Managing Users on the Controller

For devices that support an ‘online user management’, the device editor includes the tabs Users and Groups and Access Rights. Here you can manage user accounts and assign rights with which certain user groups may access objects on the controller at runtime.

The device-specific user management can be predefined by the device description. In addition, it depends on the device description whether you can edit the preset definitions in the configuration dialog boxes in CODESYS.

As in the project user management, users must be members of user groups and only user groups can be granted certain access rights.

Attention

:strong:Recommendations for data security

In order to minimize the risk of breaches of data security, we recommend the following organizational and technical measures for the system on which your applications run: As far as possible, avoid exposing the PLC and control networks to open networks and the Internet. For protection, use additional data link layers such as a VPN for remote access and install firewall mechanisms. Limit access to authorized persons, change any existing standard passwords during the initial commissioning and continue to change them regularly.

Note

Pay attention to the commands in the menu Online ‣ Security. They enable the simplified addition, editing or removal of a user account on the controller to which you are currently logged in.

1. Double-click on the control device object in the device tree.

   ⇒

   The device editor opens.

2. Click on the tab Users and Groups.

3. Proceed as described for the project user management.

1. Double-click on the control device object in the device tree.

   ⇒

   The device editor opens.

2. Click on the tab Access rights.

3. Proceed as described for the project rights management.

See also

• Configuring Devices and Mapping I/Os
• Tab ‘Users and Groups’
• Tab ‘Access Rights’