Configuring Security and Connection Settings for Original WebX Clients

As Original WebX clients connect to your system via the Internet or a company Intranet, extra security measures are required. To configure appropriate security settings for your Original WebX clients, you use a variety of displays, and have to configure some ViewX security settings as well as Original WebX-specific settings.

By using Geo SCADA Expert's security settings, you can control which features and items are available to users on Original WebX clients. You can also allow users to log on to Geo SCADA Expert via Windows or LDAP user accounts.

With suitable security settings in place, you can:

• Help to protect your system from unauthorized use
• Restrict access to certain features, so that users can only work with the settings that are appropriate to their duties and training.

Some of the settings that apply to ViewX clients also apply to  Original WebX clients. So if you have already configured the security settings for ViewX, you may not need to define all of the security settings again for  Original WebX. However, there are some settings that are specific to web clients which you will need to configure.

To configure the security settings for Original WebX clients, you need to use several different displays:

1. On the Server Configuration Tool:
   1. Use the Security section to:
      • Define the Default Security Settings for New User Accounts.
      • Configure the Super User Account.
   2. Use the External Authentication section to define the External Authentication settings (if you are Using External Authentication with Geo SCADA Expert).
   3. In the Permission Restrictions section use the WebX/Operator ViewX user denied permissions section to restrict access to permissions (and the features to which they relate) for Virtual ViewX and Original WebX users.

      

      For more information, see Define Whether any Permissions are Restricted.

   4. Use the WebX section to define the Original WebX-specific ports, proxy, security and certificates settings. For further information, see:
      
      • Define the Listen Port Settings for Original WebX Clients
      • Define the HTTPS Support for Original WebX Clients

        The HTTPS Support properties are deprecated and provided only as a fallback. The HTTPS Support properties will be removed in a future version of this product.

        For improved security, instead of using the settings that are configured in the HTTPS Support section, Original WebX clients are now expected to connect to an IIS reverse proxy which connects to the Listen Port (see Define the Listen Port Settings for Original WebX Clients).

      • Define the Local Proxy Settings for the Original WebX Server
      • Define the Network Proxy Settings for the Original WebX Server
      • Define the Access Settings for Non-Secure Original WebX Connections
      • Define the Idle Period Timeout for Original WebX Links.

      The WebX section of the Server Configuration Tool also includes settings that relate to display preferences on Original WebX clients . These settings do not relate to security. For more information, see WebX Server Settings in the Geo SCADA Expert Guide to Server Administration.

2. In ViewX:
   1. Define the security settings for the Web user.

      If you use Original WebX without logging on, Geo SCADA Expert logs you on as the Web user automatically. As the Web user, you are able to access features and displays in accordance with the configuration of the Web user’s settings and preferences. You can configure these settings by using the:

      • Options window (see Configuring the Guest User Account).
      • Guest User tab on the System Form (see Define the Global Settings for the Guest User Account).

   2. Add and configure user accounts (see User Accounts).
   3. Add and configure User Groups if required (see User Groups).
   4. Allocate suitable permissions to the user accounts and User Groups (see Allocating Security Permissions).