Configure Bi-Level Security With Security Switch - ABB XRC G5 User Manual

Hide thumbs Also See for XRC G5:

Startup manual (79 pages)

Quick start manual (2 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

Table of Contents

Recommendation

Secure access with

security switch

Configure Bi-level

security codes

Enable Role-Based

Access Control (RBAC)

Secure Network

connection

Secure Wi-Fi

access

Secure Bluetooth

access

Secure SSH/SFTP

access

Secure software

updates

Manage credentials

This procedure activates secured access to the XFC

of the onboard security switch and configuring bi-level security codes.

IMPORTANT NOTE: After this procedure is completed, connection to the XFC

restricted to users with the correct security codes. This procedure requires opening the

enclosure to access to the XFC

To enable security:

Open the XFC

the figure below.

Description

Turn the onboard security switch on to enforce authentication through

bi-level security codes or RBAC.

(See section

9.5 Configure bi-level security with security

Change default security codes to private codes (the default security

code for both level 1 and level 2 is 0000).

(See section

9.5 Configure bi-level security with security

Configure RBAC. (See section

(RBAC).)

Enable Role-Based access and enable authentication for each of the

communication ports.

The default RBAC passwords and security codes should be changed.

The device should only be connected to a protected (by firewall) private

network. It is not intended to be connected to the Internet.

Enable the Wi-Fi Access Point only when required.

The Wi-Fi Access Point should always be password-protected to enforce

authentication of Wi-Fi clients.

The default Wi-Fi Access Point password should be changed to a strong

and private password.

Enable Bluetooth only when required.

Enable RBAC authentication on the port.

authentication on communication ports.)

Enable the SSH/SFTP service only when required.

The default SSH/SFTP private keys should be changed for all accounts.

The SSH/SFTP private keys should always be passphrase-protected.

(See section

9.7 Secure the SSH/SFTP

Enable the Totalflow Software Update service only when required.

Limit the ability to enable/disable this service with RBAC.

All private credentials, keys, and security codes should be stored in safe

locations. Share private credentials, keys, and security codes only with

properly trained and authorized personnel.

Change or update private credentials, keys, and security codes as

needed.

or XRC

enclosure door and locate the onboard security switch (S1). See

9.6, Configure Role-Based Access Control

service.)

or XRC

by changing the default (OFF) position

board.

switch.)

(See 9.6.5 Enable RBAC

or XRC

2 1 0 60 26M NAA | XSER IE S

G 5

| 7 9

Table of Contents

This manual is also suitable for:

X g5 series Xfc g5

Configure Bi-Level Security With Security Switch - ABB XRC G5 User Manual

Related Manuals for ABB XRC G5

Related Content for ABB XRC G5

This manual is also suitable for:

Table of Contents