Enforcing Access Rights to HMI Pages/HMI Objects
When security for HMI is enabled, the properties window of an HMI page / HMI object contains an additional category to set the access rights. Depending on the user role(s) and user levels of the logged in user, you can define whether an HMI page is available (visible) to the user and whether an HMI object is enabled and visible on the HMI page.
| Note
The user roles used for defining the access rights rules are configured via the controller's Web Based Management (WBM). The EHmiLevel1...EHmiLevel10 user roles configured on the User Manager page in the controller's WBM are mapped to the user levels used to define the access rule in the HMI application (see the examples below). |
Clicking on a parameter setting in the category displays an input group box where you can define an expression that determines the access rule (in the following example, the 'Enable' parameter of an HMI object is selected). When the expression built by the combination of the three parameter settings evaluates to TRUE, the logged in user is granted access.
Examples
 | The HMI object will be enabled for users that have 'All' user levels equal to 2.The prerequisite for using the HMI object is that the user configured on the User Manager page in the controller's WBM has the EHmiLevel2 user role assigned. |
 | The HMI object will be enabled for any user that has 'Any' user level with at least one user level greater than 3.The prerequisite for using the HMI object is that the user configured on the User Manager page in the controller's WBM has at least EHmiLevel4 user role or higher (EHmiLevel5 to EHmiLevel10) assigned. |
 | The HMI object will be 'Always' enabled for all users independently of their user levels. |