About permission sets and logical names

Permission sets and Logical Names identify a set of actions that are allowed or denied for one or more user groups or computer groups. You use permission sets and Logical Names to define user permissions in the
FactoryTalk Administration Console
. Use permission sets to apply the same permissions to multiple controllers or project components. Use a Logical Name to associate permissions with a specific controller.
When a user opens a project that has been secured with a permission set or a Logical Name and configured to use only the selected security authority, the
Logix Designer
 application checks the ID of the
FactoryTalk Security
 server to see if it matches the ID stored in the project.
  • If the ID matches, the
    Logix Designer
     application checks the
    FactoryTalk Security
     server and finds the Logical Name (that matches the controller name), or the permission set associated with the project, and gets the permissions for the current user/computer combination.
  • If the ID does not match, the project uses the Guest User permissions defined for that permission set or Logical Name.
When a user opens a project that has been secured but has
not
 been configured to use only the selected security authority, the
Logix Designer
 application checks the connected
FactoryTalk Security
 server, finds the Logical Name or the permission set associated with the project, and gets the permissions for the current user/computer combination. Rockwell recommends configuring the project to use only the selected security authority to maintain control over the
FactoryTalk
 server that secures the project.
IMPORTANT:
When a project is associated with a specific Security Authority, the project is associated with a specific
FactoryTalk
 Network directory that is identified by a Security Authority identifier. Projects that are secured and bound to a specific Security Authority cannot be recovered if the security authority identifier of the
FactoryTalk
 Network Directory used to secure the project no longer exists. For details about backing up a
FactoryTalk Directory
, see
FactoryTalk
 Help:
Start > Programs > Rockwell Software >
FactoryTalk
 Tools >
FactoryTalk
 Help
.
Provide Feedback
Have questions or feedback about this documentation? Please submit your feedback here.
Normal