FactoryTalk VantagePoint - Rockwell Automation Knowledgebase

FactoryTalk VantagePoint - Rockwell Automation Knowledgebase
FactoryTalk VantagePoint® Design Considerations
FactoryTalk VantagePoint v3.1
Best practices for designing and
implementing FactoryTalk VantagePoint
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
This page left intentionally blank.
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 2 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
Table of Contents
FactoryTalk VantagePoint® Design Considerations ............................................................................................. 1
Introduction ............................................................................................................................................................... 5
Using this Document ............................................................................................................................................ 5
Product Version Information ............................................................................................................................... 5
Document Naming Conventions/Abbreviations................................................................................................. 5
Prerequisite Reading............................................................................................................................................. 6
Document Revision History................................................................................................................................. 6
What’s New in FactoryTalk VantagePoint V3.1? .............................................................................................. 6
Known Issues ........................................................................................................................................................ 6
Introduction to FactoryTalk VantagePoint.............................................................................................................. 7
Architectural Considerations.................................................................................................................................... 7
Selecting the Correct VantagePoint Version ...................................................................................................... 8
FactoryTalk VantagePoint Licensing .................................................................................................................. 8
FactoryTalk VantagePoint Secuirty .................................................................................................................. 11
Reference Architectures ..................................................................................................................................... 12
Reference Station Architectures ........................................................................................................................ 15
Recommended Platform Requirements................................................................................................................. 16
Installing a New Operating System on Computers .......................................................................................... 16
Operating System Tips ....................................................................................................................................... 16
Windows Error Reporting .................................................................................................................................. 17
Internet Information Server (IIS) ....................................................................................................................... 17
Network Configuration........................................................................................................................................... 17
WAN/Wireless Communications ...................................................................................................................... 17
Firewall Communications .................................................................................................................................. 17
Workgroup vs. Domain .......................................................................................................................................... 17
Domain Best Practices............................................................................................................................................ 18
Windows Support Tools..................................................................................................................................... 19
Upgrading from Incuity EMI ................................................................................................................................. 19
Software Installation ............................................................................................................................................... 20
Installation on Drives Other Than C: ................................................................................................................ 20
FactoryTalk Directory ........................................................................................................................................ 20
Default File Locations for FactoryTalk VantagePoint ..................................................................................... 21
Post Installation Activities ..................................................................................................................................... 21
Post Release Patches .......................................................................................................................................... 21
Licensing ............................................................................................................................................................. 21
MSSQL Server Licensing .................................................................................................................................. 22
Installing FactoryTalk VantagePoint Clients .................................................................................................... 22
Backing up and Restoring FactoryTalk VantagePoint ......................................................................................... 23
Maintaining FactoryTalk VantagePoint Log Files ............................................................................................... 23
Using FactoryTalk VantagePoint Sample Content............................................................................................... 23
VantagePoint Compatibility ................................................................................................................................... 23
Controller Compatibility .................................................................................................................................... 23
Excel Compatibility ............................................................................................................................................ 23
FactoryTalk Historian SE Redundancy Support .............................................................................................. 24
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 3 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
Using FactoryTalk VantagePoint to Store Tags ................................................................................................... 24
System Redundancy ............................................................................................................................................... 24
System Security ...................................................................................................................................................... 24
Windows Terminal Services .................................................................................................................................. 25
Time Synchronization ............................................................................................................................................ 25
Troubleshooting ...................................................................................................................................................... 26
Tools and Utilities................................................................................................................................................... 26
Additional Reference Links ................................................................................................................................... 27
General ................................................................................................................................................................ 27
Communications ................................................................................................................................................. 27
Design Considerations and Best Practices ........................................................................................................ 27
Microsoft ............................................................................................................................................................. 27
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 4 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
Introduction
This document is a supplement to the FactoryTalk® VantagePoint documentation that is installed with the
software. It is designed to make system developers aware of the fundamental best-practice guidelines for
designing and implementing a FactoryTalk VantagePoint application.
If you are unfamiliar with the Integrated Architecture, FactoryTalk Services Platform, or FactoryTalk
VantagePoint, reference the following Product Profiles and websites prior to reading this document:
FactoryTalk Services Platform and Integrated Architecture:
• FactoryTalk Services Platform Product Profile
• http://www.rockwellautomation.com/rockwellsoftware/factorytalk/integrated.html
FactoryTalk VantagePoint:
• FactoryTalk VantagePoint Product Profile
• http://www.rockwellautomation.com/rockwellsoftware/performance/vantagepoint/ (Includes ordering
information)
• Answer ID 61808 - FactoryTalk VantagePoint Frequently Asked Questions
Using this Document
This document is intended to be a starting point and reference guide for the design of FactoryTalk
VantagePoint systems. It is designed to make system designers and developers aware of the fundamental
best practice guidelines of FactoryTalk VantagePoint systems.
Product Version Information
This document covers both versions of FactoryTalk VantagePoint: FactoryTalk VantagePoint and
FactoryTalk VantagePoint EMI. The differences between these versions are discussed in the section in this
document on Selecting the Correct VantagePoint Version.
While most sections is this document apply to both versions of FactoryTalk VanatagePoint, some sections
will apply only to FactoryTalk VantagePoint EMI. The sections which only apply to FactoryTalk
VantagePoint EMI will be clearly labeled as ‘FactoryTalk VantagePoint EMI Only’.
