Initial Hub configuration

If you intend to use Blue Prism Interact, install Interact before you carry out this configuration. For more information, see the Interact install guide.

You can now log in for the first time and carry out some system-wide configuration.

When you open the login page for Authentication Server, localization settings are automatically applied from your web browser. The login page and Hub display in the language most compatible with the language settings configured in the browser. If the language selected in your browser settings is not supported, English is used as the default. If required, you can manually change the language you want to use from the drop‑down list on the login page.

To watch the Hub installation and configuration process, see our Blue Prism Hub installation video.

  1. Launch a browser and go to the Authentication Server website, in our example: https://authentication.local

  2. Log in using the default credentials.

    • Username: admin
    • Password: Qq1234!!
  3. Click Hub to launch the Hub website.

  4. Change the default password to a new secure password.
    1. In Hub, click the profile icon to open the Settings page, and then click Profile.
    2. Click Update password.

      The Update your password dialog displays.

    3. Enter the current admin password, then enter and repeat a new password.
    4. Click Update.

      The admin password is changed.

Database settings

If you have installed your environment to use Windows Authentication, you must assign the application pools and services to use Windows accounts before creating an environment in Hub. If you do not, you may experience performance issues, for example, forms created using the Interact plugin may not display to users in Interact. For more information, see Installing Hub using Windows Authentication.

To configure access to the Blue Prism database:

  1. Click your profile icon to open the Settings page, and then click Environment manager.

    The Environment management page displays.

  2. Click Add connection and enter the details of the Blue Prism database. An example is shown below:

    The Timeout value is in seconds.

  3. Click Add connection to save the details.

    The connection is created and displays in the Environment manager.

  4. In the Environment manager, click the refresh icon on your new connection. This updates the information in Hub with the digital workforce and queues held in the database.

    If the connection is successful, the following message displays in the top right corner of the Hub user interface, which verifies the installation.

    If the message does not display, see Troubleshoot a Hub installation for more information.

Create an administrator

You will need to create an administrator account with valid information to finish the Hub configuration. You should not use the generic admin account to complete the configuration, this is because:

  • A real email address is needed in order to test the email configuration.
  • For a complete audit trail, a named user should be used to make configuration changes, rather than the generic account.

To create a new administrator:

  1. Click your profile icon to open the Settings page, and then click Users.
  2. On the Users page, click Add user.

    The Create user section displays.

  3. Enter the following details:
    • Username
    • First name
    • Last name
    • Email address

  4. Select the Hub and Hub Administrator permissions.

  5. Click Create user.

    The Create password dialog displays.

  6. Select Manually update the user’s password.

    Passwords must obey the restrictions within Hub.

  7. Click Continue and follow the instructions on screen.
  8. Finally, click Create to create the user.

    The new user displays in the list of users.

  9. Log out of Hub and log back in using your new account.

Email settings

It is recommended that the SMTP setup is completed. This enables system emails to be sent, such as forgotten password emails.

The email address used to send emails is configured when setting up your profile.

To configure the email settings, you must log in with the user you created in Create an administrator. This is because the configuration process sends a test email, and therefore requires a user with an active email address.

You can configure your email settings using one of the following authentication methods:

  • Username and password – This authentication method requires the following information:

    • SMTP host – The address of your SMTP host.

    • Port number – The port number used by the outgoing mail server.

    • Sender email – The email address that is used when sending emails. The email recipients will see this as the From address.

    • Encryption – The encryption method used by the email server to send the emails.

    • Username – The username for the SMTP authentication.

    • Password – The password for the account.

    • Test email recipient – The test email will be sent to this email address. This defaults to the email address of the user who is making the changes and cannot be changed.

  • Microsoft OAuth 2.0 – This authentication method requires the following information:

    • Sender email – The email address that is used when sending emails. The email recipients will see this as the From address.

    • Application ID – This information is the Application (client) ID defined in Azure AD and will be provided to you by your IT Support team.

    • Directory ID – This information is Directory (tenant) ID defined in Azure AD and the will be provided to you by your IT Support team.

    • Client secret – This is the client secret as generated by Azure AD and will be provided to you by your IT Support team and controls the authentication process

      For information about finding these details in Azure AD, see the Microsoft documentation.

    • Test email recipient – The test email will be sent to this email address. This defaults to the email address of the user who is making the changes and cannot be changed.

    If you are using Microsoft OAuth 2.0, the Mail.Send permission in Azure Active Directory must be enabled. This is found in the API Permission tab under the application properties in Azure Active Directory. For more information, see Troubleshoot a Hub installation.

To configure the email settings:

  1. Click your profile icon to open the Settings page, and then click Email configuration.
  2. Click Edit.
  3. Select the authentication type you want to use.

    The fields on the page depend upon your selection as detailed above. If you select:

    • Username and password, the Email configuration page displays as follows:

    • Microsoft OAuth 2.0, the Email configuration page displays as follows:

  4. Enter the required information.
  5. Click Save.

If the email settings cannot be successfully configured, it is likely that the Message Broker server cannot be reached, see Troubleshoot a Hub installation for more information.

For more information about configuring email settings, see Hub Administrator Guide.

Configure Authentication Server

Authentication Server enables users to log into Blue Prism, Hub, and Interact using the same credentials. Authentication Server is compatible with Blue Prism 7.0 and later.

With Blue Prism 6

If your organization is using Blue Prism 6:

  • Authentication Server cannot be used to authenticate users between Blue Prism and Hub. Users can log into Blue Prism and Authentication Server using independent accounts.
  • You should configure the authentication settings in Hub. See Authentication settings.

With Blue Prism 7

If your organization is using Blue Prism 7, you should consider whether your organization wants users to use the same account for the Blue Prism applications.

To watch the configuration steps, see our Configure Authentication Server video.

Authentication settings

Authentication settings for a Hub environment can be configured on the Authentication settings page.

To configure the authentication settings:

  1. Click your profile icon to open the Settings page, and then click Authentication settings.

    The Authentication settings page displays.

  2. Select the authentication type(s) you want to use, and the associated options if required.

    • Native authentication – This is enabled by default in new environments or when upgrading Hub.
    • Active Directory – This can only be enabled if the server hosting Authentication Server is a member of an Active Directory domain. If enabled, Active Directory domains and user role management can also be configured.
    • SAML 2.0 – This option is only visible on the Authentication settings page if the Authentication Server SAML 2.0 extension has been installed on the host web server where Authentication Server is installed.
    • LDAP – To enable LDAP authentication at least one LDAP connection must be created.

Based on your organization’s requirements, you have the following options:

  • Enable all authentication types.
  • Disable one or more authentication types; this can only be done while there is at least one administrator user in the system that is configured to log in with a different authentication type than the type(s) being disabled.

For more information about configuring authentication settings, see Authentication settings.

Install Plugins

As part of the installation, Hub automatically installs the Hub plugins. However, if you want to use ALM or Interact, you will need to install the freely available Business processes plugin first.

To watch this installation step, see our Business Processes plugin installation video.

  1. Log in to Hub.
  2. Click Plugins to open the plugin repository.

  3. Click Automation lifecycle.

    The available plugin components display.

  4. Click the download icon in the bottom corner of the Business processes tile to initiate the install.

    The site restarts.