Manualshelf

User Manual

ManualsBrandsSiemens ManualsBuilding automationDesigo CC MP 5.0 BACnet Server, BACnet Protocol Implementation Conformance Statement (PICS), Basic Documentation
71727374757677787980
Cybersecurity Concepts How to Secure the System
Hardening Guidelines
3
76 | 85
A6V11646120_enUS_b_40
Connection for clients inside the customer network
Secured communication configured.
Segmented network.
Network firewalls configured and continuously
maintained.
Connection for clients outside the customer network
(Remote access)
Secured communication configured.
Segmented network.
Network firewalls configured and continuously
maintained.
DMZ configured.
Remote access
Through remote desktop and VPN
Clients in Internet Unrestricted to need to know.
Printers connectivity
Yes
IT skills of users
Low
IT skills of system administrators
Medium
IT skills of network administrators
High
IT skills of the installer (BT or VAP)
Medium
Field devices connectivity
Directly, through VLAN or customer networks:
customer is responsible for securing it. The
assumption is that the customer’s IT secures field
device connectivity.
Connection to other services (for example, OPC
servers and clients)
Directly, through VLAN or customer networks:
customer is responsible for securing it. The
assumption is that the customer’s IT secures field
device connectivity.
Client Windows login
No autologon or professional KIOSK mode.
Desigo CC users
Use Windows authentication only.
Desigo CC client options
Any client options