Document Naming Conventions/Abbreviations
Throughout the document the terms FactoryTalk VantagePoint and VantagePoint will be used. Unless
otherwise specified, these terms will apply to both FactoryTalk VantagePoint and FactoryTalk VantagePoint
EMI versions.
Frequently throughout this document, the user will be directed to more information in the form of Answer
IDs (AIDs). These are technical papers created by Rockwell Automation and posted on the Rockwell
Automation Knowledgebase, accessible here: http://www.rockwellautomation.com/knowledgebase. Some
AIDs are available to the public, however access to certain AIDs (with a padlock icon) require the elevated
status of a TechConnect contract. For additional information on obtaining a TechConnect contract, contact
your Rockwell Automation sales representative.
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 5 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
Prerequisite Reading
The following VantagePoint related document is included with the product and should be considered
prerequisite reading for this document:
•
The FactoryTalk VantagePoint Getting Results Guide provided with the VantagePoint installation
materials. See www.Incuity.com for updated information.
Additionally, the FactoryTalk VanagePoint Help content located by browsing to Start  All Programs 
Rockwell Software  FactoryTalk VantagePoint  Help on the VantagePoint Server is a comprehensive
resource for VantagePoint information and procedures.
Document Revision History
•
•
•
•
•
Revision 1.0 (7/2009): Initial release for v3.0
Revision 1.1 (8/2009): Update for v3.0.2.
Revision 2.0 (9/2009): Update for v3.1
Revision 3.1 (11/2009): Update for v3.1
Revision 3.1.5 (03/2011): Update for 3.1.5
What’s New in FactoryTalk VantagePoint V3.1?
•
•
•
•
•
•
•
•
•
•
•
VantagePoint EMI - FactoryTalk VantagePoint 3.1 is a release of both VantagePoint and
VantagePoint EMI. The installations of these two products are identical and the licensing determines
which features are enabled.
Installation - VantagePoint and VantagePoint EMI share the same install. The DVD also now
includes installation files for MS SQL 2005, RSLinx Enterprise, and the Dashboard builder
Trend Title - The Trend tool now supports a mode where the currently selected tag is the trend
heading.
Excel Add-In Function Wizard - Excel Add-In Function has a new Database Query wizard to
facilitate the use of Linked Queries.
Upgrade - Users can upgrade from VantagePoinit v3.0 and v3.0.2 to v3.1.
FactoryTalk Historian Connector - VantagePoint now includes a standalone connector capable of
connecting to multiple FactoryTalk Historian instances in multiple FactoryTalk directories.
Historian Tags - Boolean and Discrete FactoryTalk Live Data tags are correctly correlated with
FactoryTalk Historian digital tags
Importing Unknown Types (LiveData, OPC-DA & OPC-HAD) - If VantagePoint cannot
determine the type of tag while importing, it creates an XML file that contains a list of tags with
unknown types. The XML file can be updated and imported.
Instance Packages - Users can not import Instance Packages without performing an IISReset.
Internet Explorer 8.0 - Internet Explorer 8.0 is now supported
Sample Content - New and imporoved Sample Content
Known Issues
Known issues in this release can be found in the document “KnownIssues.htm” provided with the
FactoryTalk VantagePoint installation.
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 6 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
Introduction to FactoryTalk VantagePoint
FactoryTalk VantagePoint provides unified access to virtually all manufacturing/plant data sources, and
produces web-based reports, such as dashboards, trends, X-Y plots, Microsoft® Excel reports and more that
can be used by manufacturing operators, engineers, supervisors, management and executives throughout a
plant — to manage cost, quality, production, assets and resources more effectively.
A typical VantagePoint system consists of the following hardware and software components:
Architectural Considerations
A typical FactoryTalk VantagePoint system consists of several Windows-based computers and various
Programmable Automation Controllers interconnected via one or more networks. To insure proper operation
for VantagePoint, these ‘foundation’ components of the system must be operating properly:
•
•
When using live data communication, the Programmable Automation Controllers must be properly
programmed and configured for efficient communications. For example: the processor’s
communications time slice may need to be increased.
The network(s) must be robust and free of communications errors and bottlenecks. For example, the
ports on switches and the network interface cards on computers should typically be changed from
‘Auto Detect’ to a fixed setting.
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 7 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
•
The computers must be configured appropriately for the application. For example, power saving
features on servers should typically be disabled. Firewalls may need to be turned off, or configured
with exceptions.
For additional information on these topics, refer to Ethernet Design Considerations for Control System
Networks.
Selecting the Correct VantagePoint Version
VantagePoint comes in two versions -VantagePoint and VantagePoint EMI. VantagePoint (non-EMI) allows
users to connect to live data sources through the OPCDA and FactoryTalk LiveData connectors.
Connectivity to process historians can be made through the OPCHDA connector or using specific connectors
for the FactoryTalk Historian, Wonderware's Industrial SQL Server, OSI PI and GE Proficy.
VantagePoint EMI allows users to connect to all of the same data sources above, but also adds the ability to
connect to Database servers such as MS SQL Server and Oracle. Connectivity to other OLEDB and ODBC
data sources are also possible through VantagePoint EMI.
