Tighten security for FactoryTalk Batch Clients

Restrict access to specific features of your individual
FactoryTalk
 products. Only users with access can use secured product features.
For example, when you set up product policies for
FactoryTalk Batch
, restrict use of the Abort command to specific users. This prevents automated batch processes from being unintentionally aborted during run time.
To configure security for multiple features in
FactoryTalk
, use the Feature Security for Product Policies dialog box.
To configure security for the
FactoryTalk Batch
 features, refer to the secured product policies defined for the
FactoryTalk Batch
 Clients.
To tighten security for Clients
:
  • Delete the Windows Authenticated Users group from the Local Directory.
  • Create new
    FactoryTalk
     user accounts and groups in the
    FactoryTalk Directory
    . Create user accounts or groups to secure the
    FactoryTalk Batch
     Clients.
  • Add user accounts and groups created in Windows to the
    FactoryTalk Directory
    . Windows accounts added to the
    FactoryTalk Directory
     are called Windows-linked user accounts and groups.
    IMPORTANT:
    Windows Workgroup User Accounts are not supported in
    FactoryTalk
    .
    If you use Windows workgroups, you cannot administer user accounts centrally for
    FactoryTalk Batch
     Client applications.
    FactoryTalk Directory
     does not allow multiple user accounts to have the same name and password.
  • Remove the All Users group from the
    FactoryTalk Batch
     product policies. The
    FactoryTalk
     Services Platform installation process adds the All Users group to all
    FactoryTalk
     product policies.
  • Add user accounts and groups to the
    FactoryTalk Batch
     product policies. To secure
    FactoryTalk Batch
     resources, add only the necessary user accounts and groups to the corresponding product policies.
Provide Feedback
Have questions or feedback about this documentation? Please submit your feedback here.
Normal