×

Supercharge your Proficy solution! Download a free trial of Proficy Operations Hub, CSense analytics, and more. Explore our Proficy 2024 releases!

Home
Proficy Authentication
Manage Groups
Overview of Managing Groups in Proficy Authentication
Groups are a collection of users who share common roles or responsibilities. Administrators can assign permissions and policies to entire groups, rather than individual users.
Scopes for Historian Users/Groups
This topic provides a list of scopes you can assign to users/groups for accessing Historian.

Proficy Authentication
- About Proficy Authentication
- Set up Proficy Authentication
  This topic describes how to set up Proficy Authentication in Configuration Hub.
- Get Started With Proficy Authentication
  This topic helps you to get started with the application.
- Manage Identity Providers
- Manage Groups
  - Overview of Managing Groups in Proficy Authentication
    Groups are a collection of users who share common roles or responsibilities. Administrators can assign permissions and policies to entire groups, rather than individual users.
    - Scopes for Proficy Authentication Users/Groups
      This topic provides a list of scopes you can assign to users/groups for accessing Proficy Authentication.
    - Scopes for Operations Hub Users/Groups
      This topic provides a list of scopes you can assign to users/groups for accessing Operations Hub.
    - Scopes for iFIX Users/Groups
      This topic provides a list of scopes you can assign to users/groups for accessing iFIX.
    - Scopes for Historian Users/Groups
      This topic provides a list of scopes you can assign to users/groups for accessing Historian.
    - Scopes for Plant Applications Users/Groups
      This topic provides a list of scopes you can assign to users/groups for accessing Plant Applications.
  - Create Groups
    This topic describes how to create new groups in Proficy Authentication.
  - Modify Groups
    This topic describes how to modify existing groups in Proficy Authentication.
  - Map Groups
    This topic describes how to perform group mapping.
  - Add/Remove Users in a Group
    This topic describes how to add or remove users from a group.
  - Add/Remove Sub-Groups in a Group
    This topic describes how to add or remove sub-groups from a group.
  - Delete Group
    This topic describes how to delete Proficy Authentication groups.
- Manage Users
- Windows Integrated Authentication / Auto-login
  Windows Integrated Authentication is a new capability added to Proficy Authentication Service from version 2022.
- Example Configuration for Multi-domain and Auto-login Functionality
  This topic describes how to set up the auto-login with multi-domain functionality so that users can automatically log in to multiple domains without having to enter their credentials for each domain login.
- High Availability
- Customize Login Screen
  This topic describes how to customize the Proficy Authentication login screen.
- Backup and Restore
  This topic describes how to perform backups and restore the Proficy Authentication database.
- Troubleshooting Proficy Authentication

Scopes for Historian Users/Groups

This topic provides a list of scopes you can assign to users/groups for accessing Historian.

Refer to the following table to assign access to specific areas/functionalities of Historian:

Scope	Description
`historian_visualization.admin`	Provides access to Trend Client and the Web Admin console.
`historian_visualization.user`	Allows access to Trend Client.
`historian_rest_api.read`	Provides read access to public REST API.
`historian_rest_api.write`	Provides write access to public REST API.
`historian_rest_api.admin`	Provides read/write access to public REST API.
`historian_enterprise.admin`	Provides read/write access to Configuration Hub APIs.
`historian_enterprise.user`	Allows access to Configuration Hub APIs.
`ih_archive_admins`	Provides the ability to create, modify, and remove archives.
`ih_audited_writers`	Allows data writes and to produce a message each time a data value is added or changed.
`ih_collector_admins`	Allows the ability to add collector instances and change their destination.
`ih_readers`	Provides access to the ability to read data and system statistics. Also allowed access to Historian Administrator.
`ih_security_admins`	Provides access to Historian power security users. Security administrators have rights to all Historian functions.
`ih_tag_admins`	Provides access to allow the ability to create, modify, and remove tags. Tag-level security can override rights given to other Historian security groups. Tag admins can also browse collectors.
`ih_unaudited_logins`	Allow connections to the Data Archiver without creating login successful audit messages.
`ih_unaudited_writers`	Provides the ability to write data without creating any messages. Tag, archive, and collector changes log messages regardless of whether the user is a member of the ih_audited_writers group.
`historian_visualization.admin`	Provides access to Trend Client and the Web Admin console.
`historian_visualization.user`	Allows access to Trend Client.