FOXMAN-UN Role-based Access Control

Application Notes : FOXMAN-UN Role-based Access Control - Application Note

FOXMAN-UN Role-based Access Control - Application Note

Introduction

RBAC stands for Role Base Access Control.

This chapter describes the RBAC implementation in FOXMAN-UN based on IEC 62351-8:2020 Role-based access control for power system management [1].

With the definition of roles you can define the access rights to some functionality and/or elements in the system.

These roles can be then assigned to FOXMAN-UN users, and therefore the users will inherite the permissions of the roles they are assigned to. This will define the way a user can interact with the system.

RBAC is a primary method to meet the security principle of least privilege, which states that no subject should be authorized more permissions than necessary for performing that subject’s task.

RBAC enables an organization to subdivide permissions and package them into special groups termed roles for assignment to specific individuals according to their associated duties.

The RBAC related UI can be opened by a FOXMAN-UN user with the appropriate permissions. From the NEM Desktop menu use either of the following applications to assign roles to users:

• Application > NEM Configurator…

Change to the “Role Based Access Control” tab. Click on the “Users” node of the tree structure. In the right-hand side window click the “+ Add” button. Select a user and assign the role(s) and possible exceptions. Apply the assignment.

• Application > Homepage…

From the application groups in the left panel select “Security”, then start the “User and Role Management” application. In the “User” tab click on “+ Create” in the ribbon. Select a user and assign the role(s) and possible exceptions. In the summary, apply the assignment to create the user.