Requirements for Identification and Authorization

Requirements for Identification and Authorization
Product
Required to Meet IEC-62443-4-2 SL 1
Details
FactoryTalk® Security
 software
Studio 5000 Logix Designer®
 application
Yes
Configure
FactoryTalk® Security
 to define policies, user groups, and other permission sets.
  • The
    Studio 5000 Logix Designer®
     application enforces the policy based on the access policies that are provided to it by
    FactoryTalk® Security
     for the software authenticated user. Once authenticated, the
    Studio 5000 Logix Designer®
     application acts as your interface to the drives via the controller. This applies to all protected CIP™ communications to the drive, whether from Ethernet, backplane, or USB.
  • The
    FactoryTalk® Services Platform
     offers feature access control to manage user access to product features such as controller download, project import, project create, and firmware update.
For more information, see the following:
  • Configure System Security Features User Manual, publication SECURE-UM001
  • FactoryTalk Security System Configuration Guide, publication FTSEC-QS001
Microsoft® Active Directory service
Yes
Active Directory is used to create and configure the policies for each user and user group.
  • Create at least two user types and assign a minimum level of user permission for each type.
  • Enforces the password policy according to industry password standard.
  • Define the user account access settings.
  • Define the System use notifications settings.
  • Define the System inactivity lockout setting.
For more information, see the following:
  • Configure System Security Features User Manual, publication SECURE-UM001
Provide Feedback
Have questions or feedback about this documentation? Please submit your feedback here.
Normal