Authorization - ABB Relion SAM600-IO Operation Manual
Switchgear control unit
Hide thumbs
Also See for Relion SAM600-IO:
- Protocol manual (108 pages) ,
- Installation manual (54 pages) ,
- Operation manual (100 pages)
Table of Contents
Advertisement
1MRK 500 131-UEN Rev. C
4.7
Authorization
User roles with different user rights are predefined in the IED. It is recommended to use user defined
users instead of the predefined built-in users.
The IED users can be created, deleted and edited only with PCM600. One user can belong to one or
several user roles. By default, the users in Table
users, the predefined roles from Table
Table 7:
User name
SuperUser
Guest
Administrator
Table 8:
User roles
VIEWER
OPERATOR
ENGINEER
INSTALLER
SECADM
SECAUD
RBACMNT
ADMINISTRATOR
Switchgear control unit SAM600-IO
Operation manual
At delivery, the IED user has full access as SuperUser until users are created with
PCM600.
Default users
User rights
Full rights, only presented in LHMI. LHMI is logged on by default until other users are defined
Only read rights, only presented in LHMI. LHMI is logged on by default when other users are
defined (same as VIEWER)
Full rights. Password: Administrator. This user has to be used when reading out disturbances
with third party FTP-client.
Predefined user roles according to IEC 62351-8
Role explanation User rights
Viewer
Operator
Engineer
Installer
Security
administrator
Security auditor
RBAC
management
Administrator
rights
Changes in user management settings do not cause an IED reboot.
After three consecutive failed login attempts the user will be locked out for ten
minutes before a new attempt to login can be performed. This time is settable 10
minutes to 60 minutes.
The PCM600 caches the login credentials after successful login for 15 minutes.
During that time no more login will be necessary.
© 2017 - 2021 Hitachi Power Grids. All rights reserved
7
are created in the IED, and when creating new
8
can be used.
Can read parameters and browse the menus from LHMI
Can read parameters and browse the menus as well as perform control
actions
Can create and load configurations and change settings for the IED and
also run commands and manage disturbances
Can load configurations and change settings for the IED
Can change role assignments and security settings. Can deploy
certificates.
Can view audit logs
Can change role assignment
Sum of all rights for SECADM, SECAUD and RBACMNT
This User role is vendor specific and not defined in
IEC 62351–8
Section 4
Overview
GUID-981A881D-9229-45E8-9EE5-D6DF2CA457E5 v6
21
Advertisement
Table of Contents
