Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
*B0750BA* *Z*
B0750BA
Rev Z
November 22, 2016
All rights reserved. No part of this documentation shall be
reproduced, stored in a retrieval system, or transmitted by any means,
electronic, mechanical, photocopying, recording, or otherwise,
without the prior written permission of Schneider Electric. No
copyright or patent liability is assumed with respect to the use of the
information contained herein. Although precautions have been taken
in the preparation of this documentation, the publisher and the author
assume no responsibility for errors or omissions. Neither is any
liability assumed for damages resulting from the use of the
information contained herein.
Trademarks
Schneider Electric, Invensys, Foxboro, Foxboro Evo and I/A Series
are trademarks of Schneider Electric SE, its subsidiaries and affiliates.
All other brand names may be trademarks of their respective owners.
iii
Contents
Before You Begin ...............................................ix
About This Book ................................................................................... ix
Assumption............................................................................................ ix
Revision Information............................................................................. ix
Where to Get More Information............................................................ ix
Related Wonderware Documentation ................................................. x
Foxboro Evo Documentation.............................................................. x
Glossary................................................................................................ xii
Configuration Notes..............................................................................40
Foxboro Evo Control Software Network
Troubleshooting Checklist ....................................................................42
Alarming............................................................................................. 149
Assumption
It is assumed that the user has read and is familiar with the terminology in the
Wonderware FactorySuite A2® Deployment Guide. Much of that information
applies but is not repeated here.
Revision Information
For Revision Z of this document, the following changes were made:
Chapter 6, "Terminal Services and Remote Desktop Services"
• Added a note to “Network Load Balancing for Remote Desktop Protocol
Sessions” on page 106.
System Development
• Appearance Object Editor User’s Guide (B0750AE)
• Bulk Data Editor User’s Guide (B0750AF)
• Common Graphical Editor Features User's Guide (B0750AG)
• Block Configurator User’s Guide (B0750AH)
• Control Database Deployment User’s Guide (B0750AJ)
• PLB Ladder Logic Editor User's Guide (B0750AK)
• Sequence Block HLBL Editor User’s Guide (B0750AL)
Security
• Access Manager User’s Guide (B0750AD)
Field Devices
• Implementing FOUNDATION fieldbus in Foxboro Evo Control Software
Applications (B0750DA) or Implementing FOUNDATION™ fieldbus
User’s Guide for InFusion v1.x (B0750BC) (obsolete - for InFusion v1.x
only)
• Foxboro Field Device Manager and Foxboro Instrument Manager for
PROFIBUS Networks Installation Guide (B0750CK)
• Implementing PROFIBUS™ Networks in Foxboro Evo Control Software
Applications (B0750BE)
• Foxboro Field Device Manager and Foxboro Instrument Manager for
PROFIBUS Networks Installation Guide (B0750CJ)
• Implementing a DeviceNet Network on the Foxboro Evo Automated
Process Control System (B0750CH)
• Foxboro Field Device Manager and Foxboro Instrument Manager for
FOUNDATION fieldbus Installation Guide (B0750CL)
• Using HART Instrumentation for the Foxboro Evo Process Automation
System (B0750CM)
• Field Device Manager for HART Devices Installation Guide (B0750CN)
Printed Manuals
In addition, printed copies of the following documents are shipped with the
Foxboro Evo Control Software media kit:
• Foxboro Evo Control Software Deployment Guide (this document)
(B0750BA)
• Foxboro Evo Control Software Installation Guide (B0750RA)
• The appropriate release notes for your version of the Foxboro Evo Control
Software.
Glossary
Note The Galaxy cannot be named "Galaxy". However, you can use the
word “Galaxy” as part of the name, for example: “MyGalaxy”.
Historian The Historian for the Control Software uses the Wonderware Historian —
formerly known as “IndustrialSQL Server™ Historian” or “InSQL™
Historian”.
HMI Human Machine Interface
IADAS I/A Series® Data Access Server
IDAS InSQL Data Acquisition Service. This is a software application that accepts
data coming from one or more I/O Servers and forwards it to a Wonderware
Historian Server.
IDE ArchestrA Integrated Development Environment
Control Core Services Core software environment, formerly known as “I/A Series software”. A
software workstation which runs this software is known as a “Control Core Services
workstation” or a “workstation”.
Foxboro Evo Control Formerly known as “FCS Configuration Tools”, “InFusion Engineering
Editors Environment”, or “IEE”, these are the Control Software engineering and
configuration tools built on the ArchestrA Integrated Development
Environment (IDE).
Foxboro Evo Control The collection of windows and related configuration files that make up the
HMI HMI as viewed within InTouch® software. Also formerly known as the
“FCS InTouch Application”.
The Foxboro Evo Formerly known as “The Mesh control network”, the Foxboro Evo Control
Control Network Network is a switch network that facilitates communications among the
workstations/servers and control processors.
Foxboro Evo Control Formerly known as “Foxboro Control Software (FCS)” and “InFusion”, a
Software suite of software built on the ArchestrA Integrated Development
Environment (IDE) to operate with the Control Core Services software.
Letterbug A six-character name given to a Foxboro Evo or I/A Series station. In the
case of a workstation or server, it is its computer name.
MX ArchestrA Message Exchange protocol
C H A P T E R 1
General Concepts
Contents
• Overview of Foxboro Evo Control Software Components
• Definition of Objects
• I/A Series Browser
Table 1-1. Comparison of I/A Series and Foxboro Evo Control Software Components
Alarm
Annunciator Alarm Device Int. Security
Provider Provider Object Provider
Field Device Manager
Galaxy Configuring field device
Sync databases (e.g., resource
Service and transducer blocks)
Commissioning field devices
Running DD methods
Diagnosing field devices
History Using diagnostic applications
Alarms Provider from device vendors (DTMs)
and
Events
Wonderware
Historian
Note The Foxboro Evo Control HMI gains a significant performance boost in
processing when run on a workstation or server with the multiple CPU core
feature enabled. It is recommended that, if your Foxboro workstation or server
supports the multiple CPU core feature and you are running the Control HMI
on it, that you enable the multiple CPU core feature. Refer to the Hardware
and Software Specific Instructions included with your workstation or server to
determine if your station supports the multiple CPU core feature.
Definition of Objects
The ArchestrA technology is object-oriented. Objects can represent physical
entities such as pumps and valves or abstractions of concepts such as control
blocks. An object could be as simple as an integer value or as complex as a
plant unit.
Objects are configured using editors that are displayed in the Integrated
Development Environment (IDE). The Control Editors provide a set of editors
pertaining to objects related to Foxboro Evo systems that run in the IDE.
Note Many objects used in the Control Software (such as libraries, strategies,
certain block templates, etc.) are reliant on the Galaxy repository for their
attributes. If network access becomes unavailable to a client that is performing
modifications on these objects, these objects will be unusable and unavailable
for modification until network access to the Galaxy is restored.
PROFIBUS Objects
For information about PROFIBUS, refer to Implementing PROFIBUS™
Networks in Foxboro Evo Control Software Applications (B0750BE).
DEVICENET Objects
For information about DeviceNet, refer to Implementing a DeviceNet Network
on the Foxboro Evo Automated Process Control System (B0750CH).
HART® Objects
For information about HART devices, refer to Using HART Instrumentation
for the Foxboro Evo Process Automation System (B0750CM) and HART
Communication Interface Modules User's Guide (B0400FF).
RedundantDIObject
Refer to Chapter 15, “Foxboro Evo Control Software Support for
RedundantDIObject” on page 179.
C H A P T E R 2
This chapter gives an overview of the sizing and performance of the Foxboro
Evo system components.
Contents
• Minimum System Requirements
• Configuration Guidelines
• Sample Configurations
Notes:
1. All stations that will have SQL Server 2005 software installed on them
must have a DVD reader since the SQL Server 2005 software is only
provided on DVD media.
2. The SMC log file can get large and quickly deplete available hard disk
space. By default, the SMC log file is installed on the C: drive and has a
default maximum size of 5 GB.
Caution It is highly recommended that you move the log file to the D: drive,
and if desired, reduce the maximum size of the log file. Refer to “SMC
Logging Configuration” on page 130 for instructions on how to move the log
file to the D: drive.
3. All stations that will be running Control HMI must have monitors capable
of being set to 1280 x 1024 or 1920 x 1080 screen resolution. This
includes remote client stations accessing a Terminal Server running the
Control HMI.
4. Multiple monitors are supported by the Control HMI.
Extending a Drive
The C: drive must be extended, but to do so, the D: drive must be deleted first.
1. To delete the drive, select the D: drive as shown in Figure 2-3. Right click
on it, and select Delete Volume from the menu.
2. Right click on the Free space partition (which was previously assigned to
D: drive) and select Delete Partition as shown in Figure 2-4. After the
partition has been deleted, the Free space label becomes Unallocated as
shown in Figure 2-5.
3. Once the partition has been deleted, the C: drive can be expanded. Select
the C: drive and right click. Then select Extend Volume as shown in
Figure 2-6.
4. A new window will appear with title Extend Volume Wizard as shown in
Figure 2-7. Click Next.
5. Enter the amount of space by which you would like to expand the C: drive
into the Extend Volume Wizard dialog box. In the example in Figure 2-8,
the C: drive will be expanded by 50000MB, which comes to 48.82GB.
Click Next.
7. After completing the steps above, the C: drive’s new current capacity will
be shown, as seen in Figure 2-10.
2. The New Simple Volume Wizard pop-up window will appear as shown
in Figure 2-12. Click Next.
3. In the editable field, enter the size to be allocated for the new Volume (as
shown in Figure 2-13). If you would like to allocate the entire space to one
drive, enter the maximum value (in this case 324015MB). If you need to
make multiple volumes, enter a value which suits the requirement. Click
Next.
4. Select the 1st radio button Assign the following drive letter. Accept the
default drive letter or choose a different drive letter to identify the partition
(as shown in Figure 2-14), and click Next.
5. In the Format Partition step (as shown in figure 15), do the following.
a. Select the 2nd radio button Format this volume with the following
settings.
b. Select NTFS and Default from the drop downs against File system
and Allocation unit size respectively.
c. In the editable field against Volume label, enter preferred text by
which the drive can be recognized.
d. Select the checkbox against Perform a quick format.
e. Click Next.
