Part 1 - Setup
Login as Organization Administrator
All actions and configurations of an ArrigoHome organization needs an Organization Administrator
to be logged in. When the OrgAdmin
capabilities are assigned to a user, the administration panel for the organization is visible.
[OrgAdmin]
Go to https://home.arrigo.se/.[OrgAdmin]
Enter your email address and continue.[OrgAdmin]
Go to your email and press sign-in.[OrgAdmin]
Enter the code from your authenticator and press done.
Note
For information about how to set up AzureAD provider, please refer to the reference documentation here.
Create new Arrigo project
ArrigoHome are organized by Organizations
and Projects
. A Project
is a collection of endpoints, a unique identifier for the project and its connected Groups
.
[OrgAdmin]
Navigate to the "Arrigo Projects" view under the Admin mode menu.[OrgAdmin]
Create a new Arrigo Project with a nice project title and press 'Save'.
Warning
For EMS The Arrigo Home Project ID
is used to identify the EMS-account. For existing EMS-accounts the ID must be changed by the Arrigo support. Contact support if this is the case.
If the project is indended to be connected to an EMS project, this is the time to do it.
Create new group
If a user should have access to a project, and navigate into its endpoints (and make it visible on the ArrigoHome Home/Dashboard panel), the user needs to be member of a Group.
[OrgAdmin]
Select "Groups".[OrgAdmin]
Press the add button (the+
icon).[OrgAdmin]
Set the Title toOperators
. Set the Name toArrigoHomeOperators
. Press save.[OrgAdmin]
Press "Add Arrigo project" and select the project.[OrgAdmin]
Press "Add user" and select yourself.
Repeat the above procedure, but instead create the group Sysadmins
with Name ArrigoHomeSysAdmins
.
Now, you belong to the group ArrigoHomeOperators
and ArrigoHomeSysAdmins
and those Groups
has access to the Project.
Create new endpoint and connect project
To be able to navigate to a Arrigo Local installation, the installation needs to be connected to ArrigoHome with ArrigoID. A clientSecret
and a clientId
needs to be transfered manually to the Arrigo Local machine. This can be done by simply logging on ArrigoHome on the Arrigo Local machine, and download the generated configuration.
[OrgAdmin]
Select "Endpoints".[OrgAdmin]
Press the add button (the+
icon).[OrgAdmin]
Fill out the form and give the endpoint a nice title.[OrgAdmin]
Press Save.[OrgAdmin]
Press "Add Arrigo project" and select the project.[OrgAdmin]
Download the configuration for the "Arrigo Local (BMS)" endpoint and save the files on disc.
Configuration Arrigo local for ArrigoHome
Two files are needed for configuration of an Arrigo Local installation. The arrigoId.json
contains the secrets, callback url and endpoint identifier for the installation. The arrigoprojects.json
contains information about specific project settings.
[OrgAdmin]
Copy the the filearrigoId.json
to%ProgramData%\\Arrigo\\Arrigo Local\\settings
on th[OrgAdmin]
e Arrigo Local server.-
[OrgAdmin]
Copy the the filearrigoprojects.json
toProj:\\Arrigo\\BMS
on the Arrigo Local server. -
[OrgAdmin]
Log into Arrigo with the local sysadmin username. [OrgAdmin]
Create a group for arrigoID users[OrgAdmin]
Name the groupArrigoHomeOperators
.[OrgAdmin]
Set the access level for the project and root node to Operator.[OrgAdmin]
Create one more groupArrigoHomeSysAdmins
.[OrgAdmin]
Set the access level for the project and root node to SysAdmin.
Restart ArrigoLocal runtime and ArrigoLocalApppool in IIS. Now, the Arrigo Local computer is connected to ArrigoHome (through ArrigoID) and the configuration is prepared with correct information.
Navigate to the endpoint
Now, everything needed to automatically log into the Arrigo Local project is prepared.
[OrgAdmin]
Go to "Home".[OrgAdmin]
Press the Arrigo Local (BMS) link in the project card.[OrgAdmin]
Navigate back to ArrigoHome by pressing the 'ArrigoID'-button in the user menu.
Invite a user
Next step is to invite an external user to view the fancy setup of the ArrigoHome project. The External user can login, view dashboard, view project and navigate as an operator the the Arrigo Local computer without a local login.
[OrgAdmin]
Press "Users" in the admin mode menu.[OrgAdmin]
Press the add button.[OrgAdmin]
Enter the email of the external user and press "Add to organization".[OrgAdmin]
Add the groupOperators
to the external user.[OrgAdmin]
Press send invite.
An email is sent to the external user and after successful registration the user can navigate to the Arrigo Local installation.
External user accepts invitation
For detailed instructions about how to set up authentication, read more here.
[ExtUser]
Open new browser in Icognito mode and sign in with the email used for the roleExtUser
.[ExtUser]
Go to https://home.arrigo.se/.[ExtUser]
Enter your email address and continue.[ExtUser]
Go to your email and press sign-in.[ExtUser]
Scan the QR code in your authenticator and press the arrow button.[ExtUser]
Enter the code from your authenticator and press done.[ExtUser]
Press "Join an organization" and press the green button (V).[ExtUser]
Select the new organization in the select box in banner.[ExtUser]
Press the Arrigo Local (BMS) link in the project card.
The result
The user is logged in (with ArrigoID) to ArrigoHome, used the Project Dashboard
, navigated to an Arrigo Local Endpoint
and can view the content.
From now, the OrgAdmin
for the Organization can add new users and connect them in the same pattern to easily gain access to the Arrigo Local server.
Next steps
In the next part (Part 2), the above configuration is used together with an Arrigo EMS project to view EMS content in the Arrigo Local computer. Take a break, then continue here.
Future
-
In upcoming tutorials, we will split the Arrigo Local project in two ArrigoHome projects and add the same endpoint to each project. When done, the power of access-oriented user-groups and Arrigo Projects will be very visible. In combination with external users and domain connected organization the administration of servers will probably be more hands on and less tedious.
-
Connect your ArrigoHome organization to Azure AD to enable single click login and very easy onboarding of co-workers.