You can increase the security in your system by configuring the document policy. The document policy controls which file types a user can open, save, and import.
You configure the document policy by determining the permitted file extensions for the EcoStruxure BMS. A user cannot open, save, or import files with file extensions that are not on the list. A user can save a file without any file extension.
A user who browses the system to create or edit a document object can only see files with permitted file extensions and files without any file extension.
By default, the list of permitted file extensions contains the following file extensions:
avi
dfx
doc
docx
dwg
gif
htm
html
jpg
mp4
mpg
odt
pdf
png
rtf
txt
vsd
xls
xlsx
The permitted file extensions list configuration on an Enterprise Server is distributed to all automation servers in the EcoStruxure BMS.
You can add file extensions to, and delete file extensions from, the permitted file extensions list. If you have configured the list, it is preserved when you upgrade the EcoStruxure BMS.
If a file extension is not on the permitted file extensions list and a user performs a restore operation, the operation succeeds and the document object is restored, but it is no longer possible to open the document file. If the document file extension is added to the permitted file extensions list, it is possible to open and save the restored document file.
If you upgrade an older EcoStruxure BMS without a document policy, the upgraded system gets the default document policy.