manualshive.com logo in svg

TAC Vista, Техническое руководство

Поделиться
Скачать
TAC Vista Скачать руководство пользователя страница 17

High Security Systems, Technical Manual4  Setting up Access Control Protection of Objects in the TAC Vista Database 

TAC AB, Nov 2006

17 (20)

04-00007-01-en

4

Setting up Access Control Protection 
of Objects in the TAC Vista Database

The user and user group objects as well as most other global objects are 
automatically protected by the "$ADMINISTRATORS" Vista group. 
This group is also defined as the owner of the database. It is not recom-
mended that you change these settings. It is preferable to control access 
to these objects through membership of the "PlantNT\Administrators" 
group.

When logging on as VistaAdmin, start by protecting all local (non-glo-
bal) objects using the ACL editor. From the beginning, all objects have 
the "Everyone Full Control (All)" ACL defined. This should be changed 
to "Everyone Read(R)" for all objects. Do this by choosing each top 
level unit in the database including the operator unit and set this ACL, 
having checked "Replace permissions on Sub units" and "Replace Per-
missions on Existing objects". Now all the database objects are pro-
tected from change by any user, although owners can still change the 
ACL of any object.

Now proceed with the parts of the database that should be open for 
change. The normal ACL for these objects can be:

Everyone Read (R)

PlantTAC\VistaFieldManagers ReadWrite (RW)

PlantTAC\VistaOperationManagers Change (RWXD)

If some users should not be able to see some objects at all, the above 
ACL could be combined with an entry like

PlantTAC\VistaUsers No Access (None)

On objects requiring a valid Electronic Signature and a "Reason for 
Change" information to be entered, the "Require Signature on DB-
Object change" must be checked. 

Select the Enforced acknowledge response required check box if you 
want to acknowledge alarms using cause and action codes.

Set up a backup schedule for the TAC Vista database

Both the Log and object database must be configured to perform auto-
matic backups. 

Make sure that the backups are saved on write-only media.

For more information on backups, see 

TAC Vista, Technical Manual

.

Содержание Vista

Страница 1: ...High Security Systems Technical Manual...

Страница 2: ......

Страница 3: ...High Security Systems Technical Manual...

Страница 4: ...ment Only licensed users of the product and the document are permitted to use the document or any information therein Distribution disclosure copying storing or use of the product the information or t...

Страница 5: ...1 Typographic Conventions 8 2 Basic Demands 9 2 1 System Topology and Configuration 9 2 1 1 TAC Xenta Protection 11 2 1 2 Functional Description 11 3 User s Guide for System Configuration 13 3 1 Setti...

Страница 6: ...Contents High Security Systems Technical Manual 6 20 TAC AB Nov 2006 04 00007 01 en...

Страница 7: ...n on how to install software we refer you to the instruc tions delivered with the software For information on third party products we refer you to the instructions delivered with the third party produ...

Страница 8: ...cal harm to you or to the hardware Caution Alerts you to possible data loss breaches of security or other more serious problems Important Alerts you to supplementary information that is essential to t...

Страница 9: ...manipulated or altered acciden tally or intentionally by any user of the system This also covers the transport of values from the sensors to the secure database System reliability System reliability e...

Страница 10: ...ted from being changed by the users of TAC Vista Only one user account should be registered as the Owner of the TAC Vista database No user should be given the right to change access to TAC Vista objec...

Страница 11: ...ns UPS backup on TAC Xenta units ensures uninterrupted local data logging Database backups secure the collected data at the TAC Vista level The database backups should be copied onto another media aut...

Страница 12: ...TAC Vista object databasee as well as the directories and files on the hard disk drive The system also protects the system from time change by a normal user However it should be noted that Vista stor...

Страница 13: ...gers group are supposed to have Change authority for some parts of the TAC Vista database They can change all programming and behavior of objects create and delete objects and so on They can also bloc...

Страница 14: ...the TAC Vista Setup program and select the Authority sheet 5 In the Vista security level area select High Level Use NT Accounts 6 In the Protected by account area select This Account and enter PlantT...

Страница 15: ...roup PlantTAC VistaAdministrators has automatically been created in the ACL editor and the users in this group can be expanded Note also that the users of this group have been added to the Vista group...

Страница 16: ...3 User s Guide for System Configuration High Security Systems Technical Manual 16 20 TAC AB Nov 2006 04 00007 01 en...

Страница 17: ...having checked Replace permissions on Sub units and Replace Per missions on Existing objects Now all the database objects are pro tected from change by any user although owners can still change the A...

Страница 18: ...4 Setting up Access Control Protection of Objects in the TAC Vista Database High Security Systems Technical Man 18 20 TAC AB Nov 2006 04 00007 01 en...

Страница 19: ......

Страница 20: ...their respective owners Information con tained within this document is subject to changewithout no tice All rights reserved 04 00007 01 en Europe Headquarters Malm Sweden 46 40 38 68 50 Americas Dall...

Отзывы:

Нет отзывов

Бренды по названию

Популярные бренды

Загрузить еще бренды