EcoStruxure Building Operation software has a number of features that helps you increase the security in your system.
You can configure the devices that are allowed to communicate with the automation server to prevent connection attempts from unauthorized devices. The IP addresses of the devices that are allowed to communicate with the automation server are added to the whitelist.
For more information, see Firewall .
You can increase the password security by configuring a password policy that defines how passwords must be created by the users.
For more information, see Password Policy .
For security reasons, the default setting is for WebStation to not be embedded in another web site and for other contents to not be embedded in WebStation. However, you can change this security setting in WorkStation.
For more information, see Security Configuration in WebStation .
The automatic logoff function makes it possible for the system to automatically log off a user after a specified time of inactivity.
For more information, see Automatic Logoff .
A security banner is displayed when a user enters a secure system. The security banner notifies the user of the legal rights connected to the use of the information in the secure system.
For more information, see Security Banner .
The EcoStruxure Building Operation software supports certificates. Certificates are electronic credentials that are used to certify the identities of computers, and other entities on a network.
For more information, see Certificates .
You can increase the security between the Device Administrator and automation servers using certificates and SSL security configuration.
For more information, see Certificates and SSL Security in Device Administrator .
To increase the security of your data, you can disable incoming HTTP communication and allow only high security communication.
For more information, see Encrypted Communication .
You can log all web server HTTP access to the Enterprise Server and the Enterprise Central.
For more information, see Web Server Access Logging .
You can log all successful and unsuccessful attempt to log on to your automation server.
For more information, see Automation Server Remote System Logging .
To prevent data transfer over the cloud server, you can disable the transfer of system information and crash information of the Enterprise Central and the Enterprise Server and its automation server.
For more information, see Connect Agent Overview .
You can increase the security in your system by configuring the document policy. The document policy controls which file types a user can open, save, and import.
For more information, see Document Policy .
You can disable port 22 and the USB ports on the automation server.
For more information, see Disable Automation Server Ports .
Change Control is a way to require that a user add a comment and signature for changes made in the system.
For more information, see Change Control .