wiki/spaces/E2D/pages/87851239/Multifactor+Authentication | Help link for end user multi-factor authentication |
IdPCacheRefreshInterval | 0 | The interval used to refresh the internal IdP cache for Single Sign On data. If set to ZERO, this setting is DISABLED. |
IdPRuntimeCacheTimeout | 10 | CAUTION: This values should be between 1 and 525,600. The Sliding Expiration Timeout for HTTP Runtime Cache data in the EmpowerID Web IdPs in minutes |
InventorySalesForceAccount | FALSE | setting to verify if account object should be inventoried or not |
IpInfoAccessToken |
| IpInfo Access Token |
ITShopIManageGrpAccountMode | TRUE | In IT Shop Resources I manage show the simple mode group account grid not RBAC delegation control |
ITShopIManageGrpRBACSimpleMode | TRUE | In IT Shop Resources I manage show the RBAC delegation control in simple mode |
ITShopMyAccessShowExpiresXDays | 30 | Setting to control which expiring access shows to the user. Only access expiring in X days. |
JoinToCIByBirthDateFirstNameLastName | FALSE | Set this value to true if you want to join Person to Core Identity by FirstName, LastName and DateOfBirth. |
JoinToCIByFirstNameLastName | TRUE | Set this value to true if you want to join Person to Core Identity by FirstName and LastName. |
JoinToCICustomMatchAttributes |
| Enter a comma separated list of the attributes that should be used to join Person to Core Identity. For example: to join by DateOfBirth and SSN enter: DateOfBirth, SocialSecurityNumber |
LocaleFlagsEnabled | FALSE | Enables or disables displaying country flags in the locale picker |
LocalePickerEnabled | TRUE | Enables or disables the language picker in the user interface |
LocaleRecordingMode | TRUE | Tells the system to record locale keys that are being used |
LocalizationDefaultLocale | en-US | Default Fallback Locale |
LoginAfterXFailsShowCaptcha | 4 | After x failures on the login page show the CAPTCHA |
LoginLookupAccountByPersonLogonNameToValidatePassword | TRUE | Attempt to validate the password against each of the person's accounts that belong to an Account Store where pass-through authentication is enabled |
LoginNameEnableGenerate | TRUE | Enables the Generate endpoint of the LoginName |
LoginPageAccountUnlockEnabled | TRUE | Specifies whether or not the account unlock button is enabled on the login page |
LoginPageBotEnabled | TRUE | Enable the chat with bot button on the login page |
LoginPageConsumerSelfRegisterEnabled | FALSE | Specifies whether or not the self register button is enabled on the login page |
LoginPageemaillostusernameEnabled | TRUE | Specifies whether or not mail to username is enabled on the login page |
LoginPagePartnerSelfRegisterEnabled | TRUE | Specifies whether or no the partner self register page is enabled on the login page |
LoginPagepasswordresetcenterEnabled | TRUE | Specifies whether or not password reset center is enabled on the login page |
LoginPageRequestOathTokenEnabled | TRUE | Specifies whether or not request oath token is enabled on the login page |
LoginPageSupplierCompanyRegistrationEnabled | TRUE | Specifies whether or not the Supplier Company Registration link is enabled on the login page |
MaximumLoginTravelSpeed | 450 | Maximum Login Travel Speed |
