Example: Secure FactoryTalk Linx Gateway in a distributed system

FactoryTalk Security

allows security to differ in data servers. Assume a Network-scoped distributed system and select the FactoryTalk Application as the data source in FactoryTalk Linx Gateway. This FactoryTalk system has an application called MyFTApp
that contains three areas and three data servers.

TIP:

Make sure you have the appropriate permissions managed in

FactoryTalk Security

before configuring any security settings.

The table lists the security needs:

Areas	Data servers	Security needs	Actions
Area1	FactoryTalk Linx	Reads/Writes	Grant full access
Area2	RSLinx Classic	Writes	Deny Reads access
Area3	FactoryTalk View SE HMI	Reads	Deny Writes access

Secure each area. For each area that needs to be secured, right-click the area (for example, Area1
), and then click Security
to view Security Settings
for the area. To allow actions for a particular group of users and computers, select the group of users and computers, and then assign Allow
permissions to the corresponding actions. Assign Read
permissions before assigning Write
permissions.

In Area1
, allow Read/Write
access in Common
group and allow Write Value
access in Tag
group.

Area1
> Security
> Anonymous Logon
> Common
> Read
> Allow

Area1
> Security
> Anonymous Logon
> Common
> List Children
> Allow

Area1
> Security
> Anonymous Logon
> Tag
> Write Value
> Allow

In Area2
, deny Read
access in Common
group.

Area2
> Security
> Anonymous Logon
> Common
> Read
> Deny

In Area3
, deny
Write Value
access in Tag
group.

Area3
> Security
> Anonymous Logon
> Tag
> Write Value
> Deny

Secure FactoryTalk Linx Gateway with FactoryTalk Security

Feature Security Properties

Secure the FactoryTalk Linx Gateway Configuration

Use FactoryTalk Linx Gateway

Provide Feedback

Have questions or feedback about this documentation? Please submit your feedback here.