Configuring UCOS Security

In addition to operating system security, UCOS provides a flexible set of security functions and easy-to-use dialog boxes for defining security.

Certain functions are pre-defined as secure, that is they are protected from unauthorized use. These functions can be used only if the logged-in user has security clearance to use them.

All run-time project screens are also considered secure. However, the level of security can vary from screen to screen and from workstation to workstation. A user may have access to a given screen on one workstation and no access to that same screen on a different workstation.

Security access is configured via security groups. Each user belongs to one security group. The security group determines which secure functions a member has access to:

• Starting and stopping a project in run-time
• Archiving data and accessing that data
• Sending commands and setpoint changes
• Acknowledging alarms
• Toggling tags on- and off-scan
• Manually overriding tag values in diagnostic mode
• Developing a project
• Configuring security
• Accessing project screens in run?time

Each security group can be assigned to one or more workstations. As a result, you can customize security for individual workstations.

When a user logs in to a workstation, he or she can use any secure function that was enabled for his or her associated security group on that workstation.

In addition, any Engineering Workstation (development) and Operator Workstation (run-time) can be configured to automatically log off after a user-specified number of minutes of inactivity, that is no keyboard or mouse activity. This adds another level of security that is independent of the operator.