About User Account and Authentication (UAA)

Proficy UAA (User Account and Authentication) provides identity-based security for Proficy based applications and APIs. It supports open standards for authentication and authorization, including Oauth2.

When a user is created or deleted in a product that uses Proficy UAA, the associated user account is created or deleted in the UAA instance, respectively.

Several Proficy products use Proficy UAA, including Historian, Plant Applications, and Operations Hub. To use Proficy UAA, you must install one of these products. Each product can install an independent instance of UAA, or it can reuse an existing instance of UAA which was previously installed by another Proficy product. When more than one product uses the same instance of Proficy UAA, this is called a shared or common UAA.

Shared UAA means that if you have a Proficy product installed that uses UAA, additional Proficy products installed after that initial product can also share that existing, already configured UAA architecture.

Proficy UAA can additionally be configured to use an external identity provider. This includes identity providers which use Lightweight Directory Access Protocol (LDAP) or Security Assertion Markup Language (SAML). When you integrate Proficy UAA with an external identity provider, you can provide the users and groups from that identity provider with access to Proficy products and their features.