5-18 G30 Generator Protection System GE Multilin5.2 PRODUCT SETUP 5 SETTINGS5Security Alarm SettingsCYBERSENTRY SETTINGS THROUGH THE FRONT PANELPATH: SETTINGS PRODUCT SETUP SECURITYLOGIN: This setting is applicable for Device Authentication only. This setting allows a user to login with a specific role, seedescriptions below. For the Supervisor role, the “Supervisor Role” setting should be enabled.Whenever a new role is logged in, the user is prompted with a display to enter a password. Passwords must obey therequirements specified at the beginning of the chapter in the Password Requirements section.The UR device supports fiveroles. All roles have their corresponding passwords. The Observer role is the only role that does not require a password.The roles are defined as follows:• Administrator: Complete read and write access to all settings and commands. This role does not allow concurrentaccess. This role has an operand to indicate when it is logged on.• Engineer: Complete read and write access to all settings and commands with the exception of configuring Security set-tings and Firmware upgrades. This role does not allow concurrent access.• Operator: The Operator has read/write access to all settings under the command menu/section. This role does notexist offline.• Supervisor: This is only an approving role. This role’s authentication commits setting changes submitted by Administra-tor or Engineer. The Supervisor role authenticates to unlock the UR relay for setting changes and not approve changesafter the fact. Only Supervisor can set the Settings and Firmware Lock in the Security Settings. This role also has theability to forcefully logoff any other role and clear the security event log. This role can also be disabled, but onlythrough a Supervisor authentication. When this role is disabled its permissions are assigned to the Administrator role.SETTING NAME DESCRIPTION / DETAILS MIN MAX DEFAULT UNITS MINIMUMPERMISSIONSFailedAuthenticationsA threshold number indicating when an alarm isset off to indicate too many failed authenticationattempts0(disabled)99 3 - AdministratorFirmware lock A Boolean value indicating if the device canreceive a firmware upgrade. If Yes and afirmware upgrade attempt is made, the devicealarm activates. If No the device alarm does notactivate. On each firmware upgrade this settinggoes back to the default.No Yes Yes - AdministratorSettings lock A Boolean value indicating if the device canaccept any settings changes. If Yes and asettings change attempt is made, the devicealarm activates. If No, the device alarm does notactivate.No Yes Yes - Supervisor(Administrator ifSupervisor hasbeen disabled) SECURITYLOGIN:NoneRange: Administrator, Engineer, Supervisor,Operator, Factory (for factory use only), NoneMESSAGE CHANGE LOCAL PASSWORDS See belowMESSAGE SESSION SETTINGS See page 5–19.MESSAGE RESTORE DEFAULTS See page 5–19.MESSAGE SUPERVISORY See page 5–20.MESSAGE SYSLOG IP ADDRESS:0.0.0.0Range: 0.0.0.0, 255.255.255.255MESSAGE SYSLOG PORT NUMBER:514Range: 1 to 65535
