How to restrict OFS-DCOM connection to a specific user?
OFS Server can operate in remote mode (the OPC client and the server are on different machines connected by DCOM generally via TCP-IP)
To allow the connection for only a specific user, the following setting can be applied:
Steps to follow:
- From the Start menu, choose Run and run DCOMCNFG
- Expand Console Root/Component Services/Computers/My Computer and
- right-click My computer to open the My Computer Properties dialog.
- Click the Default Properties tab.
- The following parameters must be set:
- Enable Distributed Com on this computer must be checked,
- Default Authentication Level is set to Connect,
- Default Impersonation Level is set to Identify.
- Click the COM Security tab.
- Click the Edit Defaults in Access Permissions
- Click Add, add the user required (example: L3), click OK.
- Check that permissions for user required are:
- Local access: Allow checked.
- Remote access: Allow checked
- Delete « Everyone » if it exists
- Delete « INTERACTIVE » and « NETWORK » if it exists
- Click the Edit Defaults in Launch and Activation Permissions
- Click Add, add the user required (example: L3), click OK.
- Check that permissions for user required are:
- Local Launch: Allow checked.
- Remote Launch: Allow checked.
- Local Activation: Allow checked.
- Remote Activation: Allow checked.
- Delete « Everyone » if it exists
- Delete « INTERACTIVE » and « NETWORK » if it exists
Product line
OFS 3.63 SP3
Environment
Windows 10
Released for: Schneider Electric Belgium
Need help?
Get a Quote
Start your sales inquiry online and an expert will connect with you.
Where to buy?
Easily find the nearest Schneider Electric distributor in your location.
Help Center
Find support resources for all your needs, in one place.