Security Specifications

When you add a variable to a process, task, or state, the Add Variable dialog box includes a drop-down list that lets you select a security specification. The security specification controls which users can see the variable and its value. For example, you might not want everyone to see a variable that holds credit card numbers. You can give the variable a security specification that allows only authorized people to see it.

You do not create security specifications in IPA Designer. Your system administrator should create them in Interaction Administrator's Interaction Process Automation | Security Specifications container. The specific names of security specifications can be anything that your system administrator chooses. For more information, see the "Security Specifications" help topic in Interaction Administrator.

If you do not assign a security specification to a process element, then it is public: all users will be able to see it in forms and in the Interaction Process Automation Monitor.

WARNING: If you use a variable in an e-mail message (such as by using the Send E-Mail action), IPA does not apply the variable's security specification to the message content, including to the variable. Any recipient of the message will be able to view the variable's value, whether or not that recipient has the appropriate security permissions.