Note If the checkbox is not selected for Perform a quick format, it will
take several minutes to format the partition.
6. The details will be displayed in the Completing the New Simple Volume
Wizard page as shown in Figure 2-16. Review the settings and click
Finish to complete the new volume creation.
More
Item Supported/Recommended Information
Control Editors < 150 control blocks per strategy see page 18
Terminal Server Up to 10 remote clients on virtual or see page 20
physical machines without the
multicore feature enabled or 15 remote
clients on physical machines with the
multicore feature enabled, with 50
points updated per second
Wonderware up to 30,000 points per Historian see page 21
Historian collector
Security Provider up to 1000 attributes / second see page 53
Galaxy Sync Service refresh process time 5 to 15 minutes / see page 83
CP
Alarm Provider 2000 alarms / workstation (default see page 129
maximum)
SQL Databases Perform backup at least once per week see page 140
Configuration Guidelines
The following guidelines have been derived from test data and user experience.
They should help users to avoid some pitfalls and to configure successful
systems.
• Import
• Export
• Bulk generate
• Bulk create
• Large deployments (such as an entire controller or equipment unit)
• Validate network (preparing for generating Commit media)
• Refresh History and Security Database.
While any of these operations are in effect, no additional operation from
the above list should be initiated from another IDE client. Normal
keyboard editing operations (such as editing a strategy or block), while
still possible, are adversely affected.
8. When importing SaveAll data, be sure to generate the FBMs and related
hardware items first. Refer to the Bulk Data Editor User’s Guide
(B0750AF) document.
System Configuration
Asset Condition Monitor v1.0 requires Foxboro Evo Control software v6.0.4
or greater.
This optional software must be installed on both Galaxy servers and
engineering client workstations. It is not required on operator or historian
workstations. The software must be installed first on Galaxy server and then
installed on the client workstations. All client workstations running the Asset
Condition Monitor software must be connected to the Control Network.
You may choose to install Condition monitoring support for FOUNDATION
fieldbus or HART or both. The Asset Condition Monitor support for a fieldbus
protocol can be installed only if Field Device Manager v3.1.2 or greater for
that protocol has already been installed on the system. You should be able to
designate a single node in the Galaxy as the backup node for all of your
Condition Monitoring application engines. A sample configuration using ACM
is presented below.
Remote Remote
Desktop Desktop
Client Client
ATS
FCP280 Hosted xCP270 Hosted
by Windows by Solaris 10 Nodebus
WSTA70/WSRV70 AW
(Control Core (I/A Series 8.4.2)
Services v9.0
or later) CP60 CP40B GW
Notes:
1. Solaris workstations on the control network only support the I/A Series
software v8.4.2 at this point. (The workstation software is at 8.4.2 and all
the CP and FBM images are at 8.4.2).
2. You can have v8.3 CPs hosted by v8.3 Solaris workstations and CPs
hosted by Windows workstations on the control network at the same time.
3. Solaris v8.3 workstations can receive alarm messages from CPs running
newer versions of software with no problem.
4. Control Editors running on a Windows station can be used to configure a
Solaris workstation on the control network.
5. Controllers can be configured to be controlled by either Control Editors or
ICC but not both. If the controllers that are hosted by Solaris workstations
on the control network are configured so that they are controlled by ICC,
then ICC can be used on the Solaris workstation. If deployment to
I/A Series software v8.3 controllers is controlled by the Control Editors,
then Control Editors will deploy only those blocks and/or attributes that
are valid for 8.3 (based on the PDEF/OLIST files on the hosting Solaris
workstation). Refer to the section “ICC and InFusion IEE Coexistence” in
InFusion V1.1 Release Notes, Control Edition (B0750RF) for additional
information on configuring controllers to either Control Editors or ICC.
6. The System Manager can monitor Solaris workstations and the stations
they host. The System Manager can also perform change actions on them
(for example, reboot them) assuming that the System Monitor has been
configured with the privilege to perform equipment changes.
7. The System Manager can run on Control workstations while SMDH is
running on Solaris workstations at the same time.
8. If there is at least one Solaris workstation on the control network, a QF
must be installed on all Windows-based workstations, even if the Message
Manager (MM) is not used. For pre-8.4 Windows-based workstations,
apply QF1008884. For 8.4 Windows-based workstations, apply
QF1010022.
9. Even if there are no Solaris workstations on the control network, if
QF1008884 has already been installed on any pre-8.4 Windows-based
workstation, then QF1010022 must be installed on all 8.4 Windows-based
workstations.
10. If a pre-8.4 Windows-based workstation has QF1008884 installed and it is
upgraded to I/A Series software v8.4, then apply QF1010022 after the
upgrade.
Note Refer to the Release Notes and installation procedures included with
your version of I/A Series or Foxboro Evo documentation for more detailed
interoperability information.
Note Enabling multiple processors does not significantly improve the overall
performance of the Galaxy Repository Server. This occurs due to single
threaded design of the Control Software. However, unrelated operating system
and other tasks (for example, the anti-virus scanner) utilize the additional
processors to provide some minor performance gain.
Sample Configurations
These are example configurations that adhere to the guidelines described
above.
• Configuration A (page 33) shows a Foxboro Evo system using the Control
HMI.
• Configuration B (page 34) adds a Terminal Server with remote clients
using Control HMI.
• Configuration C (page 35) shows a Foxboro Evo system using the
FoxView HMI.
• Configuration D (page 36) shows a medium size Foxboro Evo system
having two plant units using a single Galaxy.
• Configuration E (page 37) shows a large Foxboro Evo system with a
separate off-control network1 ArchestrA network on which the Galaxy
server or Wonderware Historian can reside. Since the ArchestrA MX
network traffic is not on the control network, these machines are can be a
high-end multiprocessor server.
• Configuration F (page 38) shows a large Foxboro Evo system with
multiple plant units each having its own Galaxy. The ArchestrA MX
network traffic is not on the control network. The Galaxy server can be a
high-end multiprocessor server.
1. This is a platform that does not have the Foxboro Evo Control Software in-
stalled on it, on a network that connects to the control network.
Notes:
1 The control network typically includes multiple switches but is represented above
as one switch to reduce the complexity of the drawing.
Notes:
1 The control network typically includes multiple switches but is represented above
as one switch to reduce the complexity of the drawing.
2 At least one dedicated workstation needs to be used as a Historian collector.
3 The Wonderware Historian can be installed on one of these servers.
4 The ArchestrA MX network traffic is not on the control network but on this separate network.
5 This can be a either a Galaxy Server or Wonderware Historian. Since no Foxboro Evo software is
installed on it, this machine can be a high-end multi-processor server.
Figure 2-25. Example Configuration E – Large Foxboro Evo System
with Separate Off-Control Network ArchestrA Network
Notes:
1 The control network typically includes multiple switches but is represented above
as one switch to reduce the complexity of the drawing.
2 The ArchestrA MX network traffic is not on the control network but on this separate network.
3 There is no I/A Series/Foxboro Evo software installed on these Galaxy servers. These can be high-end
multi-processor servers.
4 There are no peer-to-peer connections between plant units unless manually configured.
5 There is one CSA for all units.
Foxboro
Evo
Workstation MG3B FD3B AB3B
Galaxy Repository
Windows Server 2008 (Control Editors)
R2 Standard Foxboro Evo
Workstation
(AW70P)
Switch MODE Nodebus
MODE Parameter
Parameter LI
LI
FCP270 w/ ZCP270 Address Translation
200 Series Station (ATS)
FBMs
200 Series
FBMs
Allen-Bradley™ ®
Fieldbus
Ethernet
Tx
Tx
Rx
Rx
FBI10E DCM10E
P0914YM
®
Station (ATS)
Nodebus
Modbus™ Integrator 30 CP40B/
Style B (MG3B) CP60
Operational Status
Fieldbus Tx Rx
Ethernet Tx Rx
100 Series
FBMs
FCM10E
Communication
10 Mbps Coaxial Ethernet to
2 Mbps Fieldbus
FCM10E
P0914YM
FBI10E DCM10E
®
Configuration Notes
While the sample configurations above show Control Editors running on a
different workstation than the operator workstation running either Control
HMI or FoxView software, it is possible to run them on the same workstation.
If your configuration involves putting the Galaxy server on an off-control
network and you do not want the InTouch software installed on that server, you
must create a “custom configuration” when using the Control HMI Installation
DVD. There is not a pre-defined configuration for this type of installation.
The following list provides additional notes on configurations of the systems
with the Control Software.
• The recommended amount of RAM in the client workstations is at least
2 GB.
• The recommended amount of RAM in the servers is 4 GB.
• Off-control network workstations and off-control network servers can
have multiple processors and cores. Workstations and servers that have
I/A Series or Control Core Services software installed on them only use a
single processor (or a single core on a multi-core processor).
• The sample configurations include both AIM* and Wonderware
Historians.
AIM*Historian software can historize both process data and event (alarm)
messages, whereas the Wonderware Historian software historizes the
process data, but event messages are collected through the InTouch Alarm
DB Logger into a separate SQL Server database. You must set up this SQL
database and then manually configure the Alarm Logger to log messages
to it. This SQL database can be on the same station as the Wonderware
Historian database but the Wonderware Historian does not interact with
this SQL database.
One advantage of employing the Wonderware Historian software and
historizing alarm messages in SQL Server is that there are many analysis
tools that can be used with these databases.
In the current implementation, when you are using FoxView software
rather than Control HMI software, you need the AIM*Historian to display
historized alarms in the Alarm Manager’s Alarm History display.
• The System Manager can be used with either choice of HMI, that is,
FoxView or Control HMI software.
• Multiple Galaxies on the same server are not supported.
• Multiple Galaxy repository servers on the SAME network are not
recommended since this can lead to database corruption when there is
version mismatch between Galaxies. Each Galaxy database and each
Galaxy server has versions of files that are distributed to client stations
when objects are deployed. If a client workstation attempts to connect to
different Galaxies that are at different versions (such as can be the case
during an upgrade to a new release), corruption of the Galaxy database
occurs.
• You can have multiple servers if they are totally isolated from one another,
such as depicted in Configuration F. In this case, a given client
workstation can only access one Galaxy server, thereby mitigating the risk
of database corruption. By keeping Galaxies in different plant units
isolated from each other, an upgrade of one Galaxy can occur without
impacting the other Galaxies.
