Just wanting to get some feedback on what would be the best way to handle the following situation.
We have an embedded PC on a process line running a Vision client of a certain project, this auto logs in as the base control user that can control most things on the line. We like the auto-login feature here as it removes the issues with production staff turnover and new operators not knowing log in details, login details getting lost, etc.
The client also wants to have access to the same screen from the comfort of their offices, mainly to just observe what’s happening on the line. We want to ensure that these instances can ONLY be read-only though and not stop or start anything remotely.
We were originally just going to make a read-only user, but then this would have to be the auto-login user which creates that problem listed above of the operator then needing to know the credentials to control the line on the main HMI. We are also concerned about relying on a read-only user because nothing prevents the office production managers - who will obviously know the operator username/password - from just logging in on the control account in their offices.
Ultimately just wondering what the recommended solution here would be? FactoryTalk SE has the ability to create a runtime instance as completely read-only, I’m hoping for something similar here with the Vision client instances such that clients we put on these office PCs can only ever be read-only. Is this possible?
Appreciate the assistance.