×

Supercharge your Proficy solution! Download a free trial of Proficy Operations Hub, CSense analytics, and more. Explore our Proficy 2024 releases!

Home
Screens
CimView
Screen Security
About Screen Security
CimView screens can be signed using a valid X509 signing certificate with a private key and protected from being tampered. Screen security configuration must be performed by a system administrator and is not intended for a regular CimView user.

Important Product Information
Getting Started
Alarms and Messages
Addons and Options
Advanced Features
Event Management and Scripting
Device Communications
Networking
Open Interface API Reference
Process Systems with CIMPLICITY
Project Setup
Runtime
Screens
- About CIMPLICITY Screens
- CimEdit Configuration
- Navigation Configuration
- CimLayout
- CimView
  - About CimView
  - Screen Security
    - About Screen Security
      CimView screens can be signed using a valid X509 signing certificate with a private key and protected from being tampered. Screen security configuration must be performed by a system administrator and is not intended for a regular CimView user.
      - Check the Certificate's Format
      - Sign your Screens
        Once you have ensured that the certificate is in the PEM format, you can use that certificate to sign your screens by performing the following steps:
      - Copy the Certificate to Trusted Folder
      - Configure the Level of Check
        You must configure the level of check in the SecurityOptions.json file located at [Install location]\admin_data if you want the CimView to check for signed/trusted screens. The check is performed according to your configuration in the file, and relevant messages are shown as described in the Behavior for Signed vs Unsigned Screen Check topic.
      - Behavior for Signed vs Unsigned Screen Check
        When you open a screen and any linked objects or global scripts, CimView does a check based on the level of check that you specified in the SecurityOptions.json file located in [Install location]admin_data and shows relevant messages as given in the table below.
  - CimView Opened
  - Typical Windows Application Tasks Available in CimView
  - CIMPLICITY Runtime Features in CimView
  - Set Points or Variables
  - Help for a Selected Object
  - Standard Windows Features
Security
Tracker
Trend Charts

About Screen Security

CimView screens can be signed using a valid X509 signing certificate with a private key and protected from being tampered. Screen security configuration must be performed by a system administrator and is not intended for a regular CimView user.

Every time a user opens a signed screen, the CimView application checks for the certificate that was used to sign. If the certificate is not available along with the screen, a relevant warning is displayed based on the settings.

Note: By default, screen security is not enabled. As a system administrator, you can decide not to use the screen security functionality if it is not needed.

To secure a screen, you must perform the following:

Check the certificate format.
Sign the Screen.
Copy the certificate to the trusted folder on the machine to which you are deploying the signed screens.
Specify a signature verification that must be performed while a user opens the screen.

As an administrator, once you complete the configuration of the screen security, you can deploy those screens such that the users can open and view the screen securely using CimView.

Note: Ensure that the certificate's private key is not shared with other users while deploying the screen.