FactoryTalk
VantagePoint
FactoryTalk VantagePoint
EMI
FactoryTalk Live Data
Yes
Yes
FactoryTalk Historian
Wonderware Industrial SQL
Server
OSI PI
Yes
Yes
Yes
Yes
Yes
Yes
GE Proficy
Yes
Yes
OPCHDA Connector
Yes
Yes
MSSQL Database Server
No
Yes
Oracle
No
Yes
OLEDB Data Sources
No
Yes
ODBC Data Sources
No
Yes
Named User Limit
25
Unlimited
Concurrent User Limit
5
Unlimited
Incuity Tag Storage Limit
50
Unlimited
Calculated Tag Storage Limit
50
Unlimited
Note: Connections to non-FactoryTalk Data Sources may require additional licensing.
FactoryTalk VantagePoint Licensing
FactoryTalk VantagePoint is licensed based on the number of users. There are two types of users:
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 8 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
•
Named Users: Named User Licenses are licenses which are explicitly assigned to a Windows User.
Once assigned, the Windows user will ‘own’ that license unless the named user is manually removed
by a VantagePoint Administrator. A Named User will always be able to access the FactoryTalk
VantagePoint system from a single client location. If Named Users attempt to login to multiple
clients simultationsly they will be denied access to the system.
If named user licenses are not assigned while setting up a VantagePoint system, the first time a user
connects they will automatically be assigned a named user license. If all named user licenses are
being used, that user will be unable to connect to VantagePoint. Once a named user is assigned, it
does not expire and onlyVantagePoint administrators can add or remove named users.
•
Concurrent Users: Concurrent User licensing allows users who are not Named Users to access the
system. A Windows user who accesses the system and is not a Named User will automatically use a
Concurrent User license (if all Named Users licenses are already taken). When the Windows user
logs off the system, the Concurrent License will be released. If a Windows user is not a Named User
and no Concurrent User licences are available, the user will not be able to log in to the system.
Named Users are typically used to ensure that an individual is able to access the system at any time. Setting
up Named Users during initial system implementation is highly recommended.
Licenses can be added together (i.e. (2) 5 named user licenses on the same server would allow 10 named
users). For licensing information, see FactoryTalk VantagePoint Ordering Information.
Portal Authentication Process
VantagePoint
Portal
Opened
Is the user a known
Windows User to the
VantagePoint server?
No
Prompt for
Credentials
Yes
Are the credentials
Valid?
No
Deny Login
Access
Yes
Login to
Portal
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 9 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
Trend or Manager Authentication Process
Trend or
Manager
Opened
Is the user a known
Windows User to the
VantagePoint server?
No
Prompt for
Credentials
Yes
Are the credentials
Valid?
Deny Login
Access
No
Yes
Is the User a
Named User?
No
Is there a
Named User
License
Available?
Yes
No
Yes
Yes
No
Login to
Trend or
Manager
Yes
Deny Login
Access
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
No
Note: Inactive
Concurrent Users will
be logged out after
20 minutes
Assign
Concurrent User
license to
Windows User
Assign Named
User license
to Windows
User
Is the Named
User logged into
another PC?
Is there a
Concurrent
User License
Available?
Page 10 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
FactoryTalk VantagePoint Secuirty
It is important to understand how FactoryTalk VantagePoint security is implemented when designing a
VantagePoint system. FactoryTalk VantagePoint uses FactoryTalk security for accessing the FactoryTalk
Directory for FactoryTalk Historian SE Data or FactoryTalk Live Data. FactoryTalk security is not used for
handling user security for FactoryTalk VantagePoint at this time; all user security requests are handled by the
FactoryTalk VantagePoint server. User security settings are administered in the FactoryTalk VantagePoint
Manager.
Role Based Security
FactoryTalk VantagePoint uses role-based security which allows access rights to be assigned to system users
based on the roles they would play within the system. VantagePoint implements a role-based security system
assuming Windows authentication of users/groups (using either Domain or Local Windows security).
VantagePoint comes with 6 pre-configured Roles. During the VantagePoint install any user assigned to the
Windows Administrator group, Windows Power User group, or Windows User group for Domain or Local
accounts will be added to the corresponding VantagePoint Role.
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 11 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
Reference Architectures
The number of computers needed in a FactoryTalk VantagePoint system is dependent on the number of users
that will be connecting to FactoryTalk VantagePoint. The following reference architectures provide
examples of a small, medium, and large VantagePoint system. Additionally, an example architecture which
incorporates FactoryTalk Historian SE and FactoryTalk View SE has also been provided.
•
•
For small systems it is permissible to co-locate FactoryTalk VantagePoint and the database server on
the same computer
A Windows Workgroup environment is supported for small configurations. For more information
see Workgroup vs. Domain
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 12 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
•
FactoryTalk VantagePoint should be installed on a server separate from the database server if there
will be more than 10 users or more than 100 total tags
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 13 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
•
FactoryTalk VantagePoint should be installed on a server separate from the FactoryTalk Data server
if there will be more than 20 total users or more than 1000 total tags (VantagePoint EMI Only)
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 14 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
Installing the FactoryTalk VantagePoint server on a dedicated server separate from other Rockwell Software
Products is highly recommended.
Reference Station Architectures
The products listed below can be located on the same server as FactoryTalk VanatagePoint for small system
architectures. Please review the links below for station system limits and additional information:
•
•
FactoryTalk Historian SE: For configuration details, see Answer ID 62869 - Using FactoryTalk
Historian and FactoryTalk VantagePoint on a single host computer.
FactoryTalk View SE: For configuration details, see Answer ID 64541 - Using FactoryTalk View SE
and FactoryTalk VantagePoint on a single host computer.
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 15 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
Recommended Platform Requirements
The hardware and software used with FactoryTalk VantagePoint depends on the demands of the application.
