You can assign passwords in order to protect your SIPROTEC devices against unintended changes to the device or unauthorized operations from the device. Default password of DIGSI 4 and DIGSI 5 as well as password management in SIPROTEC devices are discussed in this article.
SIPROTEC 4 and DIGSI 4
SIPROTEC 4 passwords can only be changed by means of DIGSI 4. Proceed as follows in order to change an existing password. Select the password function and click on the Change command button. The Change Password dialog box is opened. Enter the old and the new password. An asterisk is displayed for each character you enter. As a confirmation enter the same sequence in the Confirm new password box. Confirm your entries by clicking on OK. Passwords are numbers with a length of up to 8 digits.
The following access authorizations are preset at the factory in DIGSI 4:
- Switching/tagging/updating (Password No. 1)
- Unlocked switching (Password No. 2)
- Test and diagnostics (Password No. 4)
- Hardware test menus (Password No. 6)
- Single parameters (Password No. 5)
- Parameter set (Password No. 7)
Note: Password protection against unauthorized access is only active during on-line operation. The passwords for changing settings are not activated until the settings are downloaded to the device. They are irrelevant in the Offline mode. In order to de-activate a password you have to know it!
At delivery all passwords are set by default to 000000. The passwords for the Web Monitor are an exception: Here the default setting is 000002 for “Full access”, 000001 for “Changes” and 000000 for “Read only”.
If you have forgotten your password for changing a parameter set, a temporary password can be obtained from SIEMENS hotline. This can be used to define a new user password for this function. Siemens hotline requires the registration number of your DIGSI 4 software package!
SIPROTEC 5 and DIGSI 5 Confirmation IDs and Connection Password
SIPROTEC 5 and DIGSI 5 Confirmation IDs and Connection Password
In SIPROTEC 5, there are no default passwords as in SIPROTEC 4. The Confirmation IDs in SIPROTEC 5 serve only as a safety measure. In terms of access control security, there’s the connection password feature as discussed in the this article. Additionally, comprehensive role-based access control (RBAC) with central user management in SIPROTEC 5 firmware version V7.80 is introduced . With RBAC enabled, users can log in with their existing, centrally managed user IDs and passwords directly into the SIPROTEC 5 IED. The IED authenticates the user’s credentials using the RADIUS protocol and identifies his roles (authorization) from the central server. This RBAC feature is based on IEC62351-8, complementing it is the built-in Syslog support in SIPROTEC 5. The IEDs can also log all security-relevant user actions in a central log server, thereby also providing higher transparency and detection capabilities on IED operations.
Confirmation IDs are used for protection against unintentional and unauthorized operation. If a confirmation ID is activated, enter it before the relevant action is enabled by the SIPROTEC 5 device. For this purpose, the confirmation ID is transmitted encrypted to the SIPROTEC 5 device, where it is checked. A similar method is used for a communication connection between the DIGSI 5 and a SIPROTEC 5 device. To protect access to the SIPROTEC 5 device, there is a password for establishing the connection.
Confirmation IDs and the connection password can only be modified with DIGSI 5 but not with the SIPROTEC 5 device. You can also deactivate confirmation IDs and the connection password. However, Siemens recommends only using them for commissioning. During normal operation, confirmation IDs and the connection password are always activated.
DIGSI 5 Confirmation IDs
A confirmation ID consists of no more and no fewer than 6 digits, which you can freely select. For the following areas, you can assign different confirmation IDs:
- Settings/operation : This confirmation ID controls access to parameter settings and process data. After installing DIGSI 5, the confirmation ID for this area has the default value 222222.
- Switching (process) :This confirmation ID controls access to the operational switching, in which the interlocking conditions are considered. After installing DIGSI 5, the confirmation ID for this area has the default value 333333.
- Switching (unlocked) : This confirmation ID controls access to the non-interlocked switching, in which the interlocking conditions are ignored. Switching without interlocking can be a safety risk and requires precise knowledge of conditions in the substation. Before you can switch without interlocking with DIGSI 5, DIGSI 5 must have switching authority. After installing DIGSI 5, the confirmation ID for this area has the default value 444444.
- Switching authority : This confirmation ID controls access for setting the switching authority. You can set the switching authority, such as on-site or remote operation, only with the key switch on the SIPROTEC 5 device. If the
- confirmation ID for the switching authority is activated, this is queried by activating the key switch on the SIPROTEC 5 device. After installing DIGSI 5, the confirmation ID for this area has the default value 666666.
If a confirmation ID is deactivated, this is not queried before running the relevant action. This can result in unintended or unauthorized operating actions and even in material damage and personal injury!
DIGSI 5 Connection Password
A connection password ensures secure remote access to a SIPROTEC 5 device. The password must meet certain requirements. A password must be at least 8 characters long. It must include at least 1 upper-case letter, 1 lower-case letter, 1 digit, and 1 special character. No connection password is configured in a SIPROTEC 5 device when it is delivered.
If a password is activated, it must be entered correctly before DIGSI 5 can access the SIPROTEC 5 device. An activated connection password applies to all interfaces of the SIPROTEC 5 device. Access by plug & play is also protected with the password. Incorrect password entry is logged in the SIPROTEC 5 device. After 3 incorrect password entries, an alarm can be output via a binary output. The accessing DIGSI 5 is also blocked for further accesses for a few minutes.
If the connection password is deactivated, it will is not queried before a connection is established. This enables unauthorized persons to establish a connection between DIGSI 5 and a SIPROTEC 5 device.