Documente Academic
Documente Profesional
Documente Cultură
PUBLIC INFORMATION
Overview
This session provides an introductory overview of Operating System
considerations such as:
Hardware & Software
Domain & Workgroups
Name Resolution
DNS
DHCP
Security
FactoryTalk Directory Configuration
Best practices and the importance of proper operating system configuration
within a manufacturing environment.
Copyright 2014 Rockwell Automation, Inc. All Rights Reserved.
Agenda
What Are We talking about?
Hardware and Software
Windows Roles and Features
FactoryTalk Configuration
Best Practices
For hardware functions such as input and output and memory allocation, the
operating system acts as an intermediary between programs and the computer
hardware
The operating system is also responsible for security, ensuring that unauthorized
users do not access the system.
Controllers
Data Servers
HMI Software
Data Storage
Databases
Historian Servers
Visualization
Reporting Software
Mobile Devices
Requirements
Phase
Architectural
Phase
Technical
Design
Implementation
Phase
Maintain
Phase
Where do we Start
Whats the end goal
We ALL want to be successful
What are the givens
We work in a Windows environment
Whats the reality
We configure Roles and Features
Where do we start
A really good question
10
Agenda
What Are We talking about?
Hardware and Software
Windows Roles and Features
FactoryTalk Configuration
Best Practices
11
Software Requirements
Manufacture Software Requirements
Operating System
Database
FactoryTalk Services Platform
RSLinx Enterprise
Software is designed to use the Roles and Features of a given OS
Must consider ALL third party software requirements for both Server and
Clients
Copyright 2014 Rockwell Automation, Inc. All Rights Reserved.
12
Software Requirements
What type of Operating System (OS)
Server Client
Software Requirements
Software product A + B + C on a given computer
Software required for Computer 1 2 3
Rockwell Automation Product Compatibility Center
13
14
15
16
17
18
Hardware Requirements
Manufactures minimum hardware requirements for Server and Client
19
Hardware Requirements
What type of Hardware
20
Hardware Requirements
Three Main components
Speed
Number of processors
Number of Cores
Amount
Type (speed)
Size
Speed
Type (Hard Disk Drive) or (Solid State Drive)
Copyright 2014 Rockwell Automation, Inc. All Rights Reserved.
21
Hardware Requirements
Introduction to VMware Product Suite Virtualization Solutions
Virtualization in Manufacturing Industries
Building a hardware Infrastructure for a Virtualized Solution
Introduction to Cloud Computing for Manufacturers
22
Windows Servers
At the heart of IT (Business & Control) Infrastructure
The default installation steps are streamlined
24
Windows Servers
Server 2008 R2 Management Console
25
Windows Servers
Server 2012 R2 Server Manager Dashboard
Local Server
Roles that were added
26
Windows Servers
Server 2014 R2 Server Manager > Local Server
Properties
Events
Services
Best Practices Analyzer
Performance
Roles and Features
27
28
29
For Interface nodes, the pipc\dat and pipc\log directories, as well as the
directory where buffer queue files are located, should be excluded
30
Agenda
What Are We talking about?
Hardware and Software
Windows Roles and Features
FactoryTalk Configuration
Best Practices
31
Getting Started
Sequence of tasks
33
34
Security Model
Domains or Workgroups
36
Workgroup
All computers are peers; no computer has control over another computer.
Each computer has a set of user accounts. To log on to any computer in
the workgroup, you must have an account on that computer.
There are typically no more than ten computers.
Limitation is 10 concurrent connections to any share in the workgroup at
any one time
All computers should be on the same local network or subnet.
37
Workgroups
Workgroup: Decentralized Administration
New User?
Administer
each computer
FactoryTalk View
Studio
SE Client
SE Client
SE Client
Logged in:
Joe
Logged in:
Henry
Logged in:
Mary
Logged in:
Isaac
Local Users
Joe
Henry
Mary
Isaac
Local Users
Joe
Henry
Mary
Isaac
Local Users
Joe
Henry
Mary
Isaac
Local Users
Joe
Henry
Mary
Isaac
Bob
Domain
An architecture that one or more servers are responsible for dealing with
security and permissions on the network.
