94 • SMP Gateway User Manual
13.4.5 Groups and Privileges
In the following table, you will find default user groups and privileges. You can change a group's
privileges at will; of course, you have to upload the security database to the SMP Gateway
afterwards.
Note: If you remove privileges, you must notify the concerned groups or users;
otherwise, they will fill up the security log with access denial messages if they
keep trying to access the gateway.
Privilege Description Groups
Security
Management
Update security database: users, groups, and
privileges; unlock user accounts.
Administrators
System Management Update firmware, software, license and
components; configure redundancy, firewall,
VPN, RAS, SNTP, and SNNP; access Telnet
and FTP servers.
Administrators
Configuration Update the SMP Gateway’s configuration file. Administrators,
technicians.
Read only Read the SMP Gateway’s configuration file
only.
Administrators,
technicians, operators.
Diagnostic Use the SMP Gateway diagnostics tools. Administrators,
technicians, operators.
Device maintenance Perform direct IED maintenance via
passthrough connections.
Administrators,
protection engineers.
Monitoring Monitor and obtain web access to the
SMP Gateway’s central database.
Administrators,
technicians, operators,
guests.
Operation Perform control, tag management and force
operation on I/O points.
Administrators,
operators.
Remote access Obtain remote access via dial-up or VPN. Administrators,
technicians, protection
engineers, operators.
13.4.6 Editing User Groups and Privileges
Initially, your security database includes the following elements:
One predefined user, namely an administrator with full privileges.
5 predefined user groups, each with predefined privileges. Privileges are described in the
Local Security Database Editor, and in the “Groups and Privileges” section, above.
To Next Page
Loading...
