基于角色的 EIFE 网页访问控制
RBAC 定义
基于角色的访问控制是一种基于用户的为实施访问而获授的定义角色来分配不同访问等级的方式。
角色定义
为远程访问定义了以下角色:
-
Security Administrator (SECADM)
-
Engineer
-
Installer
-
Operator
-
Viewer
每个角色都包含授予 EIFE 接口用户的一组权限。根据角色,用户将仅能够访问授权的网页。
每个角色的权限
用户可以使用 CAE 配置工具修改每个角色的权限。
下表介绍了每个角色的缺省权限:
|
权限 |
角色 |
||||
|---|---|---|---|---|---|
|
Viewer |
Engineer |
Operator |
Installer |
Security Administrator |
|
|
维护信息 读取 |
– |
✔ |
✔ |
✔ |
– |
|
维护设置写入 |
– |
✔ |
– |
✔ |
– |
|
维护控制写入 |
– |
✔ |
✔ |
✔ |
– |
|
公共信息读取 |
✔ |
✔ |
✔ |
✔ |
✔ |
|
设备测量信息读取 |
✔ |
✔ |
✔ |
✔ |
✔ |
|
设备测量设置写入 |
– |
✔ |
– |
✔ |
– |
|
设备测量控制写入 |
– |
– |
✔ |
– |
– |
|
设备设置写入 |
– |
✔ |
– |
✔ |
– |
|
设备信息读取 |
✔ |
✔ |
✔ |
✔ |
✔ |
|
通讯信息读取 |
– |
✔ |
✔ |
✔ |
– |
|
通讯设置写入 |
– |
✔ |
– |
✔ |
– |
|
通讯控制写入 |
– |
✔ |
– |
✔ |
– |
|
日期和时间设置写入 |
– |
✔ |
– |
✔ |
– |
|
日期和时间信息读取 |
✔ |
✔ |
✔ |
✔ |
✔ |
|
安全信息读取 |
– |
– |
– |
– |
✔ |
|
安全设置写入 |
– |
– |
– |
– |
✔ |
|
安全控制写入 |
– |
– |
– |
– |
✔ |
|
断路器控制写入 |
– |
– |
✔ |
– |
– |
|
断路器设置写入 |
– |
✔ |
– |
✔ |
– |
|
断路器信息读取 |
– |
✔ |
✔ |
✔ |
– |
|
保护信息读取 |
– |
✔ |
✔ |
✔ |
– |
|
保护设置写入 |
– |
✔ |
– |
✔ |
– |
|
保护控制写入 |
– |
✔ |
– |
✔ |
– |
|
输入输出信息读取 |
– |
✔ |
✔ |
✔ |
– |
|
输入输出设置写入 |
– |
✔ |
– |
✔ |
– |
|
输入输出控制写入 |
– |
✔ |
– |
✔ |
– |
|
安全日志信息读取 |
– |
– |
– |
– |
✔ |
|
安全日志设置读取 |
– |
– |
– |
– |
✔ |
|
安全日志设置写入 |
– |
– |
– |
– |
✔ |