Skip to main content
Version: 8.3 Beta 🚧

Recommended Anti-Virus and Endpoint Security Settings with Ignition

As part of normal operation, some anti-virus software will attempt to restrict access to directories or ports that Ignition needs to function. This page describes some exclusions to be mindful of, but is by no means a comprehensive list. It is recommended to work with your IT Department to determine if any other whitelisting or configuration within the anti-virus software is needed.

Ignition Gateway​

  • Exclude the Ignition installation directory.
  • Exclude the Ignition process from inspection.
  • If the anti-virus software includes network traffic inspection, exclude the ports Ignition will be communicating on.
    For example, ports 8088 and 8043 are commonly used default ports on new Ignition installations. However, these ports are user configurable and can always be changed, so you may need to review your Ignition configuration to determine what ports are used. More information about the ports an installation may use can be found on the Gateway Port Reference page.
  • Exclude temp locations.
    You should also note any temp locations that may need to be whitelisted depending on what your system requires. For instance, when working with EAM configurations, a Controller Gateway will distribute an Ignition update to an Agent Gateway via ZIP file, where the file is stored in a temp location until the whole file has arrived to alleviate issues with slow networks or intermittent connectivity. This means the update will get stuck if the temp location isn't whitelisted. Temp locations are based on what Java uses for the temp folder on the system. For Windows, the temp folder is %USER%\AppData\Local\Temp by default, and for Linux it is /tmp. You can change the location of the temp folder by adding a java.io.tmpdir system property to ignition.conf. Refer to the Gateway Configuration File Reference page for more information.

Ignition Designer​

  • Exclude the Ignition cache directory: <user-directory>/.ignition

Ignition Vision Client​

  • Exclude the Ignition cache directory: <user-directory>/.ignition

Ignition Perspective Workstation​

There are no specific exclusions for Perspective Workstation.

Last updated on by ia-nboehnke