Create a New Local OpenID User for Flex Client

Scenario: You want to create a new local OpenID user who only has access rights to his own management station. An OpenID account is only valid for the Flex Client. Desigo CC requires an additional account. OpenID accounts can also be created for global user access.

 

Reference: For reference information on OpenID connections, see OpenID Connect for Flex Client Authentication. See also the comprehensive example in Auth0 OpenID Configuration Example.

 

Workflow diagram:

 

 

Prerequisites:

  • You have created one or several user groups under the folder Project > System Settings > Security (see User Group Administration).
  • A supervisory user was created by copying the existing default admin and configuring adequate user rights.
  • The identity provider configuration for OpenID users is configured.

 

Steps:

1 – Create a New Local OpenID User
  • System Manager is in Engineering mode.
  1. In System Browser, select Management View.
  1. Select Project > System Settings > Users.
  1. Select the Users tab.
  1. Click New .
  1. In the New User dialog box:
    a. From the User type drop-down-list, select OpenID account.
    b. Enter an email address as a user name, for example, abc@xyz.
    c. Click OK.
  1. Click Save .
  • The user is created, but not configured.

 

2 – Assign a User Group
  1. Select the Configured Groups expander, and select the appropriate user group from the User Group list.
    NOTE: Only local user groups display.
  1. Drag-and-drop the user group to the User Configuration list.
  • The user group is moved from Configured Groups list to the Group Membership list.
  1. Repeat steps 1 to 2 for additional user groups that you want to assign to the user.
  • The user groups are assigned to the user.
Information

NOTE:
Assigning user groups to users is the same as assigning users to user groups, so the assignment can be performed in either section.

 

3 – Define User Properties
  1. In the User Settings expander, do the following:
    a. Under Language, select the appropriate language.
    b. Under Client profile, select the corresponding user profile to layout Desigo CC.
    NOTE: The correct schema for your region is assigned to the project. The schema contains the mapping of categories, events and colors for the representation of the Alarm Summary bar.
  1. In the User Information expander, do the following:
    a. Enter an expanded user description in the Full name field. This text displays as the user name on the Summary bar.
    b. Enter an expanded description, for example, the office number, in the Comment field.

 

4 – Enable User
  1. Select the Users tab.
  1. In the Users list, select a user or use multi-select by pressing the CTRL or SHIFT keys.
  1. Select the Enabled check box for the user.
    NOTE: When you use multi-select, the check box next to the last selected user takes on the master function. Checking it, checks the check boxes of all selected users.
  1. Click Save .
  • The user is enabled and can log on to Desigo CC.
  • A history log entry is created for each enabled user.
Information

NOTE:
You can disable a user at any time if you have the appropriate user rights. Clear the Enabled check box.