Network administrators use servers to control the security and permissions
for all computers on the domain.
Network modifications are easy, as changes are automatically made to all
computers.
Domain users must provide credentials each time they access the domain.
With a user account on the domain, one can log on to any computer on the
domain without needing an account on that computer.
The computers can be on different local networks.
Copyright 2014 Rockwell Automation, Inc. All Rights Reserved.
39
40
Domains
Domain: Centralized Administration
New User?
Administer the
Domain Controller
FactoryTalk View
Studio
Logged in:
Joe
SE Client
SE Client
SE Client
Bob
Domain
Controller
Logged in:
Henry
Logged in:
Mary
Logged in:
Isaac
Domain Users
Joe
Henry
Mary
Isaac
41
Domain or Workgroup
New or Existing
Network Architecture or Scope
Number of computers
Number of users
Management
42
IP Addresses
Static and DHCP
Assigning IP Addresses
Regardless of Workgroup or Domain infrastructure, IP address need to be
assigned to each computer that will be on the network
Mission critical computers should have a static IP addresses
Industrial concerns
Using static IP address
Manually entered
44
Assigning IP Addresses
DHCP IP Address Reservations
Based on MAC addresses
45
Assigning IP Addresses
DHCP IP Address Exclusion
Exclude static IP addresses
46
Name Resolution
Host Name and NetBIOS
Name Resolution
Regardless of Workgroup or Domain infrastructure, Name resolution is required
for the computers to communicate with each other on the network.
Name resolution resolves Domain \ Host Names to IP addresses
Two types of Name Resolution
Host Files
Domain Name Server (DNS)
NetBIOS resolution
Broadcast
WINS Server
Copyright 2014 Rockwell Automation, Inc. All Rights Reserved.
48
3.
4.
Absent of ANY configuration, step 4 will be used to achieve some level of name resolution
Copyright 2014 Rockwell Automation, Inc. All Rights Reserved.
49
Host Files
A Host file is a flat text file used to resolve IP addresses to Host
names
Windows 2000 and later Host files are loaded in to the local DNS
resolver cache first on startup.
You can use different names for the same IP address (nick names)
Host files must be entered and maintained manually
50
Security Concerns
51
Server 2008
Server 2012
52
53
54
C
5 Caches address
goes to server
D for www.acme.com
1 Needs to go www.acme.com .
Checks local DNS cache first if not found
Requests address from DNS Server B
56
D
C
5 finds address in
Its cache then
goes to server
D for www.acme.com
B
1 Needs to go www.acme.com .
Checks local DNS cache
Copyright 2014 Rockwell Automation, Inc. All Rights Reserved.
57
58
59
60
Users
Windows -- FactoryTalk -- SQL Users
Workgroup Users
FactoryTalk Users
62
Windows Considerations
IIS
Server 2008 R2
Server 2012 R2
64
65
66
67
Application Development
ASP .NET
.Net Extensibility
ISAPI Extensions
ISAPI Filters
Security
HTTP Redirection
Windows Authentication
Management Tools
68
69
70
71
Windows Considerations
DEP
73
74
Windows Considerations
Time Zone
76
All Windows machines must have the proper time-zone settings and are set
to automatically adjust for daylight-saving changes.
The domain controller synchronizes all the other computers that are a part of
the FactoryTalk Historian system.
Copyright 2014 Rockwell Automation, Inc. All Rights Reserved.
77
To confirm that the TZ variable is not set on Windows 7, Server 2008 and 2008 R2:
To confirm that the TZ variable is not set on computers with other Windows OS:
78
Program Files
Some Rockwell Automation software products that support 64-bit operating
systems are 32-bit (x86) applications that are "64-bit compatible".
The 'Rockwell Automation', 'Rockwell Software' and 'Incuity' folders are
located within the 'Program Files (x86)' folder on a 64-bit OS
On a 64-bit OS, the 'Program Files' folder is for true 64-bit (x64)
applications, while the 'Program Files (x86)' folder is for backwards
support of 32-bit (x86) applications that are "64-bit compatible".