MessageBusSettings | [{Id:8f0cade0-99d0-43f5-96e8-b0bbdc8bea7a,PluginType:Syslog,MessageEntryType:Error,ConnectionString:192.168.254.138:514,AuxiliarySettings:{Publisher:null,Subscriber:null,Topic:null}},{Id:55fb5db1-4c65-4070-9307-f038393c7f3a,PluginType:Syslog,MessageEntryType:Information,ConnectionString:192.168.254.138:514,AuxiliarySettings:{Publisher:null,Subscriber:null,Topic:null}}] |
|
MobileClientOAuthApplicationID | A05391D2-D4B0-49F5-9D3B-A8AF009B7247 | EmpowerID Mobile Client OAuthProviderApplicationID |
OathTokenIssuerName | EmpowerID Dev | Name of the Oath Token Issuer |
OAuth_IISAppName | OAuth |
|
OAuthConsumerGUID | 91A7642F-0313-4496-9125-D4DB2782D111 | OAuth connection for Twilio API access |
OwnerRequiredAssigneeTypeID | 1 | For Responsible Party control - OwnerRequiredAssigneeTypeID - set a value to only allow that type to be assigned - 1 Person 2 Account 3 Group 4 Business Role and Location 5 Management Role 7 Query-Based Collection |
PA-BusinessRoleDetails-Custom1 | CustomAttribute1,CustomAttribute2,CustomAttribute3,CustomAttribute4,CustomAttribute5,CustomAttribute6,CustomAttribute7,CustomAttribute8,CustomAttribute9,CustomAttribute10 | Page attributes for Business Role viewone page custom attributes 1-10 |
PA-BusinessRoleDetails-Custom11 | CustomAttribute11,CustomAttribute12,CustomAttribute13,CustomAttribute14,CustomAttribute15,CustomAttribute16,CustomAttribute17,CustomAttribute18,CustomAttribute19,CustomAttribute20 | Page attributes for Business Role viewone page custom attributes 11-20 |
PA-BusinessRoleDetails-Extension1 | ExtensionAttribute1,ExtensionAttribute2,ExtensionAttribute3,ExtensionAttribute4,ExtensionAttribute5,ExtensionAttribute6,ExtensionAttribute7,ExtensionAttribute8,ExtensionAttribute9,ExtensionAttribute10 | Page attributes for Business Role viewone page extension attributes 1-10 |
PA-BusinessRoleDetails-Extension11 | ExtensionAttribute11,ExtensionAttribute12,ExtensionAttribute13,ExtensionAttribute14,ExtensionAttribute15,ExtensionAttribute16,ExtensionAttribute17,ExtensionAttribute18,ExtensionAttribute19,ExtensionAttribute20 | Page attributes Business Role viewone page extension attributes 11-20 |
PA-BusinessRoleLocationDetails-Custom1 | CustomAttribute1,CustomAttribute2,CustomAttribute3,CustomAttribute4,CustomAttribute5,CustomAttribute6,CustomAttribute7,CustomAttribute8,CustomAttribute9,CustomAttribute10 | Page attributes for Business Role Location viewone page custom attributes 1-10 |
PA-BusinessRoleLocationDetails-Custom11 | CustomAttribute11,CustomAttribute12,CustomAttribute13,CustomAttribute14,CustomAttribute15,CustomAttribute16,CustomAttribute17,CustomAttribute18,CustomAttribute19,CustomAttribute20 | Page attributes for Business Role Location viewone page custom attributes 11-20 |
PA-BusinessRoleLocationDetails-Extension | ExtensionAttribute1,ExtensionAttribute2,ExtensionAttribute3,ExtensionAttribute4,ExtensionAttribute5,ExtensionAttribute6,ExtensionAttribute7,ExtensionAttribute8,ExtensionAttribute9,ExtensionAttribute10,ExtensionAttribute11,ExtensionAttribute12,ExtensionAttribute13,ExtensionAttribute14,ExtensionAttribute15 | Page attributes for Business Role Location viewone page extension attributes 1-15 |
Page-PersonDetails-ManageTab-ShowRow1 | TRUE | Page-PersonDetails-ShowRow1 to show the first row of attributes |
