Access control and user administration. Siemens TIA Portal V13

SIMATIC WinCC TIA Portal V13 is a comprehensive software suite designed for the automation of processes in a GMP environment. It offers a wide range of features and functionalities that enable users to configure, operate, and manage complex automation systems in compliance with pharmaceutical regulations.

PDF

Document

Requirements for Computer Systems in the GMP Environment

2.5 Access control and user administration

To ensure the security of computer systems in the GMP environment, these systems should be equipped with an access control system. In addition to physical access control, access control systems protect computer systems against unauthorized access Users are assembled into groups, which are then used to manage user permissions.. Individual users can be granted access authorization in various ways:

• Combination of a unique user ID and password

• Chip cards together with a password

• Evaluation of biometric features

In general, actions that can be executed on a computer system must be protected against unauthorized access. Various rights can be assigned to users depending on their duties. Access to the user administration should only be given to the system owner or to a very limited number of employees defined by the system owner. Furthermore, it is absolutely essential that unauthorized access to electronically recorded data is prevented.

The use of an automatic logout function is advisable and provides additional access protection. This does not, however, absolve the user from the general responsibility of logging off when exiting the system. The automatic logout time should be defined in the specification in agreement with the system owner.

Note

Only authorized persons should be allowed access to PCs or the computer system. This can be supported with appropriate mechanisms such as mechanical locking and through the use of hardware and software for remote access.

2.5.1 Requirements for user ID and password

User ID

The user ID for a system should have a minimum length defined by the customer and be unique within the system.

Password

When passwords are created, a minimum number of characters and of the expiry period of the password should be defined. A password should generally comprise a combination of characters with a minimum length and should also meet at least three of the criteria listed below.

• Use of uppercase letters

• Use of lowercase letters

• Use of numerals (0-9)

• Use of special characters

The configuration is decribed in chapter 4.4 “Setting up the user administration for

HMI devices”.

SIMATIC WinCC (TIA Portal) V13 – GMP Engineering Manual

A5E35095213-AA

Key features

GMP compliant configuration
System specification and configuration
Validation support
Data backup and archiving
System updates and migration
Interface with SIMATIC S7
Process data recording

Frequently asked questions

The manual recommends observing regulations, guidelines, and recommendations from various national and international authorities like 21 CFR Part 11, EU GMP Guidelines Annex 11, and GAMP5.

It provides internal Siemens project teams with general information and templates for specifying validation strategies. These templates cover project planning documents, system specifications, and test documentation.

The manual follows the GAMP Guide, categorizing hardware into two groups: standard hardware components (Category 1) and non-standard hardware components (Category 2). It advises considering the complexity and criticality of the system for determining validation efforts.

The manual emphasizes the need for electronic records and signatures to be secure, auditable, and verifiable. It provides guidance on electronic signature implementation, including the use of digital certificates and time stamping.

It emphasizes the importance of regular data backups and system recovery procedures for ensuring data integrity. It also outlines the requirements for data archiving, including the need for secure storage, retrieval, and traceability.

User questions

John T.

How is Autostart configured for WinCC Runtime on HMI devices?

The configuration depends on the device type: 1. RT Professional: Use WinCC RT Start, select "Autostart" property, and consider disabling the "Allow Cancel" option. 2. RT Advanced: Use WinCC RT Loader (HMILoad.exe), specify the project path, and place a shortcut in the operating system's autostart folder. 3. Panels: The loader starts automatically; the delay for project activation is set in the Control Panel under Transfer > Directories.

Michael M.

What is the difference in scope between an HMI and a SCADA system?

An HMI (Human-Machine Interface) is limited to a single system or machine, focusing on immediate operator interaction. A SCADA (Supervisory Control and Data Acquisition) supervises and controls an entire, distributed industrial process, covering multiple control systems.

Michael M.

What is the difference between the TIA Portal platform and the SIMATIC WinCC software?

TIA Portal is the comprehensive software platform from Siemens for industrial automation. SIMATIC WinCC is specific software within TIA Portal responsible for process supervision, control, and visualization.

Michael M.

Where is the TIA Portal engineering software (including STEP 7 and WinCC Basic) installed, and what is its function regarding the PLC?

TIA Portal software is installed on the computer (PC) to perform engineering (programming and configuration). The control logic created in TIA Portal is loaded onto the PLC (Programmable Logic Controller) for execution, but the engineering software itself is not installed on the PLC.

James C.

What is the purpose of the GMP Engineering Manual for SIMATIC WinCC (TIA Portal) V13?

It aids in integrating SIMATIC systems into a GMP environment, considering requirements of agencies like 21 CFR Part 11 and EU GMP Guide Annex 11.

Michael M.

What is the function of the WinCC Runtime Advanced Simulator?

This tool allows the visualization application execution to be simulated in a virtual environment (on the computer), without the need to connect actual physical hardware.

2.5 Access control and user administration

2.5.1 Requirements for user ID and password

User ID

Password

What regulations and guidelines should be considered when configuring computer systems in a GMP environment?

What is the purpose of the Siemens Validation Manual?

How does the manual describe the categorization of hardware and software?

What are the requirements for electronic records and signatures?

How does the manual address data backup and archiving?

John T.

Michael M.

Michael M.

Michael M.

James C.

Michael M.

Related

西门子编程手册 | AI Chat & PDF 下载

西门子STEP 7 V5.2手册与AI Chat & PDF下载

Siemens Automation License Manager 编程和操作手册 | AI Chat & PDF Download

SIMATIC PCS 7 V8.0 GMP Engineering Manual

Siemens SIMATIC BATCH V7.1 SP1 Programming and Operating Manual

SIMATIC PCS 7 V7.1 GMP Engineering Manual

Siemens TIA Portal, WinCC Basic and STEP 7 Basic Readme

WinCC V7.0 SP1 MDM System Manual

Siemens WinCC Advanced V14 SP1 Options System Manual

SIMATIC STEP 7 V5.4 GMP-Engineering Manual

Siemens WinCC V7.4 System Manual

Siemens WinCC V7.4 Manual: AI Chat & Quick PDF