All the Nintex Workflow 2013 Provisioning actions require a security account with high level access to Active Directory to perform their various tasks. When designing the workflow you can supply the credentials of the account to the workflow actions manually, which means anyone designing such a workflow would have to explicitly know the name and password of the account.
Actions where workflow constants are recommended are on the right:
A more secure option is to create a workflow constant or global variable and record the account and user name in it, and then use the workflow constant in the workflow designer. This allows trusted workflow designers to setup workflows that can interact with Active Directory while protecting the integrity of the high level account.
Workflow constants can also be helpful if you have a staging environment and a live environment – if variables are used, you only need to ensure that the variables are the same in both environments without having to update the workflow settings when you export a workflow, and then import the workflow between environments.
Workflow constants can be created at the Site level, the Site Collection level or at the farm level (via SharePoint Central Administration).
Create workflow constants at the farm level so the constant is available throughout the farm. Navigate to SharePoint Administration. Open Nintex Workflow Management, and click on Application Management. Click on Nintex Workflow settings and then Manage workflow constants.
Site or Site Collection Level
Create at site level, and the workflow constant will only be available in that site or site collection. At the site or site collection level, open Site Settings. In the Nintex Workflow section, click on Manage workflow constants.
Now when you design a workflow that requires interactivity with Active Directory, you can use the workflow constant in the AD workflow actions. To do so, click the ‘padlock’ icon. A list of stored credentials will appear. They are all the workflow constants that you have made available. Select the constant you want and click Insert. The workflow constant is inserted into the workflow action, disguising both the real account ID and its’ associated password.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.