The greater the demand, the more powerful a system is needed. For large or complex applications with high
data access and storage needs, computers with faster CPUs and more RAM should be used for the server
computer(s) (MSSQL and VantagePoint). In any application, faster CPUs and more RAM will result in
better performance.
In addition, there should always be sufficient disk space to provide virtual memory that is at least twice the
size of the physical RAM. The MSSQL server computer should also have ample disk space available,
particularly if storing calculated values as part of the VantagePoint solution.
Refer to the FactoryTalk VantagePoint Quick Start Guide for the minimum system requirements. A link to
this material can be found in Answer ID 61616 - Literature and links about FactoryTalk VantagePoint.
Note:
•
Some Microsoft operating system service packs and hot fixes might not be compatible with
VantagePoint. To find out if there are any problems with a particular Microsoft update prior to
applying it, refer to AID 35530 (Microsoft Patch Qualification) in the Rockwell Automation
Knowledgebase.
•
VantagePoint is tested on operating systems installed from original Microsoft media only.
Installing a New Operating System on Computers
Be sure to always install the computer vendor supported or recommended OS if upgrading or modifying your
system. In some cases, there are not proper hardware drivers for a particular hardware/software
combination. Using unsupported operating systems or drivers can cause the computer to be unstable.
Obviously, if the OS is unstable, it is too much to ask for any applications running on it to be stable. Please
be aware that computer manufacturers can make modifications to Operating Systems which may impact the
installation or performance of our software products. It is recommended to use full versions of the intended
operating system on all workstations.
Operating System Tips
•
•
•
•
The VantagePoint Server does not support Windows Server 2008 or Windows Vista. For the latest
information about the software platforms supported by Rockwell Software products, refer to Answer
ID 42682 – Supported Platform/Hardware Compatibility Matrix.
It is a requirement that all VantagePoint computers with a ‘server’ role use a server OS (i.e., the
VantagePoint Server, FactoryTalk Directory Server and the Live Data Server). Workstation operating
systems like Windows XP and 2000 Professional should be avoided in the production environment as
they have a 10 connection limit.
VantagePoint is tested and supported on operating systems installed from original Microsoft media
only. Using unsupported operating systems is not recommended.
As a general rule, servers and clients should be in the same Windows OS ‘vintage’. For example,
Windows 2000 clients should not be used with Windows 2003 ‘servers’.
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 16 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
Windows Error Reporting
There is an error reporting feature included with Windows XP and Windows Server 2003 that can be used to
report computer and program errors to Microsoft. There is currently no benefit to using this feature in a
Rockwell Software environment, and disabling it is recommended. For additional information refer to
Answer ID 42651- Instructions for disabling the Windows Error Reporting feature.
Internet Information Server (IIS)
Internet Information Server (IIS) is a required component for the FactoryTalk VantagePoint server; it is not
required for FactoryTalk VantagePoint clients. IIS is a prerequisite for the VantagePoint server installation.
Network Configuration
In depth network design is outside the scope of this document. For detailed information on configuring a
network, refer to the Ethernet Design and Implementation Guide. It’s important to note that any network
hosting FactoryTalk applications should use only managed switches.
WAN/Wireless Communications
Communications across anything slower than a 100mpbs, wired LAN can present negative impact on overall
system performance. Aside from the question of network security, which is outside the scope of the
document, two key factors are the speed and stability of the network. To mitigate problems due to signal
interference or timeouts, it is strongly recommended to use Terminal Services to bridge any WAN/Wireless
communications. See the “Terminal Services” section of this document for more information on
implementing Terminal Services.
Firewall Communications
As the purpose of any firewall is to restrict port usage, a firewall should always be located at the entry/exit
point of a network. This will prevent outside access to the network, while allowing unimpeded internal
network communications. If it is required to access a FactoryTalk system through a firewall, it is strongly
recommended to use Terminal Services. Terminal Services will only require one port to be opened in the
firewall, whereas FactoryTalk communications will require many more, including the entire dynamic range
of DCOM ports. See the “Terminal Services” section of this document for more information on
implementing Terminal Services, or see AID 29402 for a list of ports used by FactoryTalk.
Workgroup vs. Domain
VantagePoint is supported in both domain and workgroup environments, within limits:
Workgroup
Decentralized Administration
Advantages:
• No Domain Controller (Windows Server OS) to purchase.
• One less computer in network to maintain.
• Recommended only for small applications where user accounts don’t change often.
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 17 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
Workgroup Rules:
• The system can consist of no more than 10 FactoryTalk computers.
• Name resolution must be configured using a DNS Server or by using Hosts files.
• All computers participating in a single FactoryTalk application must be members of the same
Windows workgroup.
• All users participating in the workgroup must be members of the Administrators group.
• Create the same set of user accounts and passwords on every computer in a FactoryTalk application.
Domain
Centralized Administration
Advantages:
• One place to manage Users, Groups and Security
• Automate IP addresses with Dynamic Host Configuration Protocol (DHCP), and Name
Resolution and with Domain Name Service (DNS) and Windows Internet Name Service
(WINS).
Domain Rules:
• For applications consisting of more than 10 FactoryTalk computers, a domain controller is required.
• Rockwell Software components (including the FactoryTalk Services Platform) should not be installed
on domain controllers.
