Access and Identity Management

The Access and Identity Management web client allows users to manage the user assignments in Security. This web interface allows you to add, modify, and remove Security Users and Security Groups. This service will host a web server accessible from any browser on the local network.

Starting an instance of Runtime with an Access and Identity Management security enabled project will push that update to the Access and Identity Management service. It will create a new Access and Identity Management project on the dashboard if there isn't one, or it will update an existing project.

Runtime provides the following information to Access and Identity Management:

  • Project Name and Project ID

  • List of known Workstation Names, IDs, and IP Addresses

If the current IP address does not match any of the project's Workstation IP addresses, Access and Identity Management will fail to initialize the project.

Access and Identity Management can contain multiple projects but can only run one at a time. To switch projects, you must launch Runtime with the desired project.

If the workstation list changes, AIM updates its list automatically on the next Runtime startup.

Note: The Access and Identity Management service must be installed first before you can run security-enabled IPFusion projects. If the Access and Identity Management service fails to start, it is likely that you are missing the IPFusion.Services certificate. To fix this, reinstall IPFusion using the installer provided in the partner portal.

Requirements

Table 1. Port for Web Service
Protocol IP Address Port Access URL
HTTP/HTTPS [IP address of Workstation] 5253 https://[IP address of Workstation]:5253

Default Credentials

These credentials are for users who have installed IPFusion with Access and Identity Management and need to log into the dashboard for the first time.
Note: Users will be prompted to reset username and password after first login.
Table 2. Initial Login Credentials
Username Password
admin admin

AIM Secure Connection

By default, AIM uses unsecure HTTP communication. In order to use secure HTTPS, it must be enabled in the configuration files for the AIM Service.
Note: In deployments with multiple Workstations, all AIM sessions must use either HTTPS or HTTP; there cannot be a combination of both.
  1. Stop the IPFusion - AIM Service.
  2. Navigate to C:\Program Files (x86)\IPFusion\AIM.
  3. In a text editor, open the appsettings.Production.json file.
  4. Set UseHttps from false to true.
  5. Save the file.
  6. Start the IPFusion - AIM Service.

Runtime Secure Connection

By default, The Runtime-to-AIM communication uses unsecure HTTP. In order to use secure HTTPS, it must be enabled in the configuration files for your project.
  1. Verify that Security is Enabled in your project.
  2. Close the project in Designer.
  3. In your project folder, open IPFusion.sec in a text editor.
  4. Set AimIsUsingSsl from false to true.
  5. Save the file.
  6. Open the project in Designer, and Publish to Runtime if needed.