0
How to Configure a Remote Collector when Tag Security is Enabled (version 24)
Knowledge Base / Version 24 / System Admin Duties / Data Collection
If Tag Security is enabled within the Identity service, a remote Collector will not be able to write to the Historian by default. The SaF service on the Collector server must be configured to use an API token. If Tag Security is not enabled or the Collector is local to the Historian, the following procedure need not be completed. Data will flow freely into the Historian.
Each API token is linked to an internal Canary user. In this case, that Canary user must be given write permissions to the appropriate View/DataSet within the data hierarchy. See SaF to a Remote Historian where Tag Security is Enabled for more details.
Configuration
- Create an API token within the Identity service if one is not already available. The Identity service is typically installed on the Historian server. The token will need copied to the Collector server.
- Add the Canary user linked to the token to the Historian View/DataSet within Identity tile>Security>Tag Security and give it Write permissions.
- Open the Canary Admin client on the Collector server and navigate to the Store and Forward tile>Configuration>Settings screen.
- Paste the API token into the Identity API Token field.
- Click APPLY.