Authorization - ABB Relion 670 series Operation Manual

1MRK 500 127-UEN D
GUID-40BD0177-1CB8-48D6-B149-D25BD109C78F V1 EN-US
Figure 10: Example of a single-line diagram
4.2

Authorization

User roles with different user rights are predefined in the IED. It is recommended to use user
defined users instead of the predefined built-in users.
The IED users can be created, deleted and edited only with PCM600. One user can belong to
one or several user roles. By default, the users in Table
creating new users, the predefined roles from Table
Table 10:
User name
SuperUser
Guest
Administrator
Table 11:
User roles
VIEWER
OPERATOR
ENGINEER
INSTALLER
SECADM
Table continues on next page
670 series
Operation manual
At delivery, the IED user has full access as SuperUser until users are created
with PCM600.
Default users
User rights
Full rights, only presented in LHMI. LHMI is logged on by default until other users are
defined
Only read rights, only presented in LHMI. LHMI is logged on by default when other users are
defined (same as VIEWER)
Full rights. Password: Administrator. This user has to be used when reading out
disturbances with third party FTP-client.
Predefined user roles according to IEC 62351-8
Role explanation User rights
Viewer
Operator
Engineer
Installer
Security
administrator
IEC13000244-1-en.vsd
10 are created in the IED, and when
11 can be used.
Can read parameters and browse the menus from LHMI
Can read parameters and browse the menus as well as perform
control actions
Can create and load configurations and change settings for the IED
and also run commands and manage disturbances
Can load configurations and change settings for the IED
Can change role assignments and security settings. Can deploy
certificates.
Section 4
Overview
GUID-981A881D-9229-45E8-9EE5-D6DF2CA457E5 v5
27