Advertisement
Category
Logging and event
management
EATON 93PM G2 UPS
USER'S AND INSTALLATION
GUIDE
Description
restricted to only the privilege levels necessary to complete their job
roles/functions.
Ensure that default credentials are changed upon first login. The
•
UPS should not be commissioned for production with default
credentials. It is a serious cybersecurity flaw as the default
credentials are published in the manuals.
No password sharing - Make sure that each user gets their own
•
password for that desired functionality instead of sharing the
passwords. Security monitoring features of the UPS are created with
the view of each user having their own unique password. Security
controls will be weakened as soon as the users start sharing the
password.
Restrict administrative privileges - Threat actors are increasingly
•
focused on gaining control of legitimate credentials, especially those
associated with highly privileged accounts. Limit privileges to only
those needed for a user's duties.
Perform periodic account maintenance (remove unused accounts).
•
Change passwords and other system access credentials whenever
•
there is a personnel change.
Access to service screen and configuration screen is access-
controlled. Access to UPS features is restricted based on roles:
Configuration screen can be accessed by the User role.
1.
Service screen can be accessed only by the Service engineer role.
2.
The following are the access levels in the UPS:
Level 1: Control password for User
•
Level 2: Configure password for User
•
Level 3: Service password for an authorized Eaton Customer
•
Service Engineer or qualified service personnel authorized by Eaton
Users are recommended to change default passwords on first use of
the system. The default session timeout is 10 minutes.
The UPS does not enforce any account policies. Customers need to
enforce their account policies.
Best practices:
Our company recommends that all administrative and maintenance
•
activities are logged.
Ensure that logs are backed up. Retain the backups for a minimum
•
of 3 months or as per the organization's security policy.
Perform log review at a minimum every 15 days.
•
The UPS supports the following logging mechanisms:
The UPS logs all active events, alarms and notices
•
Configuration changes made are logged (language change, modify
•
UPS name, etc.)
P-164000956 - February 2021
www.eaton.eu
1 1 0 0 6 6
Advertisement
