Computer Policy Settings

Determines whether client computers can access the

FactoryTalk

network directory without having a computer account in the network directory. Disable this policy to allow users to connect remotely from any computer, even if the computer does not have a computer account in the

FactoryTalk Directory

.

Even when this setting is disabled, create computer accounts for any computers hosting

servers

— for example,

Rockwell Automation

Device Servers (

FactoryTalk Linx

,

OPC

data servers, Tag Alarm and Event Servers, or HMI servers. Without the server computer accounts, configuring the servers from client computers on the network is not possible. The

FactoryTalk

network directory Server cannot locate these servers on the network without their computer accounts.

Enabled

allows users to log on to

FactoryTalk

only if they are logging on from a client computer that has an account in the

FactoryTalk Directory

. Even if set to Enabled, Remote Desktop Services clients can still log on to

FactoryTalk Directory

without computer accounts if the

Identify terminal server clients using the name of

policy is set to

Server Computer

.

Disabled

allows users to log on to

FactoryTalk

from any client computer, even if that computer has no computer account in the

FactoryTalk

network directory.

Default

: Enabled

Determines what computer name identifies clients connecting to the

FactoryTalk Directory

through Remote Desktop Services. This policy also affects whether client computers connecting through Remote Desktop Services require computer accounts in the

FactoryTalk Directory

.

Server Computer

allows client computers to connect through Remote Desktop Services without requiring accounts in the

FactoryTalk Directory

, even if the

Require computer accounts for all client machines

policy is

Enabled

. This is possible because the

FactoryTalk Directory

behaves as if the client computer were accessing the

FactoryTalk Directory

from the Remote Desktop Connection computer.

If set to

Terminal Client

and the

Require computer accounts for all client machines

policy is

Enabled

, client computers must have computer accounts in the

FactoryTalk Directory

to access

FactoryTalk

applications.

If set to

Terminal Client

and the

Require computer accounts for all client machines

policy is

Disabled

, client computers do not require computer accounts in the

FactoryTalk Directory

to access

FactoryTalk

applications. This combination of settings is useful for diagnostic logging because the name of the client computer where actions originate can be logged.

The

Identify terminal server clients using the name of

policy also determines which computer name appears in the

FactoryTalk Diagnostics

Log of actions performed on the system over a Remote Desktop Services connection:

Terminal Client

logs actions using the name of the client computer where the user is connecting to the Terminal Server. The computer name logged in

FactoryTalk Diagnostics

will be different for each client connecting via Remote Desktop Services.

Server Computer

logs actions using the name of the Terminal Server computer for all users. The computer name logged in

FactoryTalk Diagnostics

will be the same for all users connecting via Remote Desktop Services.

Default

: Terminal Client

Determines if the system will force the use of the local computer name when a disconnected remote session is blocking the logon process.

Enabled

allows using the local computer name to log in if the remote session is disconnected.

Disabled

does not allow logging in to the

FactoryTalk Directory

if the remote session is disconnected.

Default

: Disabled