80
81
Folders
ProgramData
The 'ProgramData' folder is a hidden system folder that is used to store
application program related data
Introduced in Vista OS, It replaces the 'Documents and Settings\All
Users\Application Data' folder that was used in previous versions of
Windows.
Like its predecessor, it works in conjunction with applications
installed within the 'Program Files' folder (and the 'Program Files (x86)'
folder on 64-bit operating systems).
NOTE: As a rule, folders and files within the 'ProgramData' folder should not be
manually manipulated (or deleted) using Windows Explorer or other file system
tools.
Copyright 2014 Rockwell Automation, Inc. All Rights Reserved.
82
Windows Registry
Managing 32-bit registry keys in a 64-bit Windows Operating System?
64-bit Program:
32-bit Program:
@HKEY_LOCAL_MACHINE\SOFTWARE\Rockwell Software
@HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Rockwell Software
References
http://suport.microsoft.com/kb/305097
RA Knowledgebase ID 507187
83
Windows Registry
While not recommended, if you have to modify the registry manually,
EXTREME care should be exercised when merging .REG files into registry
when mix of 32 and 64 bit registries are involved.
Right-click Merge of .reg file will always place the registry information
in the 64 bit location which is not accessible by the 32 bit programs
84
NOTE: Both 64 bit and 32 bit version of the ODBC Data Source admin is
odbcad32.exe but in different locations.
Copyright 2014 Rockwell Automation, Inc. All Rights Reserved.
85
ODBC DSN
In some products (i.e. FactoryTalk Metrics, and FactoryTalk View SE) even
when installed on a 64 bit OS, the SQL Server database portion of their
install is a 32 bit version.
The 32 bit version of the ODBC Data Source Administrator at the following
location should be used:
%windir%\SysWOW64\odbcad32.exe
NOTE: If you try to create a DSN by using Administrative Tools > Data
Sources (ODBC) on a 64 bit Operating System, it will open the 64-bit
system ODBC Data Source Administrator configuration GUI.
The 64 bit DSN GUI has no visual indication that it only relates to 64-bit.
Copyright 2014 Rockwell Automation, Inc. All Rights Reserved.
86
ODBC DSN
64 Bit
32 Bit
87
Agenda
What Are We talking about?
Hardware and Software
Windows Roles and Features
FactoryTalk Configuration
Best Practices
88
What is FactoryTalk?
FactoryTalk Services Platform
A service oriented architecture
(SOA) that delivers value
through FactoryTalk-enabled
products
Reduces customer learning
curve and project engineering
time through commonality and
reuse
89
Common address
book Central
ofsecurity
Enterprise-wide
Centralized
Comprehensive
location Enterprise-wide
for record
of access toaccess to
resources
that are shared
Common software
license
real-time
real-time
manufacturing
alarms and events
warnings
anyand
changes
errors
made to
the
authority Services
for all
components
managementamong
for all FactoryTalk
products
information.
that require action.
generated
by the system.
system.
in the
system. manufacturing
enabled products
(Confidential For Internal Use Only) Copyright 2007 Rockwell Automation, Inc. All rights reserved.
90
FactoryTalk Directory
FactoryTalk Directory
91
FactoryTalk Security
FactoryTalk Security
92
93
(Confidential For Internal Use Only) Copyright 2007 Rockwell Automation, Inc. All rights reserved.
Planning
Security
Networks
Availability
Defining
Installation
Configuration
Integration
Supporting
Diagnostics
94
Computer B
Local
Global / Network
Computer C
Local
Global / Network
Global / Network
RNAServer
RNAServer
RNAServer
RNAClient
RNAClient
RNAClient
95
FactoryTalk Directory
How does it work?
3 Does not have knowledge of
Tag ABC
DS
DS
FTD
5 Caches address
Goes to DS
D for Tag ABC value
HMI
A
C or D
96
FactoryTalk Directory
How does it work?
DS
DS
D
FTD
2 Finds address
HMI
A
97
Agenda
What Are We talking about?
Hardware and Software
Windows Roles and Features
FactoryTalk Configuration
Best Practices
98
99
Questions?
PUBLIC INFORMATION
Thank you!!
4
Copyright 2014 Rockwell Automation, Inc. All Rights Reserved. 106
PUBLIC INFORMATION