beautypg.com

Removing all users from the runtime security list – Rockwell Automation FactoryTalk View Site Edition Users Guide User Manual

Page 96

background image

F

ACTORY

T

ALK

V

IEW

S

ITE

E

DITION

U

SER

S

G

UIDE

5–14

• •

The DisplayClientClose command has security code D.

An HMI tag named BoilerTemp has security code E.

This means that members of:

The Supervisors group have full run-time access.

The Operators group can open the Overview and Boiler graphic displays, and can
write to the BoilerTemp tag. Members cannot run the DisplayClientClose command.

The Visitors group can only open the Overview graphic display.

If a user belongs to more than one group, the security codes allowed or denied each group
are combined for that user.

For example, if John Doe belongs to one group that is allowed codes A and B, and to
another group that is allowed C and D, then he is allowed A, B, C, and D.

Or, if John belongs to one group that allows A, B, C, and D, and to another that explicitly
denies B, then John is allowed only A, C, and D.

Removing All Users from the Runtime Security list

Following installation of the FactoryTalk View SE software, all FactoryTalk users have
full run-time access to network and local applications on the computer.

The All Users account is added automatically to the Runtime Security list, for each
network or local application you create. To set up run-time security for individual user or
group accounts, you must remove the All Users account.

Removing All Users from the Runtime Security list does not delete the corresponding
account from the FactoryTalk Directory.

This means that parts of the control system will remain unsecured for all users, even after
the account is removed. For example, all users will still be able to create and modify
applications in FactoryTalk View Studio.

To restrict access to FactoryTalk system resources, you must also remove All Users from
the FactoryTalk Directory. For details, see “About the All Users account” on page 5-22.

You cannot remove the All Users account, until you add at least one other account to the
Runtime Security list.

See also other documents in the category Rockwell Automation Equipment: