GE Multilin G30 Generator Protection System 5-115 SETTINGS 5.2 PRODUCT SETUP5The UNAUTHORIZED ACCESS operand is reset with the COMMANDS CLEAR RECORDS RESET UNAUTHORIZEDALARMS command. Therefore, to apply this feature with security, the command level should be password-protected. Theoperand does not generate events or targets.If events or targets are required, the UNAUTHORIZED ACCESS operand can be assigned to a digital element programmedwith event logs or targets enabled.The access level timeout settings are shown below.PATH: SETTINGS PRODUCT SETUP SECURITY ACCESS SUPERVISION ACCESS LEVEL TIMEOUTSThese settings allow the user to specify the length of inactivity required before returning to the restricted access level. Notethat the access level will set as restricted if control power is cycled.• COMMAND LEVEL ACCESS TIMEOUT: This setting specifies the length of inactivity (no local or remote access)required to return to restricted access from the command password level.• SETTING LEVEL ACCESS TIMEOUT: This setting specifies the length of inactivity (no local or remote access)required to return to restricted access from the command password level.DUAL PERMISSION SECURITY ACCESSPATH: SETTINGS PRODUCT SETUP SECURITY DUAL PERMISSION SECURITY ACCESSThe dual permission security access feature provides a mechanism for customers to prevent unauthorized or unintendedupload of settings to a relay through the local or remote interfaces interface.The following settings are available through the local (front panel) interface only.• LOCAL SETTING AUTH: This setting is used for local (front panel or RS232 interface) setting access supervision.Valid values for the FlexLogic operands are either “On” (default) or any physical “Contact Input ~~ On” value.If this setting is “On“, then local setting access functions as normal; that is, a local setting password is required. If thissetting is any contact input on FlexLogic operand, then the operand must be asserted (set as on) prior to providing thelocal setting password to gain setting access.If setting access is not authorized for local operation (front panel or RS232 interface) and the user attempts to obtainsetting access, then the UNAUTHORIZED ACCESS message is displayed on the front panel.If this setting is "Off," firmware upgrades are blocked. If this setting is "On," firmware upgrades are allowed.• REMOTE SETTING AUTH: This setting is used for remote (Ethernet or RS485 interfaces) setting access supervision.If this setting is “On” (the default setting), then remote setting access functions as normal; that is, a remote password isrequired). If this setting is “Off”, then remote setting access is blocked even if the correct remote setting password isprovided. If this setting is any other FlexLogic operand, then the operand must be asserted (set as on) prior to provid-ing the remote setting password to gain setting access.If this setting is "Off," firmware upgrades are blocked. If this setting is "On," firmware upgrades are allowed.• ACCESS AUTH TIMEOUT: This setting represents the timeout delay for local setting access. This setting is applicablewhen the LOCAL SETTING AUTH setting is programmed to any operand except “On”. The state of the FlexLogic operandis continuously monitored for an off-to-on transition. When this occurs, local access is permitted and the timer pro-grammed with the ACCESS AUTH TIMEOUT setting value is started. When this timer expires, local setting access is ACCESS LEVEL TIMEOUTSCOMMAND LEVEL ACCESSTIMEOUT: 5 minRange: 5 to 480 minutes in steps of 1MESSAGE SETTING LEVEL ACCESSTIMEOUT: 30 minRange: 5 to 480 minutes in steps of 1 DUAL PERMISSION SECURITY ACCESSLOCAL SETTING AUTH:OnRange: selected FlexLogic operands (see below)MESSAGE REMOTE SETTING AUTH:OnRange: FlexLogic operandMESSAGE ACCESS AUTHTIMEOUT: 30 min.Range: 5 to 480 minutes in steps of 1
