NOTICE
Recommendations for data protection
In order to minimize the risk of data security violations, we recommend the following organizational and technical actions for the system where your applications are running. Whenever possible, avoid exposing the PLC and control networks to open networks and the Internet. Use additional data link layers for protection, such as VPN for remote access, and install firewall mechanisms. Restrict access to authorized persons only and change any existing default passwords during the initial commissioning as well as in regular intervals.
On this tab of the ⮫ generic device editor, you edit the device user management of the PLC.
Depending on how it is supported by the device, you can define user accounts and user groups. In combination with the configuration on the “Access Rights” tab, you thus control access to control objects and files at runtime.
Requirements: The controller has a ⮫ user management and allows it to be edited. You have login data in order to be able to log in to the controller.
It is possible to apply user account definitions from the project user management into the device user management (see below: “Import” button).
|
All currently defined users, and below them their memberships of user groups, are listed in a tree structure. |
|
|
|
Opens the “Add User” dialog for creating a new user account. For a description of the dialog, see below on this page. |
|
|
Opens the “Import User” dialog. The dialog displays all the user accounts defined in the project user management. Select the desired entries and click “OK” in order to import them into the device user management. CAUTION: The passwords are NOT applied. |
|
|
Opens the “Edit User <user name>” dialog The dialog corresponds to the “Add User” dialog and you can change the settings of the user account. |
|
|
Deletes the account of the currently selected user |
: |
All currently defined groups, and below them the users assigned to them, are listed in a tree structure. |
|
|
|
Opens the “Add Group” dialog Define a new group name. From the list of defined users, select those that are to belong to the group. Click “OK” to confirm the selection. The group is displayed in the tree. |
|
|
Opens the “Import User” dialog. The dialog displays all the user groups defined in the project user management. Select the desired entries and click “OK” in order to import them into the device user management. |
|
|
Opens the “Edit Group <group name>” dialog The dialog corresponds to the “Add Group” dialog where you can change the group definition. |
|
|
Deletes the currently selected group |
|
“Name” |
Name of the new user |
|
“Default group” |
List box with all configured user groups Every user has to belong to at least one group. You define this here as a "default group". |
|
“Password” |
|
|
“Confirm password” |
|
|
“Password strength” |
Password security in a range from “Very weak” to “Very good” |
|
“Hide password” |
|
|
“Password can be changed by the user” |
|
|
“Password must be changed at first login” |
|
|
“Password Policy” |
When the new password is entered, the rules which are valid but not yet applied are displayed in red. You can click the OK button to confirm the dialog only when all rules of the password policy are fulfilled. For more information about the runtime system password policy, see: ⮫ type conversion operator |
: The password is shown only with asterisks "*" when it is typed in.
-
See also: ⮫ Access Rights, ⮫ Access Rights, ⮫ Access Rights