Hi All, This is the situation: I have Ignition installed on a Server and 7 clients. There is 2 company that can access the gateway. How can I prevent the users of the other company from editing my projects? Cheers,

Use role-based permissions. docs

Thanks for the tip :slight_smile:, this is helpful, but I have some perplexity. I can block other users with different roles then mine, but I must leave to the other company the access to the “Gateway Settings” since they have to create OPC connection, create PLC device etc… so they can easily go t…

At some point on a shared resource, there is either trust or there isn’t. If it’s really an issue then they should have their own server instance.

[image] JordanCClark: should have their own server instance You mean another gateway with another license?

Yes. You could limit the number of admins on a single server to 2 (you and one admin for the other company), but you still have to trust the other guy. If you can’t, then the only way to isolate them is to put them on their own server. This is true of any shared resource, not just Ignition.

If I use a DB as “System User Source” and then HASH the password? Will this work?

If you give them gateway administrator permissions for the web interface, there is no way to prevent their access out of bounds. Its exactly like giving admin privileges on a domain – that user can do anything they want. Trust them or set up another server. Period.

Ok, thanks to all for the help :slight_smile:

It’s also worth keeping in mind that any user that can use the designer to write and execute gateway scripts can invoke Module SDK APIs to enumerate the entire gateway. Ignition’s role-based access controls are really just speed bumps if one has designer access. If your customers have any legal ob…

Inductive Automation Forum

Prevent a user from edit a project

Ignition

ignition79

show post in topic

Home
Categories
Guidelines
Terms of Service
Privacy Policy

Powered by Discourse, best viewed with JavaScript enabled