• There is always only one CSA server per the control network. Even if
there are multiple plant units each having a separate Galaxy, there is still
one instance of the control network with one CSA server. If there are peer-
to-peer connections between devices in separate Galaxies, during
configuration operations users will not be able to browse to other Galaxies
for peer-to-peer connection references. These references would have to be
typed manually in C:B.P form.
• For configurations that have multiple Galaxy servers (such as
Configuration F), special consideration must be given to the system
definition process. As described in the “Installation Overview” chapter in
the Foxboro Evo Control Software Installation Guide (B0750RA), it is
recommended that a stand-alone station that has the Control Software
installed on it be used to generate the system configuration for the entire
instance of the control network. This will ensure that all the station IP and
MAC addresses are unique since they will be generated for the whole
instance of the control network. This system definition will include one
and only one CSA server.
From that stand-alone station, two essential outputs must be created:
system Commit media (for installing the I/A Series or Control Core
Services software on the Control Core Services workstations) and an
export file of the hardware objects that will be imported into each of the
Galaxies on the actual system.
After the I/A Series or Control Core Services software is installed on the
workstations in the actual system using the system Commit media
generated above and the Control Software is installed, the procedure
varies from what is in the “Installation Overview” chapter (which was for
a single Galaxy configuration). The next step is to take the exported file
from the stand-alone Galaxy and import it into the other Galaxies. After
importing the hardware objects into each Galaxy, it will be necessary to
delete all the controllers (and contained FCMs, FBMs, and devices) that
are not part of that specific Galaxy (plant unit). It is recommended to have
other types of stations appear in more than one plant unit, but not CPs and
their associated devices. This will ensure that global logical names for
printers, alarm destinations, and so forth are maintained properly.
The control configuration in each Galaxy will be limited to only those
blocks which run on that Galaxy’s controllers and associated devices.
If there is a change in the system configuration at a later date then the
change must be done in the master configuration that contains all stations,
i.e., the one initially created on the stand-alone station. Then, a new
Commit must be generated to do a Day 1 installation on the I/A Series or
Control Core Services stations to update them.
Changes made to existing CPs must also be made manually on the
associated Galaxy since the import operation will not overwrite existing
CPs.
• If employing Terminal Services or Remote Desktop Services for remote
access, it is not recommended to install Terminal Services or Remote
Desktop Services on the same server as the Galaxy server. Each remote
session adds processing and memory load to the server which could result
in unsatisfactory performance of the Galaxy server. To add Terminal
Services or Remote Desktop Services to configurations that have multiple
Galaxies (such as Configuration F), there should be a separate server with
Terminal Services (Windows Server 2003) or Remote Desktop Services
(Windows Server 2008 R2 Standard) on each Galaxy network for which
remote access is required. These servers with Terminal Services or
Remote Desktop Services could then be attached to another network
where the remote workstations are attached.
3. For the off-control network, make sure the switches are configured for
100 Mb, full duplex (no autonegotiation), spanning tree enabled, and flow
control is disabled. As an example, when configuring Enterasys A-Series
switches using the command line interface port, the following commands
are suggested:
set switch stack-port ethernet
(Note: This will reboot the switch.)
set flowcontrol disable
set spantree version rstp
set ip address x.x.x.x mask y.y.y.y
set port duplex fe.1.* full
set port speed fe.1.* 100
set port negotiation fe.1.* disable
show config outfile configs/OffMesh.cfg
4. For the off-control network, make sure the Network Interface Cards
(NICs) are configured to match the switch port to which they are
connected. For example, 100 Mb, full duplex (no autonegotiation),
disabled flow control.
5. If you are running out of network bandwidth, try putting the Galaxy server
on a 1 Gb switch port. This could greatly enhance performance if you have
many workstations accessing the Galaxy at the same time. (If you do this,
remember to configure the Galaxy server NIC that is connected to the
1 Gb port to 1000 Mb.)
6. Make sure the Wonderware Historian redundant path is on its own private
network.
7. For Enterasys A-Series switches, make sure ports 25 and 26 are
configured as uplinks, not stacking. Note that performing a set factory
default from the switch configurator tool will not perform this task. Refer
to The MESH Control Network Operation, and Switch Installation and
Configuration Guide (B0700CA) for information on configuring A-Series
switches.
C H A P T E R 3
Historizing Data
This chapter describes historical data collection in a Foxboro Evo system with
the Control Software.
Contents
• Overview of Historical Data Collection
• Configuring a Historical Data Collector
• Configuring the Wonderware Historian to Collect from I/A Series Data
Access Server
• Additional Information
Redundant Historian
When using the History Collector method of history collection, the Historian
can be configured as part of a Redundant Historian pair. This configuration is
done through the SMC, and is a property of the Historian.
For more information on the use of redundant Historians, refer to Historian
Administration Guide.
Additional Information
The I/A Series History Provider has additional configuration options for
collecting and storing historical data. The Block Configurator User’s Guide
(B0750AH) describes how to specify a parameter to be historized and their
related options. The Access Manager User’s Guide (B0750AD) includes
guidelines and instructions on configuring redundant collectors,
starting/stopping Wonderware Historian and troubleshooting the collecting
workstations.
C H A P T E R 4
Security
Contents
• ArchestrA Security
• Control HMI Security
• I/A Series Security Provider
• Foxboro Evo Security Considerations
• Details of the ArchestrA Security Model
• Sample Procedure for Setting up Security in Foxboro Evo Control
Software
• OS Based Security Configuration for Field Device Manager
• Control HMI Security
• Unity Pro Object Template Security
ArchestrA Security
ArchestrA security includes controlling access to applications and to objects.
The applications include the IDE, used for configuring and managing objects
in the Galaxy, and the SMC, which is used for performing maintenance and
system administration.
ArchestrA security controls access to the objects that are configured through
the ArchestrA IDE, such as control compounds and other ArchestrA objects
stored in the Galaxy. Every object in the Galaxy belongs to a “security group.”
Access is controlled through the concept of “roles” which have security groups
assigned to them.
The following authentication modes are available in the IDE:
• None (ArchestrA security is turned off)
• Galaxy
• OS User based
• OS Group based
FCS v4.0 and the Control Software v5.0 or later support all security
authentication modes whereas versions prior to FCS v4.0 only support the
Galaxy Authentication.
Security groups and roles are also created and configured using the IDE.
ArchestrA objects are assigned to user-configured security groups. Security
groups are then assigned to one or more roles. Each user is assigned one or
more roles. All users with a given role have access to the objects within the
security groups assigned to that role.
These security settings are in effect regardless of the ArchestrA application
interface. They are in effect when modifying run-time parameters through the
Live Data display, when making changes to control data within Control HMI,
or when using the Object Viewer to modify ArchestrA object data.
This security does not apply when accessing non-Galaxy objects. For example,
it does not include defining access to menu items within Control HMI software
or access to fields in the Control HMI Alarm Panel. However, Control HMI
software provides a security model that ties such access to ArchestrA role-
based security.
menu picks are available for each role. At run time, Control HMI software
determines the role of a user based on their ArchestrA profile and then
determines if the menu pick has been configured to be enabled or disabled for
that role.
The Framer configuration software is invoked from the WindowMaker™
application software by selecting InFusion View Framer > Open from either
the Application Explorer or from the Special menu on the top menu bar. The
first time it starts up, the Framer configuration software comes up with
Security disabled.
Terminal Server:
Follow the same procedure for the console session of a terminal server. How to
enable/disable the taskbar for Windows Terminal Server clients can be found
in Chapter 6, “Terminal Services and Remote Desktop Services”.
Security Groups
Every object in the Galaxy belongs to only one security group. You can create
and manage security groups that make sense for your organization. These
security groups are mapped to roles on the Roles page. Each security group can
be mapped to multiple roles.
Permissions determine what kind of access users have for each attribute or
parameter. There are four basic operational permissions:
• Acknowledge alarms
• Change the value of attributes with security mode Configure
• Change the value of attributes with security mode Operate; this also
includes security modes Secured Write and Verified Write
• Change the value of attributes with security mode Tune
By default, all currently used objects are assigned to a security group called
Default.
By default, a user who been assigned the “Default” security role has
permission to:
• Acknowledge alarms
• Change attribute values with “configure” security mode
• Change attribute values with “operate” security mode, including “secured
write” and “verified write”
• Change attribute values with “tune” security mode.
For example, you want users in certain roles to only have permission to modify
“Operate” parameters. Users cannot modify parameters that have been
categorized as “Tune” or “Configure” parameters. These users can only modify
“Operate” parameters from compounds that have been assigned to Area1. They
can modify parameters from Area2.
1. Create two Security Groups, for example, SecGrpArea1 and
SecGrpArea2.
2. Assign all compounds that are contained in Area1 to the SecGrpArea1.
Assign all compounds contained in Area2 to the SecGrpArea2 Security
Group.
3. On the Roles page, create a role, for example, OperateArea1. In the
Operational Permissions for the security group SecGrpAreas1, select the
Can modify Operate attributes checkbox. Do not check any Operational
Permissions for the SecGrpArea2 security group.
Any user that belongs to the OperateArea1 role can modify “Operate”
parameters at runtime. Users in this role cannot modify parameters that have
been configured as “Configure” or “Tune”, nor can they modify any
parameters in compounds that have been assigned to the SecGrpArea2 security
group. Following is an example of this configuration.
Users
All users that access ArchestrA data must first be configured within the Galaxy
Repository.
Two users are defined by default when a new Galaxy is created: Administrator
and DefaultUser. These cannot be deleted in an open security setting and they
are both associated with the default roles, Administrator and Default.
Roles
You can create and manage user roles that apply to your organization’s
processes and work-based authorities. Two roles are defined by default:
Administrator and Default.
Note Several of the roles that appear in Figure 4-1 are for FDM only.
You can specify General and Operational Permissions for each role.
General permissions relate to application configuration and administration
tasks.
Operational permissions relate to the security groups listed on the Security
Groups page. By default, the Administrator has all permissions.
Note You cannot modify the General permissions for the role of
Administrator.
Note All users are automatically assigned to the Default role in addition to
any new roles you create and assign to them. The best way to manage
permissions is to limit the permissions of the Default role to those permissions
you want everyone to have. Then, add users to other roles with permissions for
other parts of Industrial Application Server.