Page-PersonDetails-ManageTab-ShowRow2 | FALSE | Page-PersonDetails-ShowRow2 to show the 2nd row of attributes |
Page-PersonDetails-ManageTab-ShowRow3 | TRUE | Page-PersonDetails-ShowRow3 to show the 3rd row of attributes |
Page-PersonDetails-ManageTab-ShowRow4 | TRUE | Page-PersonDetails-ShowRow4 to show the 4th row of attributes |
PA-GroupDetails-Custom1 | CustomAttribute1,CustomAttribute2,CustomAttribute3,CustomAttribute4,CustomAttribute5,CustomAttribute6,CustomAttribute7,CustomAttribute8,CustomAttribute9,CustomAttribute10 | Page attributes for Group Viewone Custom attributes 1-10 |
PA-GroupDetails-Custom11 | CustomAttribute11,CustomAttribute12,CustomAttribute13,CustomAttribute14,CustomAttribute15,CustomAttribute16,CustomAttribute17,CustomAttribute18,CustomAttribute19,CustomAttribute20 | Page attributes for Group Viewone Custom attributes 11-20 |
PA-GroupDetails-Extension1 | ExtensionAttribute1,ExtensionAttribute2,ExtensionAttribute3,ExtensionAttribute4,ExtensionAttribute5,ExtensionAttribute6,ExtensionAttribute7,ExtensionAttribute8,ExtensionAttribute9,ExtensionAttribute10 | Page attributes for Group Viewone extension attributes 1-10 |
PA-GroupDetails-Extension11 | ExtensionAttribute11,ExtensionAttribute12,ExtensionAttribute13,ExtensionAttribute14,ExtensionAttribute15,ExtensionAttribute16,ExtensionAttribute17,ExtensionAttribute18,ExtensionAttribute19,ExtensionAttribute20 | Page attributes for Group Viewone extension attributes 11-20 |
PA-LocationDetails-Custom1 | CustomAttribute1,CustomAttribute2,CustomAttribute3,CustomAttribute4,CustomAttribute5,CustomAttribute6,CustomAttribute7,CustomAttribute8,CustomAttribute9,CustomAttribute10 | Location viewone page attributes custom attributes 1-10 |
PA-LocationDetails-Custom11 | CustomAttribute11,CustomAttribute12,CustomAttribute13,CustomAttribute14,CustomAttribute15,CustomAttribute16,CustomAttribute17,CustomAttribute18,CustomAttribute19,CustomAttribute20 | Location viewone page attributes custom attributes 11-20 |
PA-LocationDetails-Extension1 | ExtensionAttribute1,ExtensionAttribute2,ExtensionAttribute3,ExtensionAttribute4,ExtensionAttribute5,ExtensionAttribute6,ExtensionAttribute7,ExtensionAttribute8,ExtensionAttribute9,ExtensionAttribute10 | Location viewone page attributes extension attribute 1-10 |
PA-LocationDetails-Extension11 | ExtensionAttribute11,ExtensionAttribute12,ExtensionAttribute13,ExtensionAttribute14,ExtensionAttribute15,ExtensionAttribute16,ExtensionAttribute17,ExtensionAttribute18,ExtensionAttribute19,ExtensionAttribute20 | Location viewone page attributes extension attributes 11-20 |
PA-ManagementRoleDetails-Extension1 | ExtensionAttribute1,ExtensionAttribute2,ExtensionAttribute3,ExtensionAttribute4,ExtensionAttribute5,ExtensionAttribute6,ExtensionAttribute7,ExtensionAttribute8,ExtensionAttribute9,ExtensionAttribute10 | Management role viewone page attributes extension attributes 1-10 |
PA-ManagementRoleDetails-Extension11 | ExtensionAttribute11,ExtensionAttribute12,ExtensionAttribute13,ExtensionAttribute14,ExtensionAttribute15,ExtensionAttribute16,ExtensionAttribute17,ExtensionAttribute18,ExtensionAttribute19,ExtensionAttribute20 | Management Role viewone page attributes extension attributes 11-20 |