Domain Best Practices
Extensive information on Microsoft domains is beyond the scope of this document. However, there are
some key points that users of a FactoryTalk VantagePoint system in a Windows Domain should understand:
•
FactoryTalk VantagePoint v3.0.2 supports the following domains:
o Windows 2000 Server Active Directory (in Native or Mixed mode)
o Windows Server 2003 Active Directory (in any functional level)
Note: Windows 2000 Active Directory (AD) domains introduced the concept of a “forest.” A forest
can consist of a single “domain tree”, or multiple domain trees. A domain tree can consist of a single
domain (a.k.a. the “parent” domain) or multiple domains (a.k.a. the “child” domains). We
recommend a single forest, single tree, and single domain configuration. In Windows Server 2003
Active Directory, both domains and forests have individual functional levels. We recommend the
default functional levels:
o Domain: Windows 2000 mixed
o Forest: Windows 2000
To determine the Window 2000 domain mode, launch Active Directory "Domains and Trusts" (Start
> All Programs > Administrative Tools), right-click the domain and select "Properties". To determine
the Window 2003 functional levels, the identical procedure is used.
•
It is recommended to select internal Microsoft Active Directory domain names carefully. An internal
Microsoft Active Directory domain name should not be confused with an Internet (external) domain
name, and while they can be the same name, typically they are not. Consult the local IT department
or the Microsoft Best Practice Active Directory Deployment for more information.
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 18 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
Windows 2000 Server & Windows Server 2003 Active Directory redundancy: It is recommended to
implement at least 2 domain controllers, where both are configured with the Global Catalog (GC) role to
provide high availability. By default, the GC role is only on the first domain controller in the forest, but it is
possible to add the GC role on other domain controllers from the Active Directory Sites and Services
console. Simply expand Sites > site name > Servers > server name, right-click NTDS Settings, and select
Properties. The Global Catalog check box is on the General tab. Note: There are still a number of single
instance domain controller roles that can result in a single point of failure. These 5 Flexible Single Master
Operations (FSMO) roles are:
1. PDC Emulator (one per domain)
2. Infrastructure master (one per domain)
3. Relative ID (RID) master (one per domain)
4. Schema master (one per forest)
5. Domain naming master (one per forest)
•
Time Synchronization should be configured throughout the domain. For additional information, refer
to the section entitled Time Synchronization later in this document.
•
Prior to deploying VantagePoint, both new and existing active directory domains should have their
operation verified using Microsoft’s Domain Controller Diagnostics (Dcdiag.exe) utility. This utility
is included with the Windows Support Tools located on the Operating System CD and also available
via download from Microsoft.
•
Rockwell Software does not support its software on computers configured as domain controllers. The
following information comes from a Microsoft TechNet article posted at
http://www.microsoft.com/technet/prodtechnol/windows2000serv/maintain/security/secdefs.mspx.
The key sentence in this TechNote is "In general, Microsoft does not recommend running
applications on computers configured as domain controllers, and certainly not applications that
require more than Authenticated User privileges in order to run successfully." Installation of any
application software on a domain controller can have adverse affects on the network and is the
responsibility of the user to accept the risk.
Windows Support Tools
Microsoft provides numerous diagnostic tools for Domain Controllers, Active Directory and networking in
general that must be installed after the operating system. To install the tools, browse the operating system
CD (Windows XP and Server 2003) to \Support\Tools\ and run SupTools.Msi. To get an overview of the
tools available, click Start > Programs > Windows Support Tools > Support Tools Help.
Upgrading from Incuity EMI
There is currently no upgrade path for Incuity EMI v2.x to the current release of VantagePoint. It is possible
to upgrade from previous versions of VantagePoint. For more information and upgrade instructions, see
Answer ID 59556 - Upgrading to FactoryTalk VantagePoint from Incuity EMI v2.x.
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 19 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
Software Installation
Refer to the FactoryTalk VantagePoint Getting Results Guide for installation instructions. A link to the most
up to date version of this material can be found in Answer ID 61616 - Literature and links about FactoryTalk
VantagePoint. Additional recommendations are included below:
•
•
Establish a system’s computer names prior to installing the VantagePoint server. If the FactoryTalk
VantagePoint server name needs to be changed follow the procedure in Answer ID 61897 - How to
Change the VantagePoint/Incuity EMI Server Name
Check the time and the time zone on all computers prior to installing the VantagePoint server. To
maintain accurate time on all computers, use the Windows Time Service.
Installation on Drives Other Than C:
Installing FactoryTalk VantagePoint on drives other than ‘C’ is not supported at this time.
FactoryTalk Directory
FactoryTalk VantagePoint makes use of a Network FactoryTalk Directory. VantagePoint uses the
FactoryTalk directory to connect to FactoryTalk Live Data through Live Data servers. Connections to
FactoryTalk Historian SE can be made using either the FactoryTalk Directory connection or a direct
connection. For more information see the topic ‘Add a FactoryTalk Historian Connector’ in the
VantagePoint help documentation. The VantagePoint server must be part of the same FactoryTalk Directory
as the Live Data servers in order to function correctly.
FactoryTalk Directory Location
The FactoryTalk VantagePoint server configures the FactoryTalk Directory that the host computer is
associated with upon installation. After the VantagePoint server is installed, the FactoryTalk Directory can
be changed using the ‘Specify FactoryTalk Directory’ tool and then rebooting the VantagePoint server. For
more information see Answer ID 21577 – Changing the FactoryTalk Directory.