The Administrator user can log on any authentication mode except when
security is disabled. When logged on as Administrator on the Galaxy
Repository node, you can change the password of any Galaxy user without
providing the old password.
You can assign users to more than one role.
To assign a role to a user:
1. On the Galaxy menu, click Configure, and then click Security. The
Configure Security dialog box appears. Click the Users tab.
2. Select the user in the Authorized Users available area. Select a role in the
Associated Roles for <user name> area.
3. Provide each user with a password by clicking Change Password. The
Change Password dialog box appears.
1. For more information on groups and roles, see the section titled “Working with Security” in
the Wonderware® Industrial Application Server User’s Guide.
5. Select the Security Groups tab and create the security groups by clicking
the “+” button. The “X” button is used to delete a group. You cannot delete
the Default group.
7. Select the Roles tab and create roles using the “+” button (e.g., manager,
operator, OperateArea1, tuner, configurator) and assign permissions to
each role. Permissions are actions like being able to start the IDE, deploy,
acknowledge alarms, and modify certain attributes (such as configure,
operate, tune).
8. Select the Users tab and create users, providing user names and
passwords.
Note Passwords for users can be blank. However, with a blank password,
the password cannot be changed with the InTouch software’s “change
password” interface. You need to enter the current password before
entering a new one and the dialog box does not accept blanks for the
current password.
9. Assign roles to users by checking the appropriate Roles from the list.
10. Close the IDE.
11. Invoke the WindowMaker application. From either the Application
Explorer or from the Special top menu bar menu, select Framer > Open
to invoke the Framer. Refer to Framer and Alarm Management User’s
Guide (B0750AR) for more information.
12. Add the ArchestrA roles configured in the IDE to the Permissions by
right-clicking on Permissions and selecting New. Then, for each role,
check the appropriate property boxes in the right pane. By default, the
Default role is given permission to access all functions, except some
administrative privileges on remote terminal server clients. As with
configuring security in the Control Editors, the Default role should be
modified to define permissions that everyone should have. Then,
configure additional Roles with increased permissions as needed.
13. Under Properties in the left pane, select Configuration. Check the box in
the Default column next to the ArchestraSecurity property.
Warning The same account, user name and password must be used on each
computer that requires communication with others in the ArchestrA
environment. Failure to follow this requirement will result in system
communication failures.
Table 4-1. FDT Groups that are Available on PDC in a Secure Setup
FDT Groups
fdtadministrator
fdtplanningEngineer
fdtmaintenance
fdtoperator
fdtobserver
After the Users are configured, security is configured in the Control Software.
3. Select OS Group Based security option in the Authentication Mode tab
of Configure Security dialog box in the Control Software.
4. Add FDT groups in the Roles Tab of Configure Security dialog box.
The FDT groups are added by selecting the + button and domain\group
from a drop down list.
Note The user should manually add all the required groups. For example, user
should add both fdtadministrator and fdtplanningEngineer groups to
provide FDT Administrative privileges and Planning Engineer FDT role. It is
not enough to add only one of the roles.
5. User should login with a user account which is a member of the FDT
groups.
The Users tab provides information about the Roles associated with the
domain\user as shown in Figure 4-12.
In the above example, the user login as FDTEng1. After logging in,
IASERIES\fdtadministrator, IASERIES\fdtplanningEngineer, and
IASERIES\fdtoperator are automatically selected as associated Roles in the
Users tab. This is mapped to FDT Planning Engineer role which gives full
privileges for working with Field Device Manager.
Note If the user login account belongs to a group that is not a FDT group, the
FDT role is defaulted to Observer with minimal privileges.
Note The Unity Pro Object is able to support the import of up to 10,000 tags
per XVM file. Any additional tags will be ignored. For more information on
the Unity Pro object template, refer to Unity Pro Object Template User’s Guide
(B0750DB).
Note You need to manage Windows® user names and passwords per your
organization's defined policies, irrespective of the configuration you choose to
implement.
When you install the Foxboro Control Software v6.1, the UPO template is
installed along with File Watcher Service (FWS), which is installed to run as a
Windows service. However, it is not configured to run by default.
If you need to monitor changes made to the XVM files, you have to configure
the File Watcher Service using the Control Software Configurator application
first. For more information on how to configure the File Watcher as a Windows
service, refer to Control Software v6.1 Release Notes (B0750SJ). Once
configured, you can monitor the imported XVM files round the clock for
changes made to them.
You must provide the FWS special access privileges for monitoring the XVM
files. For more information on how to create an ACL to define credentials for
users and provide access privileges, refer to Modicon Controllers Platform
Cyber Security Reference Manual.
Note The FWS requires its own ArchestrA license wherever it is run. As an
alternative the IDE File Watcher does not require an additional license but has
less availability.
The FWS monitors changes to the referenced XVM files from the UPO in the
Galaxy, and updates the status of the UPO while ArchestrA is not running. A
modified warning is displayed when the FWS detects a change in the imported
XVM files that will disrupt the Modbus-DCS block configuration.
You will also be able to view log entries for changes made to the XVM file in
the ArchestrA System Management Console (SMC) log. The Import XVM
File button is enabled at this point. Once you reimport the updated XVM file,
the warning is resolved. You can then regenerate the configuration and deploy
it.
There are four configuration options:
• Secure Installation by Default
• One Internal User with File Watcher Service
• Separate Users for PLC and CS in a Single System with File Watcher
Service
• Separate Users for PLC and CS in Separate Systems with File Watcher
Service
These are some additional security guidelines for the system hosting the
ArchestrA IDE:
• You should periodically review the ArchestrA SMC log for unauthorized
usage.
• You should ensure that the FWS username and password should be of
adequate strength and must be updated using the FWS configurator before
it expires.
Figure 4-15. Separate Users for PLC and CS in a Single System with
File Watcher Service
These are some additional security guidelines for the system hosting the
ArchestrA IDE:
• You should periodically review the SMC log for unexpected changes to
the XVM files.
• You need to regularly back up the ArchestrA Galaxy at a frequency
defined by your organization.
• You should ensure that the FWS username and password should be of
adequate strength and must be updated using the FWS configurator before
it expires.
Figure 4-16. Separate Users for PLC and CS in Separate Systems with
File Watcher Service
The following are some additional security guidelines for the system hosting
the ArchestrA IDE:
• You must ensure that the PLC engineer (external user) must be given least
privilege, with access to only that share within the domain of the CS
system. For more information, see “File Share Configuration for PLC
Configuration Files” on page 76.
• You must ensure that the PLC engineer (external user) must be
authenticated with secure credentials and access permissions. This
prevents impersonation of the PLC engineer and any subsequent
tampering with the Control system through an import of malicious XVM
files. For more information, see “File Share Configuration for PLC
Configuration Files” on page 76.
• You need to regularly back up the ArchestrA Galaxy at a frequency
defined by your organization.
• You must ensure that the FWS username and password should be of
adequate strength and must be updated using the FWS configurator before
it expires. This mitigates the risk of elevation of privilege provided for the
external user.
• The Control System administrator must regularly review the SMC log for
unauthorized usage. This includes verification of the modified XVM files
or if the UPO has been imported or exported. This prevents the risk of
repudiation of changes made to the Control System through XVM files.
Note The frequency of checking the SMC system logs is directly proportional
to the number of users and criticality of the process involved.
!
Warning Failure to adhere to these guidelines puts the configuration of the
CS system at considerable risk of being tampered with.
For more information about the Unity Pro Object Template, refer to Unity Pro
Object Template User's Guide (B0750DB).
Windows 2008
Sharing the Folder
You can share a folder on a Windows Server 2008 R2 computer, administrators
must follow the steps given as below:
1. Log on to the Windows Server 2008 R2 computer using an administrator
account.
2. Right-click the folder you want to share and click Properties.
3. In the Properties dialog box click Advanced Sharing under the Share tab.
4. In the Advanced Sharing dialog box, select the Share this folder check
box. In the Settings area, type a custom share name in the Share name
box, and click Permissions to change the default permissions for users.
5. In the Permissions dialog box, click Remove to remove any default users
or groups (Everyone). Click Add to add the PLC Engineer and the CS
Engineer as users.
6. Once the users have been added, select the relevant user and provide
read/write privileges by selecting the Change or Read check boxes listed
in the Permissions for <user name> area.
T
h
e
P
L
C
e
E
Note The PLC engineer must not be given any other permissions or privileges
within the system except for write access to that secure folder. The CS engineer
will be provided with read access only. For more information, see “Unity Pro
Object Template Security” on page 71.
Windows 7
Sharing the Folder
Follow the steps listed below to create a shared folder in Windows 7:
1. From the taksbar, click Start > Run > type shrpubw.exe > click OK to
start the Create A Shared Folder Wizard. by Run dialog box and then
typing in the resulting window. You can also type shrpubw in the Search
box and press Enter to invoke the wizard.
2. Click Next on the Welcome screen and the Create a Shared Folder
Wizard dialog box appears. do not change the default Computer name as
it might cause a conflict with the names defined by your system. Select the
folder you want to share, verify the folder path and click Next.
3. Provide a share name in the Share name box and a description (optional).
You can also change which files and programs will be accessible offline.
• Click Change beside the Offline setting field. The Offline Settings
window appears.
5. You will have to set different user permissions for different sets of users
(the PLC engineer has write access to the share while the CS engineer only
has read access). Select the Customize permissions option and then click
Custom to define the custom permissions .
Note The PLC engineer must not be given any other permissions or privileges
within the system except for write access to that secure folder. The CS engineer
will be provided with read access only. For more information, see “Unity Pro
Object Template Security” on page 71.
2. Select the drive from the Drive list and then select the folder you want to
connect to. Since you are creating a network map, provide the share path
name created in Step 3 under Sharing the Folder on page 78.
Example: <machine Name>\share Name or <\\IPaddress>\share name
3. Select the Reconnect at logon check box and click Finish.
Note If you can't connect to a network drive or folder, the computer you're
trying to connect to might be turned off or you may not have the right user.
Contact your network administrator for assistance.
C H A P T E R 5
This chapter describes the Galaxy Sync Service. The Galaxy Sync Service
collects configuration data during deployment from the Control Editors and
distributes it to history and security clients on the network. For more detailed
information about the Galaxy Sync Service, refer to Access Manager User’s
Guide (B0750AD).