PAMMFAEnabled | TRUE | Enable or disable Multi-Factor Authentication options for Privileged Access Management |
PAMOtherAccessOptionsEnabled | FALSE | Hides or shows other access request methods - like Request Elevation to local admin or a temp local admin account |
PA-PersonDetails-Activity-Advanced | ValidFrom,ValidUntil,PersonOrganizationStatusFriendlyName,TerminationBusinessProcessTaskID,AllowLoginOnlyUsingOwnedAccount,PasswordManagerPolicyID,ProfileManagerLastUpdated,AgreementVersion,RiskFactorTotal,RiskFactorLastCalculated,PersonUsageTypeFriendlyName,IsPrivPersonForPersonID,CreatedDate,ModifiedDate | PA-PersonDetails-Activity-Advanced |
PA-PersonDetails-Activity-General | Active,LockedUntil,Login,LastLoginDate,PersonPasswordExpirationDate,LastPasswordChangedDate,MustChangePasswordOnNextLogin,PersonEnrolled,LastEnrollmentTime,IsOutOfOffice | PA-PersonDetails-Activity-General |
PA-PersonDetails-Advanced | Active,LockedUntil,PersonProofingStatusFriendlyName,ValidFrom,ValidUntil,ValidUntilExtended,PersonOrganizationStatusFriendlyName,TerminationBusinessProcessTaskID,AllowLoginOnlyUsingOwnedAccount,AllowAttributeSync,AllowPasswordOperations,PasswordManagerPolicyID,PasswordManagerLockedUntil,ProfileManagerLastUpdated,AgreementVersion,RiskFactorTotal,RiskFactorLastCalculated,PersonID,CreatedDate,ModifiedDate,ResourceID,PreviousPersonManagerID,FuturePersonManagerID,GeneratedFromAccountID | PA-PersonDetails-Advanced |
PA-PersonDetails-Contact | Telephone,MobilePhone,Fax,Email,PersonalEmail,Address | PA-PersonDetails-Contact |
PA-PersonDetails-Extension1 | ExtensionAttribute1,ExtensionAttribute2,ExtensionAttribute3,ExtensionAttribute4,ExtensionAttribute5,ExtensionAttribute6,ExtensionAttribute7,ExtensionAttribute8,ExtensionAttribute9,ExtensionAttribute10 | PA-PersonDetails-Extension1 |
PA-PersonDetails-Extension11 | ExtensionAttribute11,ExtensionAttribute12,ExtensionAttribute13,ExtensionAttribute14,ExtensionAttribute15,ExtensionAttribute16,ExtensionAttribute17,ExtensionAttribute18,ExtensionAttribute19,ExtensionAttribute20 | PA-PersonDetails-Extension11 |
PA-PersonDetails-General | Login,LocaleFriendlyName,DefaultHomePage,AboutMe,Notes,LastLoginDate,PersonPasswordExpirationDate,LastPasswordChangedDate,MustChangePasswordOnNextLogin,PersonEnrolled,LastEnrollmentTime,IsOutOfOffice,MiddleName,SecondLastName,BirthName,PersonalTitle,IsExternal,EmployeeID,EmployeeIDOther,JobCode | PA-PersonDetails-General |
PA-PersonDetails-LegalEntity | LegalEntityCountryName,BranchName,BranchLocationPOID,BranchLocationCityKey,DivisionShortName,ContractTypeName,UnitShortName | Page attributes for view one person details page manage tab |
PA-PersonDetails-PositionInfo | MainPosition,PositionCity,PositionCountry,PositionUnitKey,PositionUnitName,Assistant,TitleShortName,TWCodeShortName,TWCodeName,TWCodeGroup | Page attributes for person details page manage tab |
PA-PersonDetails-Report-Authentication | RequireSecondFactor,LoginRequireDeviceRegistration,AllowLoginOnlyUsingOwnedAccount,AllowAttributeSync,AllowPasswordOperations,PasswordManagerPolicyID,AgreementVersion | PA-PersonDetails-Report-Authentication |
PA-PersonDetails-Report-General | Active,LockedUntil,ValidFrom,ValidUntil,PersonOrganizationStatusFriendlyName,TerminationBusinessProcessTaskID,ProfileManagerLastUpdated,RiskFactorTotal,RiskFactorLastCalculated,IsPrivPersonForPersonID,PersonID,CreatedDate,ModifiedDate,ResourceID | PA-PersonDetails-Report-General |
