8-4 D30 Line Distance Protection System GE Multilin8.1 PASSWORD SECURITY 8 SECURITY8The following access supervision settings are available.• INVALID ATTEMPTS BEFORE LOCKOUT: This setting specifies the number of times an incorrect password can beentered within a three-minute time span before lockout occurs. When lockout occurs, the LOCAL ACCESS DENIED orREMOTE ACCESS DENIED FlexLogic™ operands are set to “On”. These operands are returned to the “Off” state uponexpiration of the lockout.• PASSWORD LOCKOUT DURATION: This setting specifies the time that the D30 will lockout password access afterthe number of invalid password entries specified by the INVALID ATTEMPS BEFORE LOCKOUT setting has occurred.The D30 provides a means to raise an alarm upon failed password entry. Should password verification fail while accessinga password-protected level of the relay (either settings or commands), the UNAUTHORIZED ACCESS FlexLogic™ operand isasserted. The operand can be programmed to raise an alarm via contact outputs or communications. This feature can beused to protect against both unauthorized and accidental access attempts.The UNAUTHORIZED ACCESS operand is reset with the COMMANDS CLEAR RECORDS RESET UNAUTHORIZEDALARMS command. Therefore, to apply this feature with security, the command level should be password-protected. Theoperand does not generate events or targets.If events or targets are required, the UNAUTHORIZED ACCESS operand can be assigned to a digital element programmedwith event logs or targets enabled.The access level timeout settings are shown below.PATH: SETTINGS PRODUCT SETUP SECURITY ACCESS SUPERVISION ACCESS LEVEL TIMEOUTSThese settings allow the user to specify the length of inactivity required before returning to the restricted access level. Notethat the access level will set as restricted if control power is cycled.• COMMAND LEVEL ACCESS TIMEOUT: This setting specifies the length of inactivity (no local or remote access)required to return to restricted access from the command password level.• SETTING LEVEL ACCESS TIMEOUT: This setting specifies the length of inactivity (no local or remote access)required to return to restricted access from the command password level.8.1.6 DUAL PERMISSION SECURITY ACCESSPATH: SETTINGS PRODUCT SETUP SECURITY DUAL PERMISSION SECURITY ACCESSThe dual permission security access feature provides a mechanism for customers to prevent unauthorized or unintendedupload of settings to a relay through the local or remote interfaces interface.The following settings are available through the local (front panel) interface only.• LOCAL SETTING AUTH: This setting is used for local (front panel or RS232 interface) setting access supervision.Valid values for the FlexLogic™ operands are either “On” (default) or any physical “Contact Input ~~ On” value.If this setting is “On“, then local setting access functions as normal; that is, a local setting password is required. If thissetting is any contact input on FlexLogic™ operand, then the operand must be asserted (set as on) prior to providingthe local setting password to gain setting access. ACCESS LEVEL TIMEOUTSCOMMAND LEVEL ACCESSTIMEOUT: 5 minRange: 5 to 480 minutes in steps of 1MESSAGE SETTING LEVEL ACCESSTIMEOUT: 30 minRange: 5 to 480 minutes in steps of 1 DUAL PERMISSION SECURITY ACCESSLOCAL SETTING AUTH:OnRange: selected FlexLogic™ operands (see below)MESSAGE REMOTE SETTING AUTH:OnRange: FlexLogic™ operandMESSAGE ACCESS AUTHTIMEOUT: 30 min.Range: 5 to 480 minutes in steps of 1