Global Settings
    Use 
Global Settings
 to define the settings applied to all devices contained in the model. Only administrators can edit Global Settings
.
     IMPORTANT: 
    
Rockwell Automation
 recommends configuring Global Settings
 before using the certificate authentication method.
     TIP: 
     Changes are saved when you select another field.
General
      
  | Property | Description | 
|---|---|
| Model Name | The name of the policy model managed by this instance of  FactoryTalk Policy Manager. | 
Certificate Settings
      
  | Property | Description | 
|---|---|
| Organization | The name of your organization. | 
| City/Location | The legally registered location of your organization. | 
| State/Province | If applicable, the state or province where an organization is using the certificate. | 
| Country | The country where an organization operates. | 
Device Authentication
      
  | Property | Description | 
|---|---|
| Enable enhanced device authentication | Enabling  enhanced device authenticationinvolves the deployment of updates to all devices in the policy model. You can deploy the updates directly after enabling enhanced device authenticationor do that later. | 
| Display deployment warnings for devices that do not support enhanced device authentication | For more information about the supported devices, see Enhanced device authentication. | 
| Skip or Continue the device policy deployment if a device cannot be authenticated | 
 | 
| Include DNS Information | Includes DNS information to the digital identity certificate of the device. | 
Port Settings
      
  | Property | Description | 
|---|---|
| DTLS timeout | Enter a value between 1 and 3600 seconds. The default value is 12 seconds. If the device does not support the timeout functionality, a warning appears in  Device Properties. | 
| Property | Description | 
|---|---|
| Inbound CIP Bridging to the Backplane | 
 | 
| Outbound CIP Bridging from the Backplane | 
 | 
Automatic Policy Deployment
      
     TIP: 
    
Changes to the Automatic Policy Deployment settings take immediate effect. To avoid onboarding devices with unintended settings, you can edit the Automatic Policy Deployment settings:
          
- With the FactoryTalk System Services server disconnected from the network.
- When you do not expect any devices to be onboarded.
| Property | Description | 
|---|---|
| Enable automatic device discovery and onboarding | Enables Automatic Policy Deployment that:
                   
 | 
| Enable automatic secured device replacement | Deploys the configuration of onboarded devices that match the devices in the policy model based on the specific criteria automatically. This feature requires the  Enable automatic device discovery and onboardingcheckbox selected. | 
| Enable secure onboarding | During onboarding, discovered devices can receive different sets of temporary policies that determine their networking behavior until they are provisioned with final policies. Prevents the onboarding devices from establishing connections with any other device in the network except for  FactoryTalk Policy Manager. This feature requires the  Enable automatic device discovery and onboardingcheckbox selected. | 
Security Eventing Settings
      
  | Property | Description | 
|---|---|
| Enable security eventing using Syslog server | Enables devices that support security eventing to start sending Syslog messages as configured in the policy. These settings apply to all devices that support security eventing. | 
|  Property |  Description | 
|---|---|
| IP Address | Identifies the Syslog server by the IP address. | 
| Hostname | Identifies the Syslog server by the DNS host name. | 
| Port | Identifies the communications port on the server to receive the Syslog messages. Default port number is 514. | 
| Protocol | Configures logging.
                   
 | 
|  Property |  Description | 
|---|---|
| Event types that will generate messages | Used to determine which event types generate messages.
                   
 | 
| Lowest level of severity to log | Logs messages that are greater than or equal to the severity level selected. Defined severity levels from highest to lowest are:
                   
 | 
|  Property |  Description | 
|---|---|
| Details to include in message | Specifies details included in the message.
                   
 | 
| Time resolutions | Defines the level of precision used in the time stamp of the log messages:
                   
 | 
Provide Feedback