FactoryTalk Platform Compatibility
VantagePoint requires FactoryTalk Services Platform (FTSP) v2.10.01 (CPR9 SR1) or higher. With preexisting FT systems, this may require a system-wide FT upgrade. To determine the version of FTSP a system
is using, refer to Answer ID 25612 – How to Determine the version of the FactoryTalk Services Platform
(FTSP) installed on your computers.
For information on the currently supported FactoryTalk Services Platforms for VantagePoint, refer to
Answer ID 59400 - FactoryTalk VantagePoint Tips and Best Practices TOC.
Generally speaking, in a distributed FactoryTalk system using a Network FTD, it is imperative that all
computers in the system are running the same FactoryTalk Services Platform release. Ideally, this also
includes the applicable patches. FactoryTalk Services Platform releases up to v2.10 (CPR9) are
incompatible with each other (e.g., v2.00 (CPR7) and v2.10 (CPR9) cannot co-exist on the same PC, and
cannot communicate with each other across multiple PCs.)
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 20 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
It is strongly recommended that all versions of the FactoryTalk Services Platform be consistent over the
entire Network FactoryTalk Directory. See AID 58803 Network FactoryTalk Directory Best Practices for
more information on setting up a FactoryTalk Directory.
FactoryTalk Services Platform Patch Levels
It is recommended to apply the same patch roll-up to all FactoryTalk PCs in the system using the patch rollup included on the Rockwell Knowledgebase. The link to patches for all released VantagePoint versions can
be found in Answer ID 59149 - FactoryTalk VantagePoint Tips and Best Practices TOC under ‘Patches.’
Default File Locations for FactoryTalk VantagePoint
Core program files:
C:\Program Files\Incuity
VantagePoint Log Files:
VantagePoint:
Office Add-In:
Portal:
C:\Inetpub\wwwroot\Incuity\Logging
C:\Inetpub\wwwroot\IncuityOffice\Logging
C:\Inetpub\wwwroot\IncuityPortal\Logging
Connection Log:
Service Log:
Or
Connection Log:
Service Log:
C:\Program Files\Incuity\bin\Logging (Connect.log)
C:\Program Files\Incuity\bin\Logging (Service.log)
C:\Program Files (x86)\Incuity\bin\Logging (Connect.log) if using x64 OS
C:\Program Files (x86)\Incuity\bin\Logging (Service.log) if using x64 OS
Network FactoryTalk Directory File:
C:\Documents and Settings\All Users\Application
Data\Rockwell\RNAServer\Global\ApplicationName.RnaD
Live Data Import Errors:
C:\Inetpub\wwwroot\Incuity\Logging\Synchronization
Post Installation Activities
The following tasks should be performed immediately after installation, and prior to considering the system
‘commissioned.’
Post Release Patches
Links to patches for all released VantagePoint versions and applicable FactoryTalk Service Platform patches
can be found in Answer ID 59149 - FactoryTalk VantagePoint Tips and Best Practices TOC under ‘Patches.’
Licensing
VantagePoint only supports FactoryTalk Activation™; Rockwell Software’s legacy (EvRSI) activation is not
supported. Only the VantagePoint server needs to be licensed. For more information see:
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 21 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
•
•
•
•
Answer ID 61745 - FactoryTalk VantagePoint Remote Activation
the FactoryTalk Activation On-line Help
Answer ID 35251 - FactoryTalk Activation Frequently Asked Questions
Answer ID 44623 - What are FactoryTalk Activations and How Do They Work?
During the VantagePoint server installation the FactoryTalk Activation Server software is automatically
installed, however VantagePoint is capable of using a Remote Activation server as well. If planning to use
the VantagePoint Server as the system FactoryTalk Activation Server, refer to:
•
•
•
•
•
Answer ID 35376 - FactoryTalk Activation Server User Management
Answer ID 41573 - FactoryTalk Activation End User Options File to Include/Exclude Borrowing
Activations
Answer ID 35708 - How to support FactoryTalk Activations in a LAN/WAN Environment
Answer ID 35717 - How to make communication available between the FactoryTalk Activation
Server and Client
FactoryTalk VantagePoint Security and Licensing
MSSQL Server Licensing
New purchases of FactoryTalk VantagePoint server may include a Single Processor licensed version of
Microsoft SQL Server 2005 or 2008 Standard Edition. The Single Processor license includes access for an
unlimited number of users or devices to connect from either inside or outside the firewall. Customers do not
need to purchase additional Server Licenses or client access licenses (CALs) when licensed under the per
processor model.
A Single Processor License is required for each processor installed on each operating system environment
running SQL Server or any of its components (for example, Analysis Services). This means that if the
physical server is a dual processor computer, an extra Single Processor License would need to be purchased
in addition to the one provided with the AssetCentre server purchase.
Multi-core processors are only considered to be one processor, so no extra license would be necessary.
For more information on Microsoft SQL Server 2005 or 2008 licensing, refer to:
http://www.microsoft.com/sql/howtobuy/sqlserverlicensing.mspx
Installing FactoryTalk VantagePoint Clients
The FactoryTalk VantagePoint client components include the Portal, Trend, XY Plotter, VanagePoint
Manager, and the Excel Add-In. The Portal, Trend, and XY-Plotter can be deployed in a zero-touch manner
and do not require the installation of additional software. Additionally, Excel based content can be viewed
by a client without client software installation.
The VantagePoint client software can be installed through the VantagePoint Portal. For more information
see ‘Installing VantagePoint on Client Machines’ in the VantagePoint help documentation.
