Password Policies - ABB RELION 670 SERIES Manual
Cyber security deployment guideline
Hide thumbs
Also See for RELION 670 SERIES:
- Technical manual (1432 pages) ,
- Technical reference manual (1232 pages) ,
- Applications manual (944 pages)
Table of Contents
Advertisement
1MRK 511 399-UEN B
4.3
670 series 2.2 IEC
Cyber security deployment guideline
First user created must be appointed the role SECADM to be able
to write users, created in PCM600, to the IED.
In order to allow the IED to communicate with PCM600 when
users are defined via the IED Users tool, the access rights
"UserAdministration" and "FileTransfer — Limited" must be
applied to at least one user.
"DB Access normal" and "File Transfer — Limited" are required
for PCM600 access to the IED.
Password policies
Only ASCII characters are allowed when typing username or password. Currently
passwords in the range 32-126 and 192-383 (ASCII ranges, decimal) are supported.
Password policies are set in the IED Users tool in PCM600. There are several
options for forcing the password safer.
•
Minimum length of password (1 - 18)
•
Require lowercase letters ( a - z )
•
Require uppercase letters ( A - Z )
•
Require numeric letters ( 0 - 9 )
•
Require special characters ( !@#+"*%&/=? )
•
Password expiry time (default 90 days)
To achieve IEEE 1686 conformity, a password with a minimum
length of 8 characters must be used, and the square Enforce
Password Policies shall be ticked.
After password expiry the user is still able to login, but a warning
dialog will be displayed on the Local HMI. Also a security event
will be issued.
IEC13000233-1-en.vsd
IEC13000233 V1 EN-US
Figure 5:
Password expiry warning dialog
Local user account management
Section 4
GUID-01918A5B-726C-4FC8-8644-424A83B26090 v3
25
Advertisement
Table of Contents
