×

Supercharge your GE solution! Download a free trial of Proficy Operations Hub, CSense analytics, and more. Learn more about the Proficy 2023 releases, by signing up for one of our upcoming events.

Products Documentation

Proficy Authentication
- About Proficy Authentication
- Set up Proficy Authentication
  This topic describes how to set up Proficy Authentication in Configuration Hub.
- Application Overview
  Proficy Authentication provides identity-based security for Proficy based applications and APIs.
- Manage Identity Providers
  - Add LDAP Identity Provider
    This topic describes how to add a LDAP account in Proficy Authentication.
  - Enable SAML
    This topic describes how to configure SAML identity providers for Proficy Authentication.
  - Add SAML Identity Provider
    This topic describes how to add multiple SAML accounts in Proficy Authentication.
  - Enable Multi-Factor Authentication
    This topic describes how to enable multi-factor authentication for users.
  - Modify LDAP Identity Provider
    This topic describes how to modify the existing details for the LDAP account.
  - Modify SAML Identity Provider
    This topic describes how to modify the existing details for a SAML account.
  - Delete Identity Provider
    This topic describes how to delete identity providers.
- Manage Groups
- Manage Users
- Windows Integrated Authentication / Auto-login
  Windows Integrated Authentication is a new capability added to Proficy Authentication Service from version 2.5.
- High Availability
- Customize Login Screen
  This topic describes how to customize the Proficy Authentication login screen.

Add LDAP Identity Provider

This topic describes how to add a LDAP account in Proficy Authentication.

Before you begin

Log in to Configuration Hub with user/client having write access for admin and clients.

About this task

You can add multiple LDAP connections.

Procedure

Go to Proficy Authentication > Security > Identity Provider.
Select and then select LDAP.

The LDAP Identity Provider screen appears.

Enter the following details:

Field	Description
Name	A unique name to help identify your LDAP connection.
URL	The URL of the LDAP server. The trailing slash (/) must be included at the end of the URL. You can use LDAP with or without secure authentication in the following format: Insecure port: `ldap://100.100.100.2:389/` Secure port: `ldaps://100.100.100.2:636/` You can also use a fully qualified domain name instead of an IP address. For a secure port, provide user credentials.
Bind User Distinguished Name	Distinguished LDAP user name. Describes the part of the hierarchy the user belongs to on the active directory network. CN=Common Name. DC=Domain Component. OU= Organization Unit Name. CN and DC are typically required, while OU is optional. Example: `CN=John Smith,OU=Factory,DC=Company,DC=COM`
Password	The password to log in to the LDAP server if you choose secure authentication.
Test	Tests the connection to the LDAP server. If the URL and login details are correct, you will receive a test successful message.
Skip SSL Verification	This option appears only when you choose a secure port for LDAP. Select this check box if you want to skip establishing a secure connection between client and server for exchanging LDAP data. Clear the check box to allow SSL verification. Refer to step 4.

If you choose to secure LDAP, select for SSL verification.
A message appears when the security certificate is trusted and added to the store.
In case the certificate is not added automatically, the following message appears.
Select Browse to navigate and choose the server certificate from your local system.
Optional: Select next to the lock icon to view the certificate.
Select Save.

Results

The LDAP identity provider is created.