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 22 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
Backing up and Restoring FactoryTalk VantagePoint
The FactoryTalk VantagePoint configuration and any stored data should be backed up on a regular basis.
For more information see AID 62884 - Backing up and Restoring a FactoryTalk VantagePoint
Configuration.
Maintaining FactoryTalk VantagePoint Log Files
The VantagePoint / Incuity EMI Server creates log files detailing activity on the server. A new log file is
created by default each day at midnight and the current log file is archived. The archived log files are not
deleted. For information on maintaining log files see AID 60401- Locating and Maintaining FactoryTalk
VanatagePoint Log Files.
Using FactoryTalk VantagePoint Sample Content
Sample content is provided with FactoryTalk VantagePoint to demonstrate the capabilities of the product.
However, some sample content may be updated or removed with new versions of VantagePoint and should
not be used for official modeling. For more information see AID 60403- Using Sample Content in
FactoryTalk VantagePoint.
VantagePoint Compatibility
Information on FactoryTalk VantagePoint compatibility with other hardware or software products can be
found in AID 59149- FactoryTalk VantagePoint Tips and Best Practices TOC under ‘Compatibility’.
Controller Compatibility
The current release of FactoryTalk VantagePoint fully supports automated tag imports from the
ControlLogix Platform. In addition to ControlLogix, the AddItems operation of the OPCDA connector in
VantagePoint can also be used to import FactoryTalk Live Data tags from other controller platforms (e.g.,
SLC, PLC5, etc.) When utilizing this functionality, users should be aware that data type issues may occur
during imports from non-ControlLogix controller platforms. For more information see AID 61744FactoryTalk VantagePoint Controller Platform Compatibility.
Excel Compatibility
Microsoft Office Add-in Wizards make it easy to bring data from multiple control and business systems (via
VantagePoint) into the familiar but powerful environment of Excel. Here, users can use Excel's analysis
capabilities, or use the VantagePoint Add-in wizards that make it easy to manipulate and present the data.
Users can publish content directly to the web, and collaborate by fetching and building upon existing
published reports. Real time reports are automatically refreshed in Excel, and in the end users browser after
publishing
See AID 60409- FactoryTalk VantagePoint Microsoft Excel Compatibility for more information.
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 23 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
FactoryTalk Historian SE Redundancy Support
FactoryTalk VantagePoint 3.1 supports FactoryTalk Historian SE Collective configurations after a patch is
applied. For more information, see Answer ID 59722 - FactoryTalk VantagePoint Support for Historian
Collectives.
Using FactoryTalk VantagePoint to Store Tags
FactoryTalk VanatagePoint is capable of storing up to 50 tags in the VantagePoint SQL database.
FactoryTalk VantagePoint EMI is capable of storing an unlimited number of tags in the VantagePoint SQL
database. Storing tags may require modifications to the system architecutre (e.g., scale up the hardware,
scale down server loads) based on the amount and frequency of the data being stored if server performance
does not meet expectations. If storing tags in VantagePoint, it is highly recommended that procedures are
put in place to backup and archive the VantagePoint database on a regular basis.
System Redundancy
The current release of VantagePoint does not provide redundancy. VantagePoint is used to provide access
to existing manufacturing and plant data sources and does not typically act as a data source itself. The
VantagePoint configuration and VantagePoint tags are stored in a SQL database. Regularly backing up the
following VantagePoint components is recommended:
• VantagePoint Microsoft SQL databases (IncuityStore and IncuityHistory)
• Web Site and Supporting Files:
o C:\inetpub\wwwroot\IncuityPortal\
o C:\inetpub\wwwroot\Incuity\
o C:\inetpub\wwwroot\IncuityOffice\
• All scripts and utilities used during configuration. Be aware that System Integrators may add scripts
and utilities to the VantagePoint System. These files may include server-side scripts, instance and
type packages. These files are usually placed on the VantagePoint machine in the folder
o C:\Inetpub\wwwroot\Incuity\Import\
System Security
Security threats generally fall into 4 categories: external, internal, intentional and accidental. Detailed
security recommendations against external threats are beyond the scope of this document. However, there
are some basic measures that should be taken to protect against the most common threat – the day-to-day
users of the system. Recommendations in this area include:
•
•
•
Password protect the computer’s BIOS: to prevent booting from anything other than the local hard
drive, configure the computer to boot only from the hard drive, and then configure a BIOS password
so that mischievous users cannot change the boot device.
Password protect the local Administrator account; this often overlooked task is critical.
Configure the Windows environment so that it is “strictly business” for the operators: restrict access
to required applications only using Group Policy (in a domain) or Local Policy (on an individual
machine or workgroup).
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 24 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
Windows Terminal Services
FactoryTalk VantagePoint fully supports Windows Server 2003 Terminal Services. For more information,
refer to technical notes Answer ID 29919 - Using View SE with Windows 2003 Terminal Services. While
the focus of this document is View SE, it is also generally applicable to VantagePoint.
•
•
•
Terminal Services is a standard feature built into the Windows Server family (Server, Advanced
Server, and Datacenter Server) which provides remote access to servers from practically anywhere in
an enterprise. It is a transparent system that runs applications and performs data processing and
storage functions on the server computer to minimize the amount of information traveling across a
network. While multiple sessions run on a single server, each user can only refer to their individual
session. Users’ desktops are transmitted to clients for display using terminal emulation software.
Similarly, the software sends print streams and command functions such as keyboard inputs and
mouse clicks across the network between the client and the server.
