Currently, I am trying to configure tags in the Designer so that only certain roles can change the tags. Using the tag permissions I can lock down the tags but only when someone is trying to write to them in the client. I would like to also prevent the same roles from writing to those tags while in the Designer. Is this possible without setting them to strictly “Read Only” for all roles?
The reason I would like to do this is I have a new hire at our company who is learning to use Ignition. I want him to be able to see all the tags, read values from them, build components that point to these tags, etc. But I don’t want him to be able to write to any of the PLC tags while in the Designer or the Client because he is still learning (accidentally start a pump, etc). I have been able to lock down the provider and the clients, but he can still write to any of the tags while in the designer.
Is there a security option I’m missing somewhere?