PA-PersonDetails-Work | Title,Department,Office,Company,Location | PA-PersonDetails-Work |
PA-RecertAttestationPersonDirectDetails-Contact | Email,Telephone,MobilePhone,Fax,PersonalEmail,Address | PA-RecertAttestationPersonDirectDetails-Contact |
PA-RecertAttestationPersonDirectDetails-Work | Title,Department,Office,Company,Location,OrgRoleOrgZoneFriendlyName | PA-RecertAttestationPersonDirectDetails-Work |
PA-ViewSelf-ActivityHistory-Advanced | ValidFrom,ValidUntil,PersonOrganizationStatusFriendlyName,TerminationBusinessProcessTaskID,LoginRequireDeviceRegistration,RequireSecondFactor,AllowLoginOnlyUsingOwnedAccount,PasswordManagerPolicyID,ProfileManagerLastUpdated,AgreementVersion,RiskFactorTotal,RiskFactorLastCalculated,IsPrivPersonForPersonID,CreatedDate,ModifiedDate | View self page activity history tab advanced section attributes |
PA-ViewSelf-Advanced | Active,LockedUntil,ValidFrom,ValidUntilLocalTime,PersonOrganizationStatusFriendlyName,TerminationBusinessProcessTaskID,AllowLoginOnlyUsingOwnedAccount,AllowAttributeSync,AllowPasswordOperations,PasswordManagerPolicyID,PasswordManagerLockedUntil,ProfileManagerLastUpdated,AgreementVersion,RiskFactorTotal,RiskFactorLastCalculated,IsPrivPersonForPersonID,PersonID,CreatedDate,ModifiedDate,ResourceID | View self Report tab advanced section attributes |
PA-ViewSelf-Authentication | RequireSecondFactor,LoginRequireDeviceRegistration,AllowLoginOnlyUsingOwnedAccount,AllowAttributeSync,AllowPasswordOperations,PasswordManagerPolicyID,AgreementVersion | View self page report tab authentication attributes |
PA-ViewSelf-Contact | Telephone,MobilePhone,Fax,Email,PersonalEmail,Address | Viewself contact section attributes |
PA-ViewSelf-Extension1 | ExtensionAttribute1,ExtensionAttribute2,ExtensionAttribute3,ExtensionAttribute4,ExtensionAttribute5,ExtensionAttribute6,ExtensionAttribute7,ExtensionAttribute8,ExtensionAttribute9,ExtensionAttribute10 | View self page report tab extension attributes 1-11 |
PA-ViewSelf-Extension11 | ExtensionAttribute11,ExtensionAttribute12,ExtensionAttribute13,ExtensionAttribute14,ExtensionAttribute15,ExtensionAttribute16,ExtensionAttribute17,ExtensionAttribute18,ExtensionAttribute19,ExtensionAttribute20 | View self page report tab extension attributes 11-20 |
PA-ViewSelf-General | Active,LockedUntil,Login,LastLoginDate,PersonPasswordExpirationDate,LastPasswordChangedDate,MustChangePasswordOnNextLogin,PersonEnrolled,LastEnrollmentTime,IsOutOfOffice | View self page activity tab general section attributes |
PA-ViewSelf-Work | Title,Department,Office,Company,Location,PersonManagerName | View self work section attributes |
PreferredCountry | us,de,ch | Enter the country short codes one after the other in the above format to set them as the preferred countries to show at the top of the drop-down list in the International Telephone Input field. |
PSMAWSBucketName |
| Privileged Session Manager Amazon AWS S3 bucket to store recordings |
PSMAWSRegionEndpoint |
| Privileged Session Manager Amazon AWS region for S3 bucket to store recordings |
PSMAzureBucketName | Recordings | Privileged Session Manager Azure bucket name to store recordings |