For a computer to be a Terminal Services client, it only requires an operating system and the
Terminal Services client software. No other software (not even a web browser) is required. For this
reason, these clients are known as “thin” clients.
Since minimal software is needed on the client computer and all the processing is done on the server,
client computer hardware can be scaled down to reduce cost.
Time Synchronization
The Windows Time service (W32tm.exe) uses the Network Time Protocol (NTP) to synchronize computer
clocks on the network. Time synchronization is critical for the proper operation of many Windows services
and to ensure the security of Kerberos authentication within an Active Directory environment. In a
FactoryTalk VantagePoint system, time synchronization ensures accurate time stamps on all VantagePoint
content. Therefore, configuring time synchronization is highly recommended. For more information see
Answer ID 62618 - FactoryTalk VantagePoint and Time Synchronization.
• In workgroup environments, configure Windows Time to synchronize all the SE computer clocks to
an authoritative time server (e.g. the FactoryTalk Directory).
• In domain environments, Windows Time should be automatically configured on each computer
(when they join the domain) for the appropriate authoritative time server (i.e., the domain controller
that is also the PDC emulator).
• In either environment, the authoritative time server should then be synched to:
o a reliable time server on the Internet
o a locally-connected hardware time source such as an atomic clock
• Check the Event
Windows Time Service Tools and Settings
http://technet2.microsoft.com/windowsserver/en/library/b43a025f-cce2-4c82-b3ea3b95d482db3a1033.mspx?mfr=true
Administering the Windows Time Service
http://technet2.microsoft.com/WindowsServer/en/library/ac86e77c-0be3-430a-ba0bc2225506fc4f1033.mspx?mfr=true
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 25 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
How to configure an authoritative time server in Windows Server 2003
http://support.microsoft.com/kb/816042
How to configure an authoritative time server in Windows XP
http://support.microsoft.com/kb/314054/
How to configure an authoritative time server in Windows 2000
http://support.microsoft.com/kb/216734/
Troubleshooting
Troubleshooting information for VantagePoint issues can be found by searching the KnowledgeBase. For
information on additional support see AID 59444- How to Receive Support for FactoryTalk VantagePoint.
A common issue is when problems with the IIS configuration translate into errors within FactoryTalk
VantagePoint. A useful tool in diagnosing IIS problems can be found free from Microsoft in the IIS
Diagnostics tool. This installation is a compiled set of tools to help diagnose IIS settings, including
anonymous access. The tool can be found from Microsoft’s downloads site here (IIS Diagnostics Toolkit
x86).
While FactoryTalk VantagePoint does not use IIS in the same fashion as FactoryTalk View SE, the
FactoryTalk View Site Edition IIS Handbook has helpful sections on troubleshooting anonymous access and
general virtual directory difficulties. This handbook is located on the Rockwell Automation knowledgebase
under AID 39618 (FactoryTalk View Site Edition IIS Handbook.)
Below is a list of errors that are commonly seen due to IIS configuration problems.
•
HTTP Status 401: Unauthorized: 401 errors are a good indicator of anonymous access being broken.
Ensure that the Virtual Directory has anonymous access enabled, that a valid user is configured as the
anonymous user, and that the configured user has valid file permissions access to the virtual directory.
•
HTTP Status 403: Forbidden: 403 errors usually indicate that the virtual directory’s configuration is
incorrect. The most common cause of a 403 error is the ‘Execute Permissions’ settings from within the
virtual directory’s properties. This setting should be set to allow ‘Scripts only.’
•
HTTP Error 404: File Not Found: See AID 60244 for information on troubleshooting this error.
Tools and Utilities
•
•
•
•
Answer ID 30393 - Patch File Validator Utility
Answer ID 30498 - Windows Firewall Configuration Utility for Windows XP Service Pack 2
Answer ID 20697 - Troubleshooting a Windows Network
Answer ID 31073 - Tool for collecting Event log files
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 26 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
Additional Reference Links
General
•
•
•
Answer ID 35330 - Rockwell Software Products and Antivirus Software
Answer ID 42682 - Software Platform\Hardware Compatibility Matrix
Answer ID 27743 - RSI Products and Intel Hyper-Threading Technology
Communications
•
•
Answer ID 37285 - RSLinx Enterprise 5.00.00 Patch TOC
Answer ID 26464 - RSLinx Internals: OPC/DCOM timeouts when a remote client is disconnected
Design Considerations and Best Practices
•
•
•
Logix 5000 Controllers Design Considerations
http://literature.rockwellautomation.com/idc/groups/literature/documents/rm/1756-rm094_-en-p.pdf
Answer ID 49189- FactoryTalk Historian Site Edition Design Considerations and Best Practices
Answer ID 58803- Network FactoryTalk Directory Best Practices
Microsoft
•
•
•
•
Microsoft TechNet article on Domain Controllers
http://www.microsoft.com/technet/prodtechnol/windows2000serv/maintain/security/secdefs.mspx
Maximize Data Throughput Setting for Performance
Microsoft’s Description of Performance Options in Windows
Log Parser
FactoryTalk VantagePoint v3.1 Design Considerations
Rev. 3.1.5
Page 27 of 28
FACTORYTALK V ANTAGEPOINT DESIGN CONSIDERATIONS
Was this manual useful for you? yes no
Thank you for your participation!

* Your assessment is very important for improving the work of artificial intelligence, which forms the content of this project

Download PDF

advertisement