Configure the authentication mode

Change the default authentication mode to allow local users and domain users to log on at runtime.
Prerequisites
To allow Active Directory users to authenticate, either:
  • Obtain the Active Directory domain name and server address.
  • Ensure that the
    Windows
    client is joined to the Active Directory domain.
To allow LDAP users to authenticate, obtain:
  • LDAP server address
  • Base64 CA certificate file exported from the Active Directory server or from a computer in the domain
TIP:
FactoryTalk Optix Studio
does not support LDAP over SSL (LDAPS).
  1. To configure the authentication mode
  2. In
    Project view
    , select the root node.
  3. In
    Properties
    , expand
    Authentication
    , and then in
    Authentication mode
    , select the authentication type that allows specific users to log on:
    • Model only
      . Users created in
      FactoryTalk Optix Studio
      .
    • Local only
      . Local machine users.
    • Domain only
      . Active Directory and LDAP users.
    • Domain and local
      . Active Directory, LDAP, and local machine users.
    • Any
      . Users of any type.
  4. (optional) Set
    DefaultUserFolder
    to change the default folder to contain user objects.
    TIP: The default folder to contain user objects is
    Security
    Users
    . When a domain user logs in at runtime, a corresponding user object appears in the folder specified.
  5. If you intend to run your application on a client outside the Active Directory domain:
    1. In
      Default domain name
      , enter the default domain name for domain users that log on at runtime.