November 14, 2020

The article below concerns Nintex Workflow Cloud. Nintex Workflow Cloud is a cloud-based platform where you can design workflows to automate simple to complex processes using drag-and-drop interactions without writing any code. You can build digital forms, integrate web services, and connect to third-party applications to create a seamless experience for your end users throughout the workflow.


Question



What security-related best practices are Nintex Workflow Cloud users responsible for?

 



Answer



Users of Nintex Workflow Cloud are responsible for the following:

  1. Understanding and complying with their contractual obligations to Nintex.

  2. Immediately notifying Nintex of suspected or confirmed information security breaches such as compromised user accounts or passwords.

  3. Developing disaster recovery and business continuity plans that address their ability to use or access Nintex Workflow Cloud.

  4. Protecting end-points to thwart malicious software from entering the Nintex Workflow Cloud execution environment.

  5. Notifying Nintex of changes made to technical or administrative contact information in a timely manner.

  6. Designating internal personnel who are authorized to request user additions, deletions, and security level changes.

  7. Managing the user access controls for provisioning and deprovisioning user accounts. This includes enforcement of password policies, management of shared accounts, and authorization approvals.

  8. Restricting administrative privileges to approved need-to-know personnel.

  9. Securely managing the connectors including confidential management of account credentials, disabling connections no longer required, and managing need-to-know access to shared account information.

  10. Understanding and defining data storage requirements. Securely configuring any EFSS systems or other systems where files are eventually stored.

  11. Managing the confidentiality and integrity of the distribution of authentication tokens used to start component workflows.

  12. Managing the need-to-know and least privilege when sharing workflows.



 

You May Also Like…

Remove The Account To Configure Azure Active Directory Identity Federation After Completed The Setup

Topic

Can we remove the Admin account that is used to configure the Azure Active Directory identity federation after the setup has been completed? 
 

Additional Information

Yes, you can remove this Admin account after successfully finishing the setup and it will still work even after the account has been removed. 
 

Related Links

https://help.nintex.com/en-US/nwc/Content/Settings/ConfigureAzureAD.htm
 

Nintex Workflow Cloud Forms – Data Source Variable FAQ

Topic

Frequently asked questions about Data Source Variables in Nintex Workflow Cloud Forms.
 

What are Data Source Variables?

Data Source Variables are a new capability that is available within Nintex Workflow Cloud Forms that enables designers to source data from external systems into their forms design and use that data across various different controls and rules. Like the Data Lookup control, Data Source Variables leverage existing data sources within Nintex Workflow Cloud to connect to external systems but aim to provide more flexibility with the data than the drop-down styling of the Data Lookup control.

 

Can anyone create a Data Source Variable?

Designers that have been given permissions to a data source within Nintex Workflow Cloud can create new Data Source Variables.

 

Can Data Source Variables be used with any control type in Nintex Workflow Cloud?

Currently Data Source Variable values can be used with Label controls and can be set as the value of Text – Short, Text – Long, Email, Currency, Number, or Geolocation control via rules. Support for additional controls such as Choice – Single and Choice – Multiple will be available in the future.

 

Can any data source be used to create a Data Source Variable?

Currently Data Source Variables only support SharePoint Online and Azure Active Directory data sources, however additional data sources will be made available in subsequent releases.

 

Can a custom Xtensions based data source with Data Source Variables?

Not yet, but this functionality should be available soon.

 

Can I use my Data Source Variables within my workflow?

While any values that are used in a control will be passed to the workflow as a start event variable, the Data Source Variable itself is only available within Forms at this time. If a workflow designer would like to access the same information, they can use a ‘Query’ action as this will return the same object/data as the Data Source Variable.

 

Additional Information

 
 

Related Links