Contents
• Software Components
• Galaxy Sync Service Operation
• Refreshing the History and Security Database
• Galaxy Sync Service Utility
Software Components
The Galaxy Sync Service is installed on the Galaxy Repository server and set
to start up automatically when the system boots. The COM interop component
and associated DLLs are installed on the clients where the I/A Series Security
and/or I/A Series History Provider objects are deployed. These objects connect
to the Galaxy Sync Service.
Note The refresh process is NOT intended for casual use. Rather, it is
designed for use after a system has been initially configured (that is, near the
end of system commissioning) or substantially re-configured (that is, during a
shutdown or maintenance period). It may also be used after a catastrophic
failure has occurred that caused a database to be corrupted or similar problem.
Note The Control Editors are not able to perform deploy, undeploy, or edit
actions while the refresh process is in progress. Users must avoid using
DirectAccess or Galaxy Sync Utility on any workstation in the Galaxy during
the refresh process.
The refresh operation process has two stages, the first involves populating the
security/history database with the latest deployed information, and the second
involves transmitting the new data to the clients.
The time of these operations is dependent upon the number of CPs and other
objects deployed in the Galaxy. It could take several minutes to complete the
first phase. The security information is transmitted at a rate of 60,000 tags per
minute, and history tags are be transmitted 18,000 tags per minute to the
clients.
When the History information is refreshed, the second stage causes a gap in
history collection if done on a running system, because points are not
historized until the History collector object (or IASeriesHistory object)
receives the refreshed set of tags, subscribes them with OM, and registers the
tags in the designated Wonderware Historian Server. Security is retained with
the old values that last deployed until refresh operation is completed.
Refresh Procedure
The refresh operation may be performed for either:
• Security database only
• History database only
• History and Security databases simultaneously in one operation
Proceed as follows to perform the refresh operation:
1. Login as a user with Administrator privileges.
2. Check in all templates and instances.
Note All the Control Software templates and instances should be checked-in
before the refresh operation is started.
Figure 5-1. User Does Not Have Administrator Priviledges Dialog Box
Note If any templates or instance is checked out before the operation, the
following message will be displayed to indicate all objects should be in
checked-in state:
9. Click Yes to initiate the Refresh process. All buttons are grayed-out and
status messages are displayed in the status listbox.
Note If more than one ArchestrA IDE is open when attempting a Refresh
operation, the following dialog box will be displayed.
Figure 5-5. More Than One ArchestrA IDE Session Dialog Box
10. When the first stage of the Refresh process is successfully completed, the
Refresh Successful dialog box is displayed.
Client workstations start receiving the history and security data as soon as the
refresh operation is complete.
Note The Galaxy database will be locked briefly while the refresh operation
is in progress. During this period, users are prevented from opening another
session of ArchestrA IDE that connects to this Galaxy.
Note For any reason, if the refresh operation is terminated or IDE is closed
before a successful completion, the refresh operation MUST BE re-run.
Otherwise, client workstations will not receive the updated security/history
data.
C H A P T E R 6
This chapter describes Terminal Services and Remote Desktop Services, which
allow applications to be run from remote client workstations.
Contents
• Overview of Terminal Services and Remote Desktop Services
• Terminal Services and Remote Desktop Services for InTouch Software
• Network Load Balancing for Remote Desktop Protocol Sessions
Platforms that are used to display Control HMI windows must have monitors
capable of 1280 x 1024 or 1920 x 1080 screen resolution. This includes the
Terminal Server and any remote client stations that log into that server.
Note Regardless of the applications that are used by the remote client, refer to
the “(Windows Server 2003 Only) Remove Control HMI Startup Shortcut from
“All Users” Startup Directory” on page 91 and follow the instructions for
removing Control HMI from automatically starting up on a remote login. This
must be done prior to any remote logins to the terminal server.
Note For the secure installation, move the “InFusionView” shortcut file to the
Plant Engineer's user group startup directory, similar to the shortcut file in the
“Fox” startup directory.
Note For the secured install do not create local groups. Use the Plant
Engineers group for setting up Terminal Services and Remote Desktop
Services permissions instead of local groups.
2. In the navigation pane located in the left side of the window, under Local
Users and Groups, right-click the Groups folder.
3. Click New Group.
4. Add the three recommended local groups (WW_Admins, WW_Users,
and WW_Users_RC). For each group, fill in the Group Name field and
click Create.
5. When done, close the New Group dialog box and close the Computer
Management window.
After the groups have been created, the next step is to configure the connection
security for these groups. The tool that you use to manage connection settings
and security is the Terminal Services and Remote Desktop Services
Configuration program.
Note When configuring security, make sure that you set the security for
each of the connection names that exist. Setting the security for one
connection name does not automatically set the security for all connection
names.
6. Add the three recommended groups mentioned earlier, assigning them the
following permissions:
Group Permissions
WW_Admins Full Control
WW_Users User Access
WW_Users_RC Special Access (User Access + Remote Control)
Plant_Eng Full control
7. Click OK.
The RDP-Tcp Properties Permissions tab should look similar to this:
Note Make sure each user account has a non-blank password and is a
member of the Power Users and Remote Desktop Users groups.
Note The following steps are not needed for secured installations. The user
accounts are managed on the Primary Domain Controller.
Note If a user requires access to the IDE or SMC from the remote
terminal, that user must also be a member of the Administrators group on
the Terminal Server. If the Galaxy Repository server is separate from the
Terminal Server, then mirrored user accounts need to be created on the
Galaxy Repository server and be members of the Administrators group as
well.
5. Click the Profile tab to activate the Profile property sheet. Configure the
profile for each user as shown here:
Logon script: ia_user.bat
Note Do not follow the steps listed in the Wonderware document Terminal
Services for InTouch Deployment Guide for starting InTouch software
automatically. Do one of the following instead.
Note The “Program file name” in the following dialog box is case
sensitive. Be sure to type the file name as “infusionviewLogon.cmd”.
Start in:
%USERPROFILE%\Local Settings
Note The Network Load Balancing feature is supported only in systems with
Security Enhanced Control Core Services.
C H A P T E R 7
The managed Control HMI is an ArchestrA template that is derived from the
InTouchViewApp Object. Managed InTouchViewApp objects are InTouch
applications that are managed and maintained through the ArchestrA IDE.
This chapter describes the general maintenance and interfaces with the
managed Control HMI application. For detailed information about building the
HMI using ArchestrA Graphics, refer to Window Construction User's Guide
(B0750AS).
Contents
• Managed Control HMI Application Maintenance
• Managed Control HMI Application Deployment and Runtime
• Managed Control HMI Application in Remote Desktop Sessions
• Backup of Managed Control HMI Application
6. Exit the WindowMaker to check in the changes made to the Control HMI.
Note Launching WindowViewer for the first time requires the Control HMI
to be compiled. This may take five to ten minutes to complete.
Note The work folder copies are created in the User's folder located on the C:
drive. Make sure that the C: drive partition on terminal servers have sufficient
space for all user work folder copies.
Each remote user needs to log into the Terminal Server and select the Control
HMI Application to start at log in.
1. Log into the Server.
2. Start the InTouch Application Manager.
3. Select the managed Control HMI application.
4. Start the WindowViewer.
The application is copied and compiled the first time the remote user logs in
and selects the managed application. For detailed instructions, refer to
Foxboro Evo Control Software Installation Guide (B0750RA).
C H A P T E R 8
InTouch Access Anywhere provides remote access to the Foxboro Evo Control
HMI InTouch application from any HTML5 compatible web browser. This
interface uses Remote Desktop technology to render the desktop in an HTML5
client. Any browser that supports HTML5 can be used as the client.
Contents
• Overview and Architecture
• Licensing
• Installation of the InTouch Access Anywhere Server
The user initiates the process by directing the browser to the start page hosted
on the web server (http://<machinename>:8080/). The Start.html page is
displayed in the web browser using HTTP/HTTPS.
1. The browser opens a WebSocket connection to the InTouch Access
Anywhere Server, which is running on the RDP host itself.
a. If the optional InTouch Access Anywhere Secure Gateway is used,
the InTouch Access Anywhere Server browser session will connect
through it.
2. The InTouch Access Anywhere Server translates the WebSocket
communication to and from RDP, thus establishing a connection from the
browser to the RDP host itself.
3. The browser then displays the content of the remote application.
Licensing
InTouch Access Anywhere is licensed for use only with the Control HMI
InTouch WindowViewer application. Licensing is only through the InTouch
TSE Concurrent license.
C H A P T E R 9
InTouch 10.x software supports multiple monitor systems that use the default
multi-desktop video mode. This allows a single application with a resolution of
1280x1024 or 1920x1080 to be viewed on any multi-monitor workstation
without recompiling every time a change is made to the application. This also
does not require any special video drivers.
Note For setting up multiple monitors with InFusion View 1.x, refer to
Appendix A, “Multi Monitor Setup for InFusion View 1.x”.
Note This setting has no effect on workstations with a single monitor. The
MultiScreen setting needs to be set to 0 to run the Control Editors on a single
monitor of a multi-monitor station.
C H A P T E R 1 0
This chapter describes considerations for configuring and installing the Control
Software applications.
Contents
• Foxboro Evo Control and Host Workstation Upgrade Considerations
• Foxboro Evo Control Software Support for I/A Series Software v8.4.x-
v8.8, and Control Core Services Software v9.0 or Later Configurations
• Stand-alone Configuration
• Backing up the Galaxy
• Migrating Configuration Data from Existing I/A Series or Foxboro Evo
Systems
• I/A Series Alarm Provider
• Alarm Logging Configuration
• Changing Date and Time
The deployment process can only use the initiating workstation or the CP host.
For example, if deploying from an off-control network workstation (no
I/A Series software installed), the target CP’s host must be a Control
workstation. Or, if deploying from a Control station that is also on the
I/A Series, the CP host workstation does not need to be a Control workstation.
Therefore, in Figure 10-1 above, deployment to CP #1 is not supported from
the Galaxy, WS #4 and WS #5 as neither the CP host nor the deploying
workstations have both the Control Software and I/A Series software installed.
Also, no terminal service clients to WS #5 can deploy to CP #1.
Deployment operations to CP #2 are supported from all Control workstations
in Figure 10-1 above, as this CP is hosted by WS#3, which has both the
Control Software and I/A Series software installed.
