• State Not Answered
  • Replies 7 replies
  • Subscribers 5475 subscribers
  • Views 14923 views
  • Users 0 members are here
Recent DeltaV Community Connect Discussions
Similar Posts
Alarm Shelving from Alarm List
Alarm Shelving
Reason Prompt on alarm shelve
why is the alarm shelving itself
Question: Restricting a Workstation to Specific Areas, While Allowing Them to See Alarms from Restricted Areas
Share
  • Not Answered

Restricting alarm shelving in DeltaV 13.3.1

We would like to control access to shelving of alarms, preventing shelving for some and only allowing certain users to shelve others. I appreciate that shelving is controlled by which lock the field .OPSUP is assigned to. The obvious solution is to give users access to the key for this lock only in certain areas and then assign the alarms which they can suppress to this area. However we already have a complicated area system for access to different plants. Is there another way?

I found that if the suppression timer limit is set to 0 then the alarm cannot be shelved (or at least it is shelved then immediately unshelved). This would prevent shelving entirely but wouldn't allow differentiation between users.

Cedric Dawnhawk

7 Replies

  • Andre Dicaire

    I'm wondering if you could benefit from one of the AgileOps applicatinos like List Management

    This gives you independent levels of control for alarm management rather than attempting to configure the DCS logic.  

    There is also the Dynamic Alarm Management module that can implement State based alarming 

    As for handling this in DeltaV, you could create a module that manages suppression, abstracting out the alarms that can or cannot be suppressed.  A module can write to the OPSUP and SUMTMO fields of another module.  This would allow all modules to remain in their current plant areas, but give you a new module you could place in a new Plant Area and restrict access to it, and remove access to OPSUP in all other areas.  This could get complicated really fast, so I don't know if this is viable.  Just a thought.

    Maybe you could add some signature policies that require confirmation in order to suppress certain alarms. If OPSUP requires a supervisor and only some Operators have that privilege, maybe that lets you control who can suppress and who cannot.

    Personally, I like the idea of the AgileOps Alarm management layer.  This allows you to separate alarm management functions from control module logic.  The people managing alarms can implement strategies that do not require control module changes and downloads.  It provides a clean break in responsibilities.  Although Alarms are appropriately executed in the controller where they are time stamped and are universally reported to all consoles from one source, the suppression and operator management of alarms makes  more sense to be managed above the controllers.  

    Andre Dicaire

  • MPHymel
    Cedric, we had the same issue at our site.

    We define certain alarms to be critical and these are not allowed to be suppressed by an operator.

    We have an administrative process to allow a supervisor to enable shelving.

    The way we manage this in DeltaV is the SUPTMO is set to 0 for all of our critical alarms.

    We added a Suppression Enable column to our PCSD detail display adjacent to the Suppression column on the alarms Tab.

    If the user has supervisor credentials, he can enable a check box. Enabling the check box sets the SUPTMO to our default of 4 hours.

    The status of the check box follows the SUPTMO, that is: its "checked" if the SUPTMO is > 0 and non-check if = 0.

    This has been working well for us. If you want more detail, look for me on linked in and I can share some images etc.,

    Mark Hymel
  • MPHymel

    In reply to MPHymel:

    Here is a pic of the detail alarm tab mentioned above

  • Cedric Dawnhawk

    In reply to Andre Dicaire:

    Thanks Andre for your reply.

    The Agile Ops does look very comprehensive but is probably a bit expensive and complicated for what is a relatively small installation.

    I have used the idea of 'indirect writing' via another module to solve other security issues but as you say this might get very complicated if there are a lot of alarms.

    Electronic signatures looks interesting. I haven't used this. Does it require a licence or just enabling? I think the problem may be that this is also area based.

    Andrew Chadwick
  • Cedric Dawnhawk

    In reply to MPHymel:

    Thanks Mark for your interest and reply.

    I did find your previous conversation on this topic back in June 2020 and your approach sounds promising.

    Regarding the additional checkbox, presumably when it is unchecked SUPTMO is set back to zero. Presumably the supervisor must remember to uncheck the box when shelving needs to be restricted again? Or is there some automatic method?

    Andrew Chadwick
  • MPHymel

    In reply to Cedric Dawnhawk:

    Andrew, sorry i missed your further question back in '22, but yes it is an administrative process that protects these from remaining in a state where suppression is allowed. Our process is for a safety bypass authorization work flow to be initiated before the suppression enable is activated. And you are correct, unchecking returns SUPTMO to zero.

    We actually recently expanded on this for a subset of our critical alarms, such that a 2 hour timeout function will disable the suppression enable, and we alert the operator when they are 15 minutes away from the timeout. This application is related to defeating area gas monitors and associated field alarms when known field work is in progress that would be expected to activate the alarm, and other safeguards are in place a that time.

    These gas monitors drive alarm beacon and horns in their respective units. When a particular monitor is suppressed, the CND statement in the logic driving the beacon becomes disabled, and we have "BYPASS" alarm priorities configured for these, so there is a "Active Bypass" alarm summary display configured so that at any time an operator an review any that are bypassed, or any other interlock bypass that may be active.
  • Cedric Dawnhawk

    In reply to MPHymel:

    Thanks Mark for the supplementary information.

    In the end we implemented a fairly crude system whereby everyone can shelve alarms in principle. For those that should not be shelved the timeout is set to zero and for the others a non-zero value.

    Andrew

This is the official online community site of the Emerson Exchange, a forum for the free exchange of non-proprietary information among the global user community of all Emerson's products and services. Our goal is to improve the efficiency and use of automation systems and solutions employed at members’ facilities by sharing our knowledge, experiences, and application information.

Community Guidelines | Legal Information | Privacy Policy | Contact Community Manager

Website translation provided by Website Translator

© 2015-2026 Emerson Exchange. All rights reserved.