in the system’s records.

Key and value details

site.security.idp.sp.initiated.allowed — Specifies whether IDP supports Service Provider initiated authentication flows.

site.security.singlesignon.aoid — Set to true if single sign-on accepts AOIDs.

Value: required, installed default=false

The API Authentication feature requires that users must have a COID (Company Identifier) as well as an AOID (Associate Identifier) when they log on for an XML API transaction.

Each employee across all companies has a unique AOID. All employees working in the same company have the same COID. No support is provided for the same person working at two different companies.

The COID has been added as a required field to the PersonIdentity XML element. The AOID and COID key pair is associated to employees in the PRSNCMMNIDENTASSIGN database table.

System accounts, such as SuperUser and Import, do not require an AOID/COID pair. The user can continue to use the Username and Password for authentication.

site.security.impersonation.allowed — Set to true to enable the system to use the proxy access feature that allows CustomerSupport or a local System Administrator to access a user's environment. For more information, see Allow proxy access for remote assistance.

This system setting is only visible if activated by Tenant Administration.

Default=false