Safety Recommendations

File Protection

If Rapid SCADA is used in a corporate environment, ensure that other users do not have access to the Rapid SCADA installation directory. On Windows, open the properties of the directory containing Rapid SCADA applications, choose the Security tab, check and and configure access rights.

HTTPS

Configure a web server to enable HTTPS protocol for the Webstation application. Using HTTPS, all traffic between a browser and the web server, including passwords, is encrypted.

VPN

Use VPN to provide access for external users. If possible, avoid open access to Webstation from outside.

Passwords

Change the default passwords. To create strong passwords, use a password generator, for example, available here. If a company uses Active Directory, setting up Rapid SCADA user authentication based on Active Directory enhances system security.

Passwords to be set:

• User passwords in the Users table of the project.
• Password for connecting to the Server application in the Communicator and Webstation settings.
• Agent password, located in the ScadaAgentConfig.xml file.
• Password for connecting to the Agent application in the deployment profile.

Note: The user table stores password hashes. A password cannot be recovered from a hash code. XML configuration files contain encrypted passwords that are decrypted by applications during execution.