User roles
Role explanation User rights
SECAUD
Security auditor
Can view audit logs
RBACMNT
RBAC
management
Can change role assignment
ADMINISTRATOR
Administrator
rights
Sum of all rights for SECADM, SECAUD and RBACMNT
This User role is vendor specific and not defined in
IEC 62351–8
Changes in user management settings do not cause an IED reboot.
After three consecutive failed login attempts the user will be locked out for ten
minutes before a new attempt to login can be performed. This time is settable
10 minutes to 60 minutes.
The PCM600 caches the login credentials after successful login for 15 minutes.
During that time no more login will be necessary.
Table 12: Authority-related IED functions
Function
Description
Authority status
ATHSTAT
This function is an indication function block for user logon activity.
User denied attempt to log-on and user successful logon are reported.
Authority check
ATHCHCK
To safeguard the interests of our customers, both the IED and the tools that are
accessing the IED are protected, by means of authorization handling. The
authorization handling of the IED and the PCM600 is implemented at both access
points to the IED:
•
local, through the local HMI
•
remote, through the communication ports
The IED users can be created, deleted and edited only in the CAM server.
Authority
management
AUTHMAN
This function enables/disables the maintenance menu. It also controls the
maintenance menu log on time out.
For more information on Authority management AUTHMAN, Authority status ATHSTAT, and
Authority check ATHCHCK functions, see Chapter Basic IED functions in technical manual.
At delivery, the IED has a default user defined with full access rights. PCM600 uses this default
user to access the IED. This user is automatically removed in IED when users are defined via
the IED Users tool in PCM600.
Default User ID: Administrator
Password: Administrator
Section 4
1MRK 500 127-UEN D
Overview
28
670 series
Operation manual
