FAQ Tag: Security

“Maple Systems HMIs are not affected by CVE-2021-44228, also known as Log4shell, and related vulnerabilities including CVE-2021-45046 and CVE-2021-45105. Users of Maple Systems HMIs do not have to take any further action.”

Background

Disclosed on December 9, 2021, CVE-2021-44228 is an Apache Log4j vulnerability which may allow remote code execution (RCE) on the target system by an attacker. Apache Log4j is a universally used logging system for Java-based web and server applications, and due to its widespread usage, many systems and applications may be affected by this vulnerability.

Read More What is Log4j Vulnerability?

  The Enhanced or Basic security feature can indeed be used to control object visibility, as select objects can be hidden for different access levels.  Object visibility an also be controlled based on the status of a bit, which can be configured on the Security tab in the object attributes window.   

Read More How to control object visibility in EBPro

When first logging in to WebView or EasyWeb 2.0 you may get a message warning that the website’s certificate could not be verified. The exact wording and look of the message will depend on the browser you are using, but it will be something to the effect of: This is because the connection to the…

Read More When I log into WebView / EasyWeb I see a warning telling me the connection is not secure because it is using a Self-signed certificate. Is it safe to proceed?

In order to display the privilege of the current user, write a value of “13” to display privilege per Username or “14” to display privilege per User ID. Make sure either the username or user ID are loaded into the Security Control registers before sending the command to the command register.

Read More How can I display the User Privilege setting for Enhanced Security?

If you change the VNC password in the HMI System Settings window but it still retains the old password, it is because the project that is running in the HMI had the “Password from project” option checked in the System Parameters > Remote tab. When this option is checked, it overrides the password that is…

Read More Why will my VNC password not update in the HMI?

Refer links to our sample projects for basic and advanced Security, as well as videos for how to password-protect a screen on an HMI.

Read More How to password-protect a screen on an HMI

The security feature in the software contains many tools to restrict access to HMI screens, objects and functions. There are tools to manage passwords at run time, add users, update passwords and access levels, and create temporary users. Refer to the security chapter in the EBPro Programming Manual for a complete discussion of the security…

Read More What tools and/or features are available to restrict access to HMI screens, objects and functions?

Yes, you can replace the default startup screen on an HMI with one of your own choosing. The graphic file must be in a bitmap format (*.bmp). For best results, size the graphic so that it is the same size as the HMI screen in pixels. You can download your custom startup screen along with…

Read More Can I customize the Startup Screen on my Maple Systems HMI?

The arrow icon that appears (by default) in the bottom right corner of the HMI screen provides access to the HMI’s local settings. The default password (111111) should be changed to restrict local access to these settings. This password protects the VNC password, enable / disable option, project upload / download passwords and many other…

Read More How do I access the HMI’s local settings?

Yes, live video can be viewed directly on select Advanced and cMT HMI products. Video input options are IP (Ethernet) cameras and USB cameras. Video cannot be recorded, but still images may be captured from the live video. Images are captured via a bit trigger, making this feature ideal for capturing production or security events…

Read More Can I view live video on my Maple Systems HMI?

Object-level security in EBPro allows the programmer to show or hide objects on the screen, or control write-access to objects. Object-level security can be either via an Interlock function (the object is hidden unless a specified bit is set or clear) or via a user access level (only users with that level of security access…

Read More Security: What is Object-Level Security?

Yes, select models allow users to view a live video web stream on a remote computer from a USB video camera attached to the HMI. This is useful for monitoring a process or area of the manufacturing floor that is difficult to see from the operator’s position.

Read More Can I view a live video web stream from my Maple Systems HMI?