PSMClientKey | bcb5909d-a600-413c-a9a3-406afa551307 | Privileged Session Manager OAuth Client API key for ClickOnce client |
PSMClientURL | https://rdp.empowersso.com/start | URL for Privileged Session Manager clickonce client Manticore https://s3.amazonaws.com/manticoredevrick/SecureAccessGateway.application / https://54.146.165.121/myrtille |
PSMClientURLDefault | https://gatewayprod.empoweriam.com | Gateway PROD RDP Manticore v2.0 |
PSMEnabled | TRUE | Determines whether the Privileged Session Manager RDP proxy is enabled in the user interface for this installation |
PSMOAuthConsumerGUID | 3a2a8bc2-7d90-4930-a589-3a061ae234cb | Privileged Session Manager RDP client OAuth credentials for Amazon AWS account for storing recordings |
PSMRecordKeyStrokes | TRUE | Determines whether recordings are captured for the privileged session manager |
PSMStorageMode | AZURE | Determines whether recordings are stored on AWS, AZURE, or in a UNC network folder location. |
PSMUNCStorageLocation |
| When PSMStorageMode is set to UNC, the UNC path to a network folder for storage of recordings |
PublishToAzureConnectionString |
|
|
PublishToStorage |
|
|
PublishToTFSLocalPath |
|
|
PublishToTFSPath |
|
|
PublishToTFSURL |
|
|
PublishToUNC |
|
|
ReCaptchaAuthConsumerGUID | d68cbddb-a2a8-4de3-8daf-f1ff7f999134 | Google API key and secret for Recaptcha |
Recertification-AllowSelectSuggestedRole | FALSE | Allow selection of a suggested Business Role and Location when revoking a recertification |
Recertification-AutoProcessBusinessRoleAndLocationRevocations | TRUE | Enable auto delete business Role and Location re-certification revocations |
Recertification-EnableConditionalApproval | FALSE | Enables the decision button for conditional approval where a time constraint must be selected |
Recertification-ShowCertifierPhoto | TRUE | Shows or hides the current certifier photo on the Manager review screen |
RemoveDiacriticsForEmailAndAlias | FALSE |
|
RemoveDiacriticsForEmailAndAlias_ReplaceEszett | FALSE |
|
RestrictCountries | ad, ae, af, ag, ai, al, am, an, ao, aq, ar, as, at, au, aw, ax, az, ba, bb, bd, be, bf, bg, bh, bi, bj, bl, bm, bn, bo, br, bs, bt, bv, bw, by, bz, ca, cc, cd, cf, cg, ch, ci, ck, cl, cm, cn, co, cr, cu, cv, cx, cy, cz, de, dj, dk, dm, do, dz, ec, ee, eg, eh, er, es, et, fi, fj, fk, fm, fo, fr, ga, gb, gd, ge, gf, gg, gh, gi, gl, gm, gn, gp, gq, gr, gs, gt, gu, gw, gy, hk, hm, hn, hr, ht, hu, id, ie, il, im, in, io, iq, ir, is, it, je, jm, jo, jp, ke, kg, kh, ki, km, kn, kp, kr, kw, ky, kz, la, lb, lc, li, lk, lr, ls, lt, lu, lv, ly, ma, mc, md, me, mf, mg, mh, mk, ml, mm, mn, mo, mp, mq, mr, ms, mt, mu, mv, mw, mx, my, mz, na, nc, ne, nf, ng, ni, nl, no, np, nr, nu, nz, om, pa, pe, pf, pg, ph, pk, pl, pm, pn, pr, ps, pt, pw, py, qa, re, ro, rs, ru, rw, sa, sb, sc, sd, se, sg, sh, si, sj, sk, sl, sm, sn, so, sr, ss, st, sv, sy, sz, tc, td, tf, tg, th, tj, tk, tl, tm, tn, to, tr, tt, tv, tw, tz, ua, ug, um, us, uy, uz, va, vc, ve, vg, vi, vn, vu, wf, ws, ye, yt, za, zm, zw | Represents the array of countries that are allowed to show up in the International Telephone Input field. Remove the countries you don't want on the drop-down list. |
RMQAssemblyType | TheDotNetFactory.Framework.RMQueue.RabbitMQ.dll |
|
RMQConnectionString |