Hi
Im looking to provide colleagues with access to SCADA pages and database to view only. View pages and Trends but no command.
I want this to be as safe as possible so that the Ignition Gateway is not exposed.
Is it possible to have a front end client server that provides these pages and databases. That data is pushed to it from the Gateway.
kind regards
I think the closest thing to that vision is setting up a reverse proxy, configured with only access to the specific Perspective project(s) you wish to share.
If you mean another Ignition gateway, then yes. Configure the DMZ gateway's remote tag provider to only have read access to the back end gateway's tags.
If you are using just Ignition's historian, there's nothing else to configure. The front end's trend requests will be routed to the backend.
If you use the same tag provider name, then your back end projects will Just Work™ on the front end gateway.
If you're talking the DMZ layer between say the plant network and the corporate network then yeah just spin up another Ignition gateway in the DMZ and connect it via the gateway network. If you're talking your corporate network's DMZ to the public internet then you need a lot more for network security. Just thought I'd mention the second half.