6 PW7K Security Manual @Honeywell Inc
Authorized IP Addresses
Restrict accessing the controller’s host communication port. When there are only
one or two IP addresses accessing the controller’s host communication port, you
can restrict where this connection originates. This filter applies to the communica-
tion port established by a host application configured in IP Server (host initiated
connection) mode. In an IP Client (controller initiated connection) mode, the
authorized IP addresses are programmed into the controller by the host applica-
tion.
Refer to the PW7K user guide for detailed steps to configure “Authorized IP
Address”.
Information Services
Prevent discovery services through implementing the following guidelines.
Disable Discovery
By default the controllers supports device discovery utilizing Zeroconf through ser-
vices on Windows® and Linux like Apple® Bonjour® and mDNSResponder. Once the
controller is installed and configured it is recommended to turn-off discovery. This
prevents someone with access to the same network from discovering the control-
lers.
Refer to the PW7K User manual for detailed steps for disabling Zeroconf Discovery.
Disable SNMP
By default, SNMP is disabled. If SNMP is not used, leave this setting disabled.
Refer to the PW7K User manual for detailed steps for disabling SNMP.
Disable USB
USB interface is used to add additional Ethernet interface using “USB to Ethernet
adapter”. It is Always recommended to disable USB interface unless used for the
additional Ethernet interface.
Refer to the PW7K User manual for details steps for disabling USB interface.
Disable SD Card
SD card interface is used for uploading debug and crash dumps and piv CLASS
embedded authentication database upcoming features, so it is always recom-
mended to disable SD card interface. Refer to the PW7K User manual for details
steps for disabling SD card.
To Next Page
Loading...
