Default User Account; Unique User Account - Honeywell Pro-Watch 7000 Security Manual

Default User Account

The Out-of-the-box PW7K panel is preloaded with default user credentials as
shown below:
•
•
The default user credentials are the same for all Mercury Security Controllers. To
prevent unauthorized use, on initial signing in with the above default login creden-
tials, it is recommended to remove default user login, create a unique user account
with a strong password. Refer to the PW7K User manual for details steps by step
instructions to manage users.
Note: Refer to the PW7K User manual for detailed steps for disabling Default User Account.

Unique User Account

Each user account in the PW7K system should represent a single user. Different
people should never share the same account. For example, rather than a general
"Supervisor" user account that many Supervisors could use, each supervisor
should have his own, separate account.
There are many reasons for each user to have his own individual account:
•
•
•
•
Each different user should have a unique individual account. Similarly, users
should never use accounts intended and used for running administrative services.
4
Username: admin
Password: password
If each user has his own account, audit logs will be more informative. It will be
easy to determine exactly which user did what. This can help detect if an account
has been compromised.
If an account is removed, it does not inconvenience many users. For example, if
a user should no longer have access to the PW7K System, deleting or disabling
his individual account is simpler. If it is a shared account, it makes the
administrator difficult to manage the account used by multiple users. The only
option would be to change the password and notify all users. Leaving the
account as-is not an option – the goal is to revoke the user's access.
If each user has his own account, it is much easier to tailor permissions to
precisely meet their needs. A shared account could result in users having more
permissions than they should.
A shared account means a shared password. It is an extremely bad security
practice to share passwords. It makes it much more likely for the password to be
leaked, and makes it more difficult to implement certain password best
practices.
PW7K Security Manual @Honeywell Inc