Security

System name	Display name	Explantion	Extra info
doAdvancedGroupSecurity	Advanced group security	Enables: A) Groups inside groups B) Multiple exclusive groups
policyHideValues	Hide overloaded policies	Hide values for policies that have been overloaded in the application deployment file
securityAllowPublicCodeunits	Allow anonoumus codeunit execution	It is considered safe to use special codeunits
securityEnforceExclusiveGroup	Require normal users to have Exclusive groups	All users except Admins must have at least 1 exclusive group
securityLoginFailedAttempts	Login max failed logins	Number of failed logins before accounts will be disabled
securityLoginFailedAutoReset	AutoReset users	Automatically reset users that have failed maximum number of logins (sends new password)
securityPasswordAcceptMD5digest	Allow MD5 hashed passwords	Recommended in transition between MD5 (minor flaws) and SHA256 (very secure)
securityPasswordCleartext	Store passwords cleartext	Allow passwords to be stored without one-way encryption
securityPasswordCleartextAllowed	Allow cleartext passwords	Optionally encode all password using admin services
securityResetPasswordWithoutLogin	Reset password without login
securitySslLogin	SSL encryption for login page	Enforce usage of SSL connections on login page using internal redirect. Recommended.	Setting up SSL/HTTPS
securitySslPages	SSL encryption for ALL pages	Enforce usage of SSL connections on all page using internal redirect. Not recommended.	Setting up SSL/HTTPS
securityTokenExpiryEnforce	Deny old style access tokens
ssoSpnegoAuthenticate	SSO via domain controller	Allow SPNEGO filter to automatically log in authenticated Windows users
ssoCryptoTokenActive	SSO token authentication	Allow single sigon from externatal components (ex. TS SSO webpart)
ssoCryptoTokenSecret	SSO token shared secret	Shared secret password between TS and external services. Value must match exactly.