Control Configuration
The deployment process validates the block type and parameter set prior to
sending control data to the CP. In order to avoid deployment warnings or errors
relating to CP versions, only configure parameters, parameter values and block
types that are supported by the target CP.
Each CP host machine has a Parameter Definition File (PDEF) installed as part
of the I/A Series or Control Core Services software installation process. The
PDEF contains block parameter information specific to the I/A Series or
Control Core Services version installed on the CP host. Using the PDEF on the
CP host, the Control Software deployment process will only deploy supported
block types and supported parameters to the CP. But, the deployment process
cannot validate if the valid range of the parameter has changed, for example, if
the parameter has been changed from a Boolean to an Integer. If an invalid
parameter is deployed to the CP, the deployment will proceed without any
warnings, but the CP may not operate as expected.
System Configuration
System configuration of the workstations with I/A Series software v8.4.x-v8.8
and Control Core Services software is supported via the current Control
Software. Creating Commit media and the reconcile process is supported for
I/A Series or Control Core Services installations with mixed versions as
detailed in Figure 10-1 on page 124.
Bulk Generation
The Control Bulk Generation processing uses an internal Control PDEF. The
integrated Control PDEF’s revision is the latest supported version. The Control
Software v5.0 release supports I/A Series software v8.7-v8.8, and Control
Core Services software v9.0; therefore the PDEF used during Export SaveAll
and Import SaveAll is Control Core Services software v9.0.
Generating the control database from the Bulk Generation Object uses the
integrated Control PDEF during its operation. Therefore, when bulk generating
configuration information targeted for CPs, whose image is not the version
supported by the internal Control PDEF, only use the block/parameter set that
is supported by the target CP image.
Export SaveAll
The Control export process uses the internal PDEF to determine the SaveAll’s
content. This export should never be used to perform a LoadAll on previous
releases of I/A Series software. The I/A Series/Control Core Services ICC
LoadAll process cannot process the block and parameter set generated by a
newer I/A Series/Control Core Services version.
Stand-alone Configuration
Loading and configuring large databases can place a heavy CPU load on the
Galaxy Repository server. During such operations, other users of the Galaxy
will experience delays or be prevented from doing other operations such as
bulk generation, import/export, or deployment. Therefore, prior to
commissioning, it is recommended that as much configuration as possible be
performed using a stand-alone platform. The predefined “Stand-Alone
Configuration Station” provided by the Control Software installation program
can be installed on any laptop or desktop running the Windows XP operating
system for this purpose.
Prior to performing stand-alone configuration activities, however, is it highly
recommended that the network topology be defined in a central Galaxy
Repository and distributed to the Galaxies on other stand-alone platforms. This
would involve configuring such things as equipment units, controllers,
workstations, and FBMs, and establishing the correct hosting relationships, etc.
Once that was completed, the Galaxy could be backed up, and used to “seed”
the other Galaxies on the stand-alone platforms. This gives the control
engineers a common base from which to start their control configuration
activities without worrying about conflicting letterbugs, TCP/IP addresses, etc.
when merging data later on. The “backup” and “restore” functions are
provided by the System Management Console (SMC). Refer to Chapter 11,
"Backing Up and Restoring Data" for detailed procedures. Note that the restore
operation completely replaces the Galaxy Repository database, so make sure
there is nothing you need to save in the existing Galaxy before doing a restore.
Once the Galaxies on individual stand-alone platforms have been created in the
manner described above, the control engineers may now perform their normal
control configuration activities, i.e., creating compounds, strategies, and
blocks. When control configuration has been completed, each engineer may
then export their control objects that were created on their stand-alone
platform, and import those same objects into the central Galaxy Repository.
(Refer to Chapter 11, "Backing Up and Restoring Data" for detailed
procedures.) The only thing remaining would then be to perform any control
configuration activities needed to tie the control objects together that were
generated on separate stand-alone platforms, if necessary.
If you configure the “HLBL Library Object” in the Import Bulk Data Wizard
as $HLBL_Library, this line will be converted to:
#include “$HLBL_Library\usr\fox\source\includes\myfile.h”
After Bulk Generate, when the block is compiled, the compiler will look in the
$HLBL_Library object for the included source.
Figure 10-2. Opening the Configure Dialog Box from the Log
3. When the Configure dialog box opens, click the Storage tab as shown in
Figure 10-3.
4. Make sure Enable Logging is selected, and change the Store log
messages in this path field to the D:\SMCLog path, as shown in
Figure 10-3.
5. If desired, change the value in the Limit the total diskspace used for
storing log message to field. Enter a value in MB. (The default at
installation is 5000 MB. The following figure shows a smaller maximum
size of 3000 MB, or approximately 3 GB.)
Note When changing time in Master Timekeeper, be sure the time is the same
on all servers and clients, and then restart the systems affected by the time
change.
C H A P T E R 1 1
Contents
• Data to Back Up and Restore
• Galaxy Data
• Backing Up a Galaxy
• Backing Up a Condition Monitor Database with ACM Installed
• Restoring a Galaxy from a Backup
• Restoring a Condition Monitor Database with ACM Installed
• Exporting Selected Objects
• Importing Selected Objects into a Galaxy
• Importing Script Function Libraries
• After You Import
• Backing Up the SQL Server Databases
• Backing Up History Data
• Restoring History Data
• Backing Up the Alarm Message Database
• Control HMI and Data
Galaxy Data
There are several ways to save data from a Galaxy and it is important to
understand the differences and implications of these features. First of all, some
features are available in the ArchestrA IDE window and some are available in
the System Management Console (SMC) window. The following table
summarizes this.
Import > Automation Object(s) IDE Imports objects from .aqPKG, .aaPKG and .aaPDF
files.
Import > Galaxy Load IDE Imports data from a Galaxy Dump (.csv) file.
Backing Up a Galaxy
Periodically, you should back up your Galaxy. Backing up your Galaxy helps if
you have a computer failure or other problem. If there is a failure, you can
restore your Galaxy from the backup.
Use the Galaxy Database Manager to back up and restore your Galaxy. The
Galaxy Database Manager is part of the suite of ArchestrA System
3. Read the warning message. Note that no write operations are allowed to
the Galaxy Repository while the backup process occurs. If write activity is
occurring, you should back up at a later time. Click Yes to continue
backing up and No to terminate the backup function. If you click Yes,
continue with the next step.
4. Enter the path and filename (.cab extension) of the backup file you want to
create. Either type the path and filename or use the browse button to
explore for a file and/or location.
5. When the backup function is finished, click OK.
Note Restoring a Galaxy in this manner will overwrite the entire Galaxy
by that name. Do not perform this operation unless you intend to restore the
Galaxy to a previous state. All changes made to objects in that Galaxy since the
backup was performed will be overwritten.
objects, only the related security information for the specific object is
exported.
To export selected automation objects:
1. Invoke the IDE.
2. Highlight an instance of an object (or multiple objects using the Ctrl or
Shift key) in the Deployment View.
3. From the Galaxy menu, select Export, then select either Automation
Object(s)… or All Automation Objects. An alternative method is to
right-click on an instance and select Automation Object from its menu.
Then, select a location and provide a name for the file. These operations
produce a file with a “.aqPKG” extension.
4. In the Export dialog box, browse to a path and type a name for the
exported file.
5. Click Save. The file is saved with the specified name and extension.
6. When the export is complete, click Close. Now you can import the saved
file into another existing Galaxy.
Note If you import a new version of an existing instance, the new version is
marked as requiring deployment if the existing object is already deployed.
7. If you do not have a backup destination defined, click Add to add a new
destination. The Select Backup Destination dialog box appears.
8. Select to back up to either a file or device:
• File name – Type or browse to a path for the location of the backup
file. Be sure that you have enough free disk space to store the backup.
• Backup device – Select an existing backup device or select <New
Backup Device>. The Backup Device Properties dialog box appears.
In the File name box, type a name for the device. As you type the
name, the path for the backup is modified. Verify that the path for the
backup is correct. When you are done, click OK to create the backup
device.
9. Click OK to close the Select Backup Destination dialog box.
10. The newly created backup device now appears in the Destination window
of the SQL Server Backup dialog box. Select the new backup device.
11. Click OK to perform the backup.
You can configure various options for database backups, such as an expiration
date for a backup. You can also schedule automatic backups.
For a complete description of database backup and restoration using SQL
Server Management Studio, including scheduling recommendations and
transaction log backup, see your SQL Server Management Studio
documentation.
C H A P T E R 1 2
Contents
• General Considerations
• System Configuration Using System Definition
• System Configuration Using the Foxboro Evo Control Software
• Runtime Security Considerations/Operations
• Historization
• Alarming
General Considerations
Consider the following:
• Issue: Connecting to different Galaxies from a client workstation.
Connecting to different Galaxies installs the Control Editors software on
the machine multiple times. This can complicate upgrades and
uninstallations and should be avoided.
Control Editors clients are prohibited from connecting to Galaxies of a
different version of the Control Software. But your site's policies should
be expanded to restrict the workstation to only connect to the Galaxy from
which its platform was created and deployed.
• Issue: Compound naming conflicts.
Naming conflicts are not detected or prevented across Galaxies. The CSA
subsystem will prevent duplicate names during deployment, but
Compound names should be chosen carefully to anticipate this issue.
Selecting a prefix, per Galaxy, for compound names will alleviate this
issue.
• Issue: Template naming conflicts.
Naming conflicts are not detected or prevented across Galaxies. If
instances of templates will be used for import/export operations across
Galaxies, the templates may or may not get imported. If the template's
instance will be imported into other Galaxies where there are duplicate
template names, the instance import may fail. Selecting a prefix for all
templates, per Galaxy, will alleviate this issue.
Note If your system has any hardware that the Control Software does not
support, you must use SysDef software to configure this unsupported
hardware; for example, configuring the TCP/IP and FTMAC addresses for this
hardware. This is an issue with multi-Galaxy systems since resource allocation
configuration and maintenance is more difficult on these systems.
Historization
Historian information being collected on multiple collecting workstations can
be routed to a central Historian. Configuring the History Application object to
reference the central Historian may require the Central Historian's IP address if
the Historian is off-platform (not on the control network).
This is required due to a network name resolution issue. If the workstation’s
“host” files are configured with the Historian’s IP address/Netname, the
netname can be used. If not, the IP address must be used.
