GE T60 Instruction Manual page 157
Transformer protection system ur series
Hide thumbs
Also See for T60:
- Instruction manual (796 pages) ,
- Communications manual (532 pages) ,
- Instruction manual (628 pages)
Table of Contents
Advertisement
5 SETTINGS
Supervisory
PATH: SETTINGS
PRODUCT SETUP
SUPERVISORY
MESSAGE
MESSAGE
MESSAGE
MESSAGE
MESSAGE
MESSAGE
The Supervisory menu settings are available for Supervisor role only or if the Supervisor role is disabled then for the
Administrator role only.
Device Authentication: This setting is enabled by default, meaning "Yes" is selected. When enabled, Device Authentica-
tion with roles is enabled. When this setting is disabled, the UR only authenticates to the AAA server (Radius). However,
the Administrator and Supervisor (when enabled) remain active even after device authentication is disabled and their only
permission is to re-enable device authentication. To re-enable device authentication, the Supervisor unlocks the device for
setting changes, then the Administrator re-enables device authentication.
Bypass Access: The bypass security feature provides an easier access, with no authentication and encryption for those
special situations when this is considered safe. Only the Supervisor, or the Administrator when the Supervisor role is dis-
abled, can enable this feature.
MODE
FRONT PANEL OR SERIAL (RS232, RS485)
Normal mode
Authentication — Role Based Access Control (RBAC)
and passwords in clear
Bypass access mode
No passwords for allowed RBAC levels
The bypass options are as follows:
•
Local — Bypasses authentication for push buttons, keypad, RS232, and RS485
•
Remote — Bypasses authentication for Ethernet
•
Local and Remote — Bypasses authentication for push buttons, keypad, RS232, RS485, and Ethernet
When CyberSentry is enabled, Modbus communications over Ethernet is encrypted, which is not always tolerated by
SCADA systems. The UR has the Bypass Access feature for such situations, which allows unencrypted Modbus over
Ethernet. Setting it to "Remote" ensures no authentication is required over Ethernet and Modbus communication is unen-
crypted. Only a Supervisor or Administrator (if Supervisor role is disabled) can enable this feature. Note that other protocols
(DNP, 101, 103, 104, EGD) are not encrypted, and they are good communications options for SCADA systems when
CyberSentry is enabled.
Lock Relay: This setting uses a Boolean value (Enable/Disable) to indicate if the device accepts setting changes and
whether the device can receive a firmware upgrade. This setting can be changed only by the Supervisor role, if it is enabled
or by the Administrator if the Supervisor role is disabled. The Supervisor role enables this setting for the relay to start
accepting setting changes or command changes or firmware upgrade. After all the setting changes are applied or com-
mands executed, the Supervisor disables to lock setting changes.
GE Multilin
SECURITY
SUPERVISORY
DEVICE
AUTHENTICATION:Yes
BYPASS ACCESS:
Disabled
LOCK RELAY:
Disabled
FACTORY SERVICE:
MODE: Disabled
SELF TESTS
SUPERVISOR ROLE:
Disabled
SERIAL INACTIVITY
TIMEOUT: 1 min
T60 Transformer Protection System
5.2 PRODUCT SETUP
Range: Yes, No
Range: Local, Remote, Local and Remote, Disabled
Range: Enabled, Disabled
Range: Enabled, Disabled
See below
Range: Enabled, Disabled
Range: 1 to 9999 minutes
ETHERNET
Authentication — RBAC and passwords encrypted
SSH tunneling
No passwords for allowed RBAC levels
No SSH tunneling
5
5-21
- Quick Links:
- Batteries
Hide quick links:
Advertisement
Table of Contents
