×

Supercharge your Proficy solution! Download a free trial of Proficy Operations Hub, CSense analytics, and more. Explore our Proficy 2024 releases!

Home
Proficy Authentication
Manage Groups
Overview of Managing Groups in Proficy Authentication
Groups are a collection of users who share common roles or responsibilities. Administrators can assign permissions and policies to entire groups, rather than individual users.
Scopes for iFIX Users/Groups
This topic provides a list of scopes you can assign to users/groups for accessing iFIX.

Proficy Authentication
- About Proficy Authentication
- Set up Proficy Authentication
  This topic describes how to set up Proficy Authentication in Configuration Hub.
- Get Started With Proficy Authentication
  This topic helps you to get started with the application.
- Manage Identity Providers
- Manage Groups
  - Overview of Managing Groups in Proficy Authentication
    Groups are a collection of users who share common roles or responsibilities. Administrators can assign permissions and policies to entire groups, rather than individual users.
    - Scopes for Proficy Authentication Users/Groups
      This topic provides a list of scopes you can assign to users/groups for accessing Proficy Authentication.
    - Scopes for Operations Hub Users/Groups
      This topic provides a list of scopes you can assign to users/groups for accessing Operations Hub.
    - Scopes for iFIX Users/Groups
      This topic provides a list of scopes you can assign to users/groups for accessing iFIX.
    - Scopes for Historian Users/Groups
      This topic provides a list of scopes you can assign to users/groups for accessing Historian.
    - Scopes for Plant Applications Users/Groups
      This topic provides a list of scopes you can assign to users/groups for accessing Plant Applications.
  - Create Groups
    This topic describes how to create new groups in Proficy Authentication.
  - Modify Groups
    This topic describes how to modify existing groups in Proficy Authentication.
  - Map Groups
    This topic describes how to perform group mapping.
  - Add/Remove Users in a Group
    This topic describes how to add or remove users from a group.
  - Add/Remove Sub-Groups in a Group
    This topic describes how to add or remove sub-groups from a group.
  - Delete Group
    This topic describes how to delete Proficy Authentication groups.
- Manage Users
- Windows Integrated Authentication / Auto-login
  Windows Integrated Authentication is a new capability added to Proficy Authentication Service from version 2022.
- Example Configuration for Multi-domain and Auto-login Functionality
  This topic describes how to set up the auto-login with multi-domain functionality so that users can automatically log in to multiple domains without having to enter their credentials for each domain login.
- High Availability
- Customize Login Screen
  This topic describes how to customize the Proficy Authentication login screen.
- Backup and Restore
  This topic describes how to perform backups and restore the Proficy Authentication database.
- Troubleshooting Proficy Authentication

Scopes for iFIX Users/Groups

This topic provides a list of scopes you can assign to users/groups for accessing iFIX.

Refer to the following table to assign access to specific areas/functionalities of iFIX:

Scope	Description
`scada.fix_shared_IFIX_PROFICY_AUTH_ADMIN`	Allows access to all iFIX application features. Any Proficy Authentication user who is a member of this group will have privileges similar to a native iFIX ADMIN user (except the access to security areas). Proficy Authentication users who want to directly log in to iFIX can use this group. This group is not available by default when you upgrade from iFIX 6.1 or 6.5. You must manually create this group with all the iFIX application features as needed.
`scada.fix.shared.APPLICATION_DESIGNER`	Allows a user to access Configuration Hub and provides use of iFIX features such as iFIX connection, database, and model management. Important: `scada.fix.shared.APPLICATION_DESIGNER` is not available by default when you upgrade from iFIX 6.1 or 6.5. You must manually create the group with the required iFIX application features, or update your existing groups to include the following iFIX application features (if you want users in these groups to have access to and use Configuration Hub). Database Block Add-Delete Database Manager Database Reload Database Save Security Configuration System Configuration
`scada.fix.shared.OPERATORS`	Allows run mode only access for a user in iFIX.
`scada.fix.shared.SUPERVISORS`	Allows access to WorkSpace run and configure mode, as well as access to background task exit, iFIX system shut down, and iFIX system user login.
`scada.proficy.admin:`	Allows the Proficy Authentication user access to the iFIX Projects panel and to the Deploy operations from Configuration Hub. This group is for Proficy Authentication only; this group is not linked to any iFIX group and has no permissions in iFIX.