Login and Active Directory

There are different verification levels in Workcube for secure log-in to the system. Standard, Recaptcha, Active Directory, and Google Authentication are available. The login screen of a system is the most important point for security. There are many applicable methods for password and login system security on Workcube.

Encryption
Security standards are set for user passwords under System > Security module. It is recommended to use complex passwords for system security.

Password Complex: A password consisting of lowercase/uppercase/digits/special characters can be created.

Password Length: The minimum number of characters the password should consist of is set.

Password Change Interval: Follows the password change interval of the users and asks the users to change the password at certain intervals.

Old Password Check Count: Sets how many times a user can use the same password retroactively.

Maximum Number of Incorrect Logins: It is determined how many times the user or those trying to enter the system can enter an incorrect password. If the wrong login continues, the IP and cookies of the user trying to log in are checked and banned accordingly.

System Login and Recaptcha

Login by entering Username and Password. Recaptcha helps to prevent the site from becoming unusable (inaccessible) by preventing very dense, meaningless, and fake messages that can be sent by malicious robots. To activate this feature, the value must be set as recaptcha = true from the System > General Settings > System Parameter Settings page.

I Forgot My Password

When the user forgets his password, the user clicks on the "I forgot my password" function on the login screen. Enters Username and E-Mail. After system verification, the system generates a new password and sends an e-mail to the user in accordance with the encryption rule.

User Access Restriction and Permission to Login Until a Certain Date

Active Directory
Workcube is a software with web-based architecture. It works on browsers. However, the Windows operating system does not send the information in the Active Directory structure directly to the websites. This can cause security vulnerabilities. Therefore, users who want to login directly with Active Directory should set their Workcube domains as secure websites.

Conditions to be considered:

1. Setting the Parameter Settings correctly
2. Ensuring Workcube username and Active Directory username are the same
3. To ensure that there is no problem preventing communication with Active Directory via Workcube server.

Definitions

If the value is 1, employees can connect to the Workcube system with their Active Directory username and password.

If the value is 2, they will automatically log in to the Workcube when the Workcube address is written in the browser. There is no need to fill out any login form.

If the value is 3, only Active Directory logins can be provided. Login cannot be provided with the Workcube password.

active_directory_server = '127.0.0.125';

This value is given as an example. The IP address of the server where we will check the Active Directory users and passwords is written here.

active_directory_server_add = "';

This value is written if there is any definition or localnetworkname used before username when connecting to the Active Directory server. Otherwise, it is left blank.

active_directory_start = 'cn=users,dc=domain';
active_directory_atrr = 'cn,sn,mail';
The 2 values above should remain standard. It cannot be changed except in special circumstances.

In order to be able to login directly from the browser in the Active directory system, the ActiveX settings of the site must first be made.

After these settings, the Workcube system is automatically logged in.

Warning: User password update screens and widgets do not appear on systems with Active Directory-integrated.