beautypg.com

Understanding inherited permissions, Breaking the chain of inheritance, Understanding inherited permissions – 33 – Rockwell Automation FactoryTalk View Site Edition Users Guide User Manual

Page 115: Breaking the chain of inheritance – 33

background image

5

S

ETTING

UP

SECURITY

5–33

• •

5 • Pl

aceh

ol

der

To add an action group

In FactoryTalk View Studio, in the Explorer window, right-click the Action Groups
folder, and then click New Action Group.

For details about options in the New Action Group dialog box, click Help.

Understanding inherited permissions

Inheritance means that any security settings you define at the FactoryTalk Directory,
extend to all system resources that the directory manages. These resources include the
application and areas within the application, plus the System folder and its subfolders.

Inheritance allows you to define basic levels of access for a broad set of users, across a
FactoryTalk system. You can then refine security settings for selected users as necessary,
by overriding permissions inherited by the lower-level resources.

In a FactoryTalk View SE application, an HMI server always inherits the permissions
assigned to the area, in which it resides. You cannot set up access to an HMI server
separately.

However, the chain of inheritance that starts at the FactoryTalk Directory does not extend
to a user’s ability to access certain HMI project components at run time.

To restrict access to specific FactoryTalk View commands and macros, graphic displays,
OLE objects, or HMI tags, you must secure these components separately, within the
FactoryTalk View SE application.

For details, see “Setting up run-time security for HMI project components” on page 5-16.

For more information about how inheritance works, see FactoryTalk Security Help.

Breaking the chain of inheritance

You can override inherited permissions by breaking the chain of inheritance.

To break the chain of inheritance

In the Security Settings dialog box for the resource, select the check box, Do not
inherit permissions.

To secure individual HMI tags at run time, assign security codes to them in FactoryTalk View. To
control access to tags in general, including HMI and data server tags, allow or deny permission
to perform the Tag action Write Value.

See also other documents in the category Rockwell Automation Equipment: