Authorization Check Plug-in, Basics
Advantages and Overview
The authorization check plug-in allows setting access rights on data point element level (data point values). Therefore only authorized managers and users can access specific parts of the SCADA system. The access rights are set via a central engineering interface. The following scenarios are possible:
-
Data protection: to protect the data, only authorized users may view, read or write values of data point elements. The rights are specified via roles. Different user roles may possess different rights for the same data point types and data points.
-
Exclusion of effects: standard WinCC OA managers may, e.g., only read, and write on data points that are important for the functionality of the specific manager. This protects other data points.
-
Secure project integrity: manager parameters are checked before a server accepts the connection request of a client to the server. This guarantees that only authorized users may open the UI in GEDI, PARA or extended mode.
For how to use the plug-in, see chapter requirements and installation.