Alarming
There are no issues with Alarm configuration as long as the workstations being
used are bulk generated or the workstations being used as alarm destinations
are present in the Galaxy (via BulkGen, for example). If the workstations used
for Alarm destinations are not present, the user may manually enter this value.
In order to simplify the Alarm destination process, the user may create
Compound templates. The alarm destinations can be configured at the template
level and propagated to the instances. This is especially helpful if workstations
are manually entered.
C H A P T E R 1 3
Direct Access provides a facility to create a command file that contains all the
Direct Access instructions to recreate selected object(s). This facility can be
used, with some user intervention, to make updates to these objects after they
have been recreated in a remote Galaxy Repository. This chapter provides
procedures and examples of this process.
Contents
• Overview
• Running Direct Access
• Exporting to a Command File
• Added Control Blocks, Declarations
• Deleted I/A Blocks, Declarations
• I/A Block Parameter Changes
• Nested Strategies
• Validating the Update
• For More Information
Overview
The general philosophy for the procedures is as follows:
• A Primary Galaxy maintains all templates, which is where they are
managed and edited. The Primary Galaxy owns the templates.
• One or more Satellite Galaxies contain the distributed and updated
templates. These Satellite Galaxies can create instances of these templates,
but updates are to be distributed from the Primary Galaxy.
• The first distribution of the templates to Satellite Galaxies is done via
Export > Automation Object from within the Control Editors Galaxy
menu.
Fields Description
UserName Login name of the user, if security is enabled
Password User password if security is enabled
Buttons Description
File Name of the file containing Direct Access
commands to be executed. Click
to browse for the file.
Execute Processes the commands in the selected file.
Close Closes the dialog.
There is also a command line version of Direct Access called
DirectAccess_Cmd.exe that can be used in batch files.
Refer to the Scripting with Direct Access User’s Guide
(B0750BM) for details.
The general format for a Direct Access command file is as follows:
<?xml version="1.0" encoding="utf-8"?>
<DirectAccess>
<Command attribute1="value1" attribute2="value2" />
<Command attribute1="value1" attribute2="value2" />
<Command attribute1="value1" attribute2="value2" />
</DirectAccess>
The steps to execute a DirectAccess script are:
1. Execute DirectAccess.exe.
2. From the Direct Access dialog, select or enter the node hosting the
Galaxy.
3. Select the Galaxy.
4. Enter UserName/Password if Security is enabled for this Galaxy.
5. Select the Script to run by invoking the file browser.
6. Click Execute.
The strategy being exported for this sample is shown in Figure 13-3:
Figure 13-4 is an edited sample of the type of output you will get from
executing the script in Figure 13-2. This shows a partial content of what would
be in the file Stratgy_001.xml.
In Figure 13-5 you can see the differences between the newly exported
template from the Primary Galaxy (left) and the original export from the
Satellite Galaxy (right).
Lines 4-5,13-14,19-20,23-24 represent two added blocks and two added I/O
declarations. Lines 29,33 show the new blocks added to the overall execution
order.
To make the Direct Access script for execution in Satellite Galaxies, extract the
lines from the export file that represent the new additions and extract the entire
execution order command set.
This command file can now be run in every Satellite Galaxy to update the
template with the new configuration from the Primary Galaxy.
In Figure 13-7 you can see the differences between the newly exported
template from the Primary Galaxy (left) and the original export from the
Satellite Galaxy (right).
The first thing you should notice is that this is the mirror image of the situation
when blocks and declarations were added to the strategy template. This time
the Satellite Galaxy has the extra Create commands.
Lines 4-5,13-14,19-20,23-24 represent two blocks and two I/O declarations to
be removed. Lines 29,33 show the blocks still in the execution order.
To make the Direct Access script for execution in Satellite Galaxies, extract the
Create lines from the export file that represent the blocks and declarations to be
removed. In this case, you do not need to extract the Update commands or the
Execution Order commands because you will be deleting these components.
Figure 13-8 shows what was extracted.
This command file can now be run in every Satellite Galaxy to update the
template with the new configuration from the Primary Galaxy.
In Figure 13-10 you can see the differences between the newly exported
template from the Primary Galaxy (left) and the original export from the
Satellite Galaxy (right).
To make the Direct Access script for execution in Satellite Galaxies, extract the
lines from the export file that represent the modifications as shown in
Figure 13-11.
This command file can now be run in every Satellite Galaxy to update the
template with the new configuration from the Primary Galaxy.
Nested Strategies
Adding or deleting nested strategies is done in a similar way to adding or
deleting blocks. The command files in Figure 13-12 show the differences that
one would expect to see after a nested strategy is deleted in the Primary
Galaxy.
In Figure 13-12 you can see the differences between the newly exported
template from the Primary Galaxy (left) and the original export from the
Satellite Galaxy (right). The commands to create the nested strategy no longer
exist in the command file from the Primary Galaxy. So, here you must perform
the same type of edits you did for deleted blocks.
To make the Direct Access script for execution in Satellite Galaxies, extract the
Create line only for the strategy. In this case, you do not need to extract the
Update commands or the Execution Order commands or the block Create
You can now convert the Create command to a Delete command. Converting
nested strategies requires updating the strategy name to include the full path to
the nested template. This means including its parent template name as shown
in Figure 13-14.
This command file can now be run in every Satellite Galaxy to update the
template with the new configuration from the Primary Galaxy. Note that any
delete commands will fail if instances of blocks that are to be deleted are
deployed.
C H A P T E R 1 4
This chapter will discuss how the Multiple Galaxy feature can be used with
systems with the Control Software. It will discuss what the issues are and how
to mitigate them. Before using the Multiple Galaxy Communications feature, it
is highly recommended that the “Working with Multiple Galaxies” section, of
the Industrial Application Server User’s Guide, provided as part of the
Wonderware documentation, be fully read and understood.
Contents
• Overview
• Supported Multiple Galaxy Topologies
• Off-Control Network
• How to Pair Galaxies
• Procedure for Pairing Galaxies
• Deployment of ArchestrA Services
• Pairing Off-Control Network Galaxies
• Pairing On-Control Network Galaxies
Overview
ArchestrA System Platform allows multiple Galaxies to be connected or
paired. With paired Galaxies, objects in one Galaxy can be configured to
connect to objects in another Galaxy. IO values deployed in one Galaxy can be
viewed and written to from the runtime environment in the other paired
Galaxy.
This chapter generally discusses how to pair two Galaxies. It is possible to pair
more than two Galaxies, but for communications to work between all galaxies,
each galaxy must be paired with all other galaxies as shown in the following
examples. In Figure 14-1, objects in Galaxy 2 can communicate with objects in
Galaxy 1and 3 but objects in Galaxy 1 cannot communicate with objects in
Galaxy 3.
Users must also pair Galaxy 1 and 3 together to provide connectivity between
them, as shown in Figure 14-2.
The multiple Galaxy environment uses three tiers of discovery services that
enable connectivity and data exchange between paired Galaxies (Refer to
Figure 14-3.)
Station data requests are passed from the local station server to its Local
Galaxy Server. The Local Galaxy Server then passes the request to the remote
Galaxy through the Cross Galaxy Server.
Off-Control Network
There are many possible scenarios for connecting multiple Galaxies together.
This section describes connecting a non-Control ArchestrA Galaxy with a
Control Galaxy. The setup in both Galaxies is the same but there are some
constraints for the Control Galaxy.
Key Points:
• All Station platforms in both Galaxies are deployed to the same secondary
off-control network.
• Local Galaxy and Cross Galaxy servers must be deployed to off-control
network workstations.
The GR Node is typically a station without Control Core Services software in
an off-control network configuration. It can be used as a Local and Cross
Figure 14-5 shows an off-control network Control Galaxy connected with one
off-control network GR and two Foxboro Evo client workstations.
2. Identify which stations will host the Local and cross-Galaxy services
based on the following rules:
• The Local Galaxy Server can be any station without Control Core
Services software in the local Galaxy.
• The Cross Galaxy Server can be any station without Control Core
Services software from either paired Galaxy.
Keeping these rules in mind, you can see that in Figure 12-6 Galaxy 1 has
enough to support the Local and Cross Galaxy Servers without using the
GR Node, and that Galaxy 2 needs an extra station to support a redundant
Local Galaxy Server or to avoid using the GR Node. Figure 12-7 shows a
suggested layout for hosting Local and Cross Galaxy Services on stations
without Control Core Services software for this example.
Note There can only be one Cross Galaxy Server in a Multiple Galaxy
Environment. Make sure the Cross Galaxy Server settings are the same on all
pairings.
Note Both Galaxies must have Multi-Galaxy Pairing enabled and a remote
connection passphrase must be configured.
Note Galaxies can be paired when all previous steps are complete.
c. Select the Nodes tab and click on the plus icon in the toolbar.
d. Add the workstation IDs (refer to "Figure 14-13. Galaxy 1 non-GR
Nodes Added" on page 175).
g. On the left pane, right-click the new service instance and select
Check-out.
h. Change the Port ID to avoid port conflicts. Refer to Figure 14-15.
i. Check the node where the service will be deployed in the assignment
pane. Refer to “Configuring ArchestrA Service TCP Ports” in the
Industrial Application Server User’s Guide, provided as part of the
Wonderware documentation and to Figure 14-15.
Figure 14-17. Two Foxboro Evo Control Software Galaxies on the same
I/A Series/Foxboro Evo Instance of The Foxboro Evo
Control Network
C H A P T E R 1 5
For the Control Software v5.0 and later, the IASeriesIntegrator Device
Integration (DI) object implements support for RedundantDIObject.
RedundantDIObject is a standard ArchestrA object located in the Template
Toolbox under the Device Integration toolset. It provides support for accessing
data through redundant data sources, and monitors and controls the redundant
IASeriesIntegrator DI object at the object level. Only one IASeriesIntegrator
provides control processor data through the RedundantDIObject at a time. The
RedundantDIObject determines which IASeriesIntegrator is active at any
given time. More details on RedundantDIObject can be found in the Industrial
Application Server User’s Guide, provided as part of the Wonderware
documentation.
