User Groups; Local Security Policy - ABB COM600 series 5.0 Cyber Security Deployment Manualline
Substation management unit
Hide thumbs
Also See for COM600 series 5.0:
- Technical reference manual (164 pages) ,
- Technical reference manual (108 pages)
Table of Contents
Advertisement
3.1.4.
3.1.5.
14
COM600 series 5.0
Cyber Security Deployment Guideline
a password for COM600 user account. See Appendix 1 for details on how to launch
Gateway Management Tool.
Administrator user account
The default Administrator user account available from Windows operating system is
disabled in COM600 device. This account is not required for COM600 functioning and
can be left disabled. If this account is enabled for other reasons, it is recommended to
assign a password that meets all complexity requirements as defined by the password
security policy.
User groups
COM600 user accounts can be classified into four user groups based on the actions that
they can be allowed to perform. These four user groups include COM600-Viewer,
COM600-Operator, COM600-Engineer and COM600-Administrator. These user
groups are available in COM600 by default. When creating a new user account in
COM600, assign it to any of these COM600 user groups.
Based on the user group assigned for a particular user account, a customized user interface
is provided by COM600 WebHMI that limits/allows a specific function/operation.
The user accounts can be grouped and managed either using COM600 WebHMI or using
typical Windows User Account Management.
Refer to User Management section in COM600 Operator's Manual for detailed inform-
ation on access permissions to various COM600 interfaces available for these user groups.
The table below shows a summary of access permissions for these user groups.
User Group name
COM600-Viewer
COM600-Operator
COM600-Engineer
COM600-Administrator
Local security policy
Security related settings in Windows operating system can be managed through security
policies. These operating system wide security policies provide a comprehensive set of
configuration that can be performed to allow/disallow a particular behavior by a specific
user/user group. Security policies defined within COM600 can be viewed/edited through
Local Security Policy Editor.
Access permission summary
Only allowed to view.
Authorized to make control operations.
Authorized to make parameter setting changes,
but limited from control operations.
Full access.
1MRS758267
Advertisement
Table of Contents
