K2 Site Configuration

To ensure the K2 Site performs at its best it is essential to have the correct configuration setup. There are several factors and components within the K2 environment that requires specific or suggested configuration. This section provides configuration information for the following:

Configure Description
Authentication The K2 Site makes use of the Nintex K2 security mechanisms which are; Windows Authentication or Forms Authentication.
Manually Configure K2 for AAD K2 integrates with Microsoft Azure Active Directory (AAD) which allows AAD users to log in to K2 web sites and allows you to assign AAD users workflow tasks and get user details using the AAD SmartObjects.
Integrating K2 Five and Azure Government Cloud Computing High Security(GCC) K2 Five (5.6) can integrate with AAD, Exchange, and SharePoint Online in Azure Government Cloud (GCCH).
Secondary Runtime site The default Runtime site uses Windows Authentication and authenticates to Active Directory. Should the need arise to grant certain users Anonymous Access rights and other users Windows or Forms Authentication rights, two runtime sites can be installed where one is configured for Anonymous Access and the other for Authenticated Access.
Upgrading Secondary Sites It is possible to configure a single K2 site with multiple authentication providers. In the past if you required multiple authentication methods for your SmartForms sites you needed to create a copy of your SmartForms site for each authentication method.
Selecting Role Services on IIS Server When K2 Site is installed in a distributed environment where the Designer and Runtime components are installed on different IIS servers, certain Role Services must be enabled on the Runtime server.
IIS Server response header Prevent IIS Server version information disclosure through the K2 Site Server response header by configure a URL Rewrite rule that that will remove or change the value.
Enabling secure cookies for K2 sites K2 recommends that you use SSL (HTTPS) when configuring K2 sites (Viewflow, K2 Designer, and SmartForms Runtime sites). If you don't use SSL you run the risk of unencrypted site traffic being intercepted.