By default, Control Software creates one DI Object based on the
$IASeriesIntegrator template. This can be used as a Primary DI object. To
create and configure a secondary DI Object:
1. Create an instance from $IASeriesIntegrator, for example: SecondaryDI
2. Configure the SecondaryDI object with the same parameter settings as the
existing DI (primary DI) object
a. Open the editor for the Primary DI Object.
b. Open the editor for the SecondaryDI object.
c. For each attribute listed in the Primary DI Object, review and
configure the same value in the SecondaryDI Object.
d. Save and Close the SecondaryDI Object with the configured settings.
3. Configure the Redundant DI object's primary and backup DI objects by
pointing to the respective DI instances.
Figure 15-1 shows an example of a configuration that uses a
RedundantDIObject to acquire data from a Foxboro Evo system. From the
Template Toolbox, an instance of the RedundantDIObject was created, and
given a name consistent with the Control DI object naming convention:
AWSE00_IADI. This object will be deployed to the platform on workstation
AWSE00. In Figure 15-1, the AWSE10 and AWSE11 platforms have
respectively AWSE10_IADI, and AWSE11_IADI IASeriesIntegrator DI
objects.
C H A P T E R 1 6
Triconex Integration
This chapter gives an overview of the components that comprise the Triconex
Foxboro Evo Process Automation System integration.
Contents
• Overview
• Triconex TSAA Device Integration Object (TSAA DI Object)
• Unified Foxboro Evo System Triconex Configuration
• Triconex Safety Configuration Data
• Importing Triconex Safety Configuration Data
• Triconex Foxboro Evo System Unified Configuration Network
Diagram
Overview
The following components comprise the Triconex Foxboro Evo System
integration. These components provide an integrated approach to configuring
the Control logic, HMI, and Historian tags.
The Safety Template provides a linkage between the Triconex TriStation
configuration and the Foxboro Evo System configuration. The Safety Template
initiates the TriStation editing of the safety configuration and processes the
resulting aliased tags for Foxboro Evo System integration. The Control Editors
Bulk Data Object supports direct import of the Safety Template's aliased safety
tag information into the Control Editors. This alleviates the duplication of
aliased safety tag data entry in both the TriStation and the Foxboro Evo
System.
The TSAA Device Integration (DI) Object provides TriStation aliased tag data
directly to the Control HMI and the Wonderware Historian, without the need to
pass this tag data through the Control Processor. This pathway reduces the
need for the Foxboro Evo System to process safety data.
The System Manager can directly invoke the Triconex® Enhanced Diagnostic
Monitor (EnDM). EnDM is a software program for monitoring the hardware,
communication, and application status of Tricon™, Trident™, and Triconex
General Purpose (Tri-GP) controllers. When selecting a FDSI FBM in System
Manager, the EnDM menu item is available when EnDM is installed.
The object reads the TriStation’s Safety configuration data to populate its list
of tags that will be made available to the HMI or historized. The graphic below
depicts the TSAA DI object that has been configured to process the tags listed
in the graphic.
In order for the Foxboro Evo System system to communicate with the safety
system via FDSI (FBM232/FBM233), the ECBs, Compounds, Strategies, and
Blocks need to be configured properly. Each safety station requires at least one
FDSI and one ECB201 to be configured for communication and one control
block per tag to be configured to get/set data.
This safety data, combined with internal and user-defined formulas, allows the
user to create Bulk Data entries for the FDSIs, Devices, Compounds,
Strategies, and Blocks needed for the Triconex safety system to interact with
the Foxboro Evo System.
Once the entries are made in the Bulk Data object as the result of the import,
they can be Bulk Generated to create the Foxboro Evo System configuration.
object. The ability to launch Triconex EnDM directly from System Manager
requires the following minimum software versions:
• System Manager 2.5
• Triconex EnDM 2.8.0
If the above minimum software versions are met for System Manager and
Triconex EnDM, then System Manager will display a Triconex Enhanced
Diagnostic Monitor menu pick as part of the Equipment Change actions of an
ECB201 under a FBM232/233 configured for TSAA FDSI Driver.
C H A P T E R 1 7
This chapter gives an overview of the components that comprise the Unity Pro
Foxboro Evo Process Automation System integration.
Contents
• Overview
• Unified Control System Unity Pro Configuration
• Unity Pro Configuration Data
• Importing Unity Pro Configuration Data
Overview
The following components comprise the Unity Pro Foxboro Evo Control
System integration. These components provide an integrated approach to
configuring the Control logic, HMI, and Historian tags. See "Figure 17-1.
Unity Pro Deployment - Basic Overview" on page 192 for a basic overview.
The Unity Pro Template provides a link between the Modicon PLC
configuration and the Control System configuration. The Unity Pro Object
Template initiates the extraction of the PLC configuration files and processes
the resulting aliased tags from the extracted data for Control System
integration. The Control Editors Bulk Data Object supports direct import of the
Unity Pro Object Template's aliased tag information into the Control Editors.
This reduces the likelihood of errors that may occur during manual
configuration.
C H A P T E R 1 8
Contents
• Condition Monitor Runtime Application Objects
• Changing Passwords for User Accounts for SQL Replication
• Configuring Device Condition Severity Mapping
• Asset Condition Monitor Uninstallation
• Backing Up Condition Monitor Databases
You must configure replication from the Configurator on the Galaxy Server
and provide the new password to clear the error messages.
Severity (NAMUR
category) Value
FAILURE 201
FUNCTION_CHECK 202
OUT_OF_SPECIFICATI 203
ON
MAINTENANCE 204
NORMAL 205
Monitor for the fieldbus protocol. If Runtime Application objects are not
undeployed before uninstalling condition monitor, the deployed objects will
continue to execute with old device condition configuration and the following
error message will be logged in SMC every 24 hours:
"Asset Condition Monitor is not installed on <workstationname>."
Asset Condition Monitor must be uninstalled on all client workstations before
uninstalling on the Galaxy Server.
Asset Condition Monitor must be uninstalled before uninstalling Field Device
Manager.
Post-Restore Operations
In the SQL Management Studio:
1. Start SQL Agent by right-clicking on SQL Agent and clicking Start. This
should start all the jobs under SQL Agent.
2. Perform the following steps to reinitialize all publications and
subscriptions:
a. Navigate to [Machine Name] > Replication > Local publications.
b. Right-click on each publication and click “Reinitialize All
Subscriptions”.
c. The Reinitialize Subscriptions dialog box will appear. Check the box
for “Generate the new snapshot now”.
d. Click Mark for Reinitialization.
The data in IAMSClientDB is now synchronized with IAMSMasterDB.
Note The following error will appear under the current SQL log and
Windows Event Viewer after restoring the IAMSMasterDB if the data is not
replicated to IAMSClientDB:
In Archestra IDE
It is necessary to perform the below mentioned post restore operations from
IDE in order to synchronise the condition monitor runtime application objects
with the IAMSMasterDB.
1. If new areas were created after the Galaxy backup was made and
assignment of devices was done to these areas, the restore will result in
some orphan alarms being generated by the devices under this area in
Control HMI. To clean up alarms generated from these orphan
areas/runtime application objects, it is necessary to undeploy the AppAM
application engine hosting the areas/application objects and redeploy from
IDE. This will result in removal of all orphan runtime application objects
running under the engine.
2. If new devices were added under existing areas/new device condition
monitoring configuration was done after the backup was made, they will
not be removed after Galaxy restore. To synchronize the devices under the
area, you must undeploy the application objects and redeploy from IDE.
This will result in all alarms from orphan conditions/devices to RTN and
bring the entire system synchronized.
A P P E N D I X A
InFusion v2.x and later versions of the Control Software support multiple
monitors with default OS multi-desktop settings. These systems do not require
the desktop to be in the SPANNED or STRETCHED mode. These systems will
use the existing video drivers that come installed on the workstations and do
not require additional drivers to be installed. Additional drivers are required,
however, for InFusion 1.x system configurations. Refer to the following tables
for more details:
Table A-1. InFusion 2.x, FCS v3.x-v4.x, and Foxboro Evo Control
Software v5.0 or Later
Contents
• Multi Monitor Setup for InFusion View 1.x Overview
• Installing the Multi-Monitor Driver on Windows XP Workstations
• Installing the Multi-Monitor Driver on Windows Server 2003 Servers
4. When the program starts up, click I accept… and then select Next.
6. The graphics driver installation program starts up. Select Next on the
NVIDIA Windows XP Display Drivers dialog box.
12. Select the monitor that is to be the first monitor in the multi-monitor
configuration. Click Next.
13. Select Span for the NVIDIA Display Mode. Click Next.
16. If I/A Series or Control Core Services software is running, the following
dialog box appears. Click No.
Note If this driver is not installed and the card has been installed on the
workstation as a single head, the Galaxy Preparation utility will fail unless the
card is removed.
If the multi-monitor graphics card is being installed for the first time, follow
the installation instructions in the Hardware and Software Specific Instructions
for Model P91 (B0700CQ) document that accompanied the server hardware
before performing the following procedure.
Perform the following steps to install the multi-monitor driver on a
Windows Server 2003 server which will have the Control Software installed on
it.
1. Exit from the I/A Series, if it is running.
2. If the I/A Series software is running, turn it off using the Fox applet in the
Control Panel.
3. If a Matrox® display driver is already installed, uninstall it using the
Add/Remove applet in the Control Panel.
4. Reboot if you have turned off I/A Series/Control Core Services software
or uninstalled a display driver.
5. The required Matrox driver is located on the Control Software installation
media. However, when the media is placed in the CD drive, the Control
Software installation program will automatically start up. Cancel out of
this program.
6. With the Control Software installation media in the CD drive, start
Windows Explorer and navigate to the Drivers directory. Double-click on
the file vxp2K_204_00_179_se_u.exe to run the self-extracting graphics
driver installation program.
The following window appears:
15. Select Use advanced Matrox display controls and Stretched mode and
2x1 for the desktop to span two horizontal monitors (or 1x2 for two
vertical monitors). Also, be sure to change the Color palette to 16-bit
color. Click OK. The desktop should be spanned across the two monitors
and the following window will appear.
18. Click the Advanced button. Select the Troubleshoot tab and move the
Hardware acceleration slider all the way to “Full” as shown here:
19. If the I/A Series software has been turned off, turn it back on using the Fox
applet in the Control Panel.
20. Reboot the workstation (using Ctrl-Alt-Del).
21. When the Control Editors start, the following dialog box will be displayed.
Click Yes. The Control HMI will be recompiled against the new screen
resolution.