Please ensure Javascript is enabled for purposes of website accessibility
Powered by Zoomin Software. For more details please contactZoomin

AVEVA™ Plant SCADA

TABLE OF CONTENTS

Security Implications for Plant SCADA Simulations

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
  • Last UpdatedMay 30, 2024
  • 2 minute read

Virtual machines based on a Plant SCADA node are secured by default. This has the following implications:

  • Encryption Enabled

    Instances generated from a Development Workstation node will include a configured System Management Server (SMS) with encryption enabled. Connections to non-encrypted systems have been disabled by default.

    For multi-node systems, you will need to decide which virtual machine will act as your SMS. All other development nodes will then need to be configured to point to your nominated SMS. To do this:

    1. Open Configurator and go to the System Management Server page.

    2. Select No System Management Server connection, then the Configure button.

    3. When the changes have been confirmed, reconnect the virtual machine nominated as your System Management Server.

      Select Connect to an existing System Management Server and enter the virtual machine name of the SMS.

    Note: Integration Studio uses Windows workgroups. This means the limitations that apply to Plant SCADA when using workgroups will also apply here. For example, the Deployment Server must be on the same node as the SMS, and IPV6 is not supported.

  • Runtime clients in a multi-node system

    If your multi-node system includes a runtime client, the connection to the SMS will not be configured. Under these circumstances, you will need to:

    1. Connect the client to your nominated SMS on a Development Workstation node.

      You will need to type in the name of the node, it will not appear in the browse list.

    2. When prompted for credentials, you will need to specify the name and password of the user that connects to your nominated SMS. You can determine this by viewing the RDP connection dialog in Integration Studio.

      To connect a runtime client to the Deployment Server, you will need to go through the Deployment Client page in Configurator.

      When prompted for the username and password, use the credentials displayed on the RDP dialog of the node that hosts the Deployment Server. The required format of the username will be:

      <node name>\<username>

      If you only specify the username, the connection will not be successful.

  • Server Passwords

    The Server Authentication password is preconfigured with an automatically generated unique strong password.

    If you are running a multi-node system, you will need to set this to the same password on every node. To do this, go to the Plant SCADA | Computer Setup page in Configurator.

    The Deployment Server is also preconfigured with an automatically generated unique strong password.

    As an administrator, you can change the password without needing to know the generated password.

TitleResults for “How to create a CRG?”Also Available in