0% found this document useful (0 votes)
85 views2 pages

Secon 121

The following user groups and registry settings will be created and modified to administer Siemens TIA products. Specific firewall settings will also be adjusted to allow access to Siemens applications from all computers on the subnet and domain. File system permissions will be set on Siemens installation directories to give the "Siemens TIA Engineer" user group full access while restricting other users.

Uploaded by

Qasim Khan
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as RTF, PDF, TXT or read online on Scribd
0% found this document useful (0 votes)
85 views2 pages

Secon 121

The following user groups and registry settings will be created and modified to administer Siemens TIA products. Specific firewall settings will also be adjusted to allow access to Siemens applications from all computers on the subnet and domain. File system permissions will be set on Siemens installation directories to give the "Siemens TIA Engineer" user group full access while restricting other users.

Uploaded by

Qasim Khan
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as RTF, PDF, TXT or read online on Scribd
You are on page 1/ 2

The following user groups will be created

"Siemens TIA Engineer" (Administration of Siemens TIA products)

The following registry settings and rights will be set


HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\SIEMENS\STEP7\2.0\Applications\S7CNFX\SubstituteGsdFiles
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Siemens\Step7\2.0\Applications\S7info\SETUP ATTRIBUTES
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Siemens\Step7\2.0\General\Errors
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Siemens\STEP7\2.0\General\Languages
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Siemens\Step7\2.0\general\SdbServices\S7hwx
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Siemens\STEP7\S7REGSX

The following firewall settings will be modified


Adaptive Server Anywhere Database Engine
C:\Program Files (x86)\Common Files\Siemens\SQLANY\Dbeng9.exe
Network access range: All computers
Adaptive Server Anywhere Network Server
C:\Program Files (x86)\Common Files\Siemens\SQLANY\Dbsrv9.exe
Network access range: All computers
Automation License Manager Service
C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe
Network access range: Subnet
SIEMENS STEP7 Block Administration
C:\Windows\system32\S7otbxsx.exe
Network access range: All computers
SIEMENS STEP7 S7InfoBox
C:\<INSTALLDIR>SIEMENS\STEP7\S7INF\S7usiapx.exe
Network access range: All computers
SIEMENS STEP7 SIMATIC Manager
C:\<INSTALLDIR>SIEMENS\STEP7\S7BIN\S7tgtopx.exe
Network access range: All computers

The following file system rights will be set


C:\<INSTALLDIR>SIEMENS\STEP7\S7Bin
+ Inherit from parent the permission entries that apply to child objects. Include these with entries explicitly defined
here.
+ Replace permission entries on all child objects with entries shown here that apply to child objects.
Rights for this folder, subfolders and files will be adjusted
"Siemens TIA Engineer" Allow Deny
Full access - -
Browse folders / execute file + -
List folder contents / read data + -
Read attributes + -
Read extended attributes + -
Create files / write data - -
Create folders - -
Write attributes - -
Write extended attributes - -
Delete subfolders and files - -
Delete - -
Read permissions + -
Change permissions - -
Take ownership - -
C:\<INSTALLDIR>SIEMENS\STEP7\s7wbx
+ Inherit from parent the permission entries that apply to child objects. Include these with entries explicitly defined
here.
+ Replace permission entries on all child objects with entries shown here that apply to child objects.
Rights for this folder, subfolders and files will be adjusted
"Siemens TIA Engineer" Allow Deny
Full access - -
Browse folders / execute file + -
List folder contents / read data + -
Read attributes + -
Read extended attributes + -
Create files / write data - -
Create folders - -
Write attributes - -
Write extended attributes - -
Delete subfolders and files - -
Delete - -
Read permissions + -
Change permissions - -
Take ownership - -

You might also like