Honeywell 2101 - Manuals

Honeywell 2101 – User Manual, Manual in PDF format online.

Manuals:

User Manual
Manual

DocID (CS-HFCSE100en-2101A) 3 Table of contents ABOUT THIS SOFTWARE CHANGE NOTICE........................................................................ 5 Revision history ..................................................................................................................................

Page 4 - List of Figures

DocID (CS-HFCSE100en-2101A) 4 List of Figures F IGURE 1 H ONEYWELL F ORGE C YBERSECURITY S UITE BASIC ARCHITECTURE ....................................................... 9 T ABLE 1 D OCUMENTATION SET ......................................................................................................

Page 5 - About this Software Change Notice; Support

DocID (CS-HFCSE100en-2101A) 5 About this Software Change Notice Welcome to the Honeywell Forge Cybersecurity Suite 2101 (Jan 2021) release. A summary description of supported features, functionality and infrastructure are discussed later in this document and are described in more details in the user...

Page 6 - Revision history; Revision; Intended audience

DocID (CS-HFCSE100en-2101A) 6 Revision history Revision Supported Release Date Description A 2101 (Jan 2021) December 2020 Improve product security Add circular risk navigation, risk configuration export and import, VSE dark theme, VSE RAS, scanning sent files for threats Intended audience This guid...

Page 7 - Security Considerations; them and act to protect your plant.

SECURITY CONSIDERATIONS DocID (CS-HFCSE100en-2101A) 7 1. Security Considerations Security recommendations and best practices are outlined at the beginning of every Honeywell Forge Cybersecurity Suite user guide. Be sure to familiarize yourself with them and act to protect your plant. CAUTION Some Ho...

Page 8 - Product and Release Overview

PRODUCT AND RELEASE OVERVIEW CS-HFCSE100en-2101A 8 2. Product and Release Overview Honeywell Forge Cybersecurity Suite is an Operational Technology (OT) security management platform for securing Industrial Control Systems (ICS) / Supervisory Control and Data Acquisition (SCADA) environments. The Hon...

Page 11 - “Circular” Risk Navigation

PRODUCT AND RELEASE OVERVIEW CS-HFCSE100en-2101A 11 “Circular” Risk Navigation The VSE can now navigate to and directly focus on a specific active risk and present all affected assets by that risk; and vice-versa, navigate to and directly focus on an affected asset presents all active risks on that ...

Page 12 - Hardening Compliance

PRODUCT AND RELEASE OVERVIEW CS-HFCSE100en-2101A 12 Quarantined file is zipped with a password, and the system adds a new plain text file with the password. This prevents unintentional execution of a potentially malicious file. Included in Enterprise Core and Enterprise Premium. Hardening Compliance...

Page 13 - SYSLOG Report

PRODUCT AND RELEASE OVERVIEW CS-HFCSE100en-2101A 13 SYSLOG Report Create a sent and received SYSLOG files date and time report. Included in Enterprise Premium Offering. VSE Utilities When sending files out, compress them first. Better align time stamps when expanding incoming files, when receiving d...

Page 14 - the embedded and external databases.; Included in Enterprise Premium Offering.

PRODUCT AND RELEASE OVERVIEW CS-HFCSE100en-2101A 14 The Reports Center securely stores the necessary passwords required to connects to the embedded and external databases. The embedded database, SQL Server, now encrypts data at rest. The Reports Center ETL is now aligned with the Virtualization prod...

Page 15 - Release Media Contents; Cybersecurity Software 2101 Site

RELEASE MEDIA CONTENTS CS-HFCSE100en-2101A 15 3. Release Media Contents The Honeywell Forge Cybersecurity Suite is distributed via Honeywell’s secure Electronic Software Download, providing an ISO file for each of the following media kits. 1. Cybersecurity Software 2101 Site (HFCP-SITE-200-51156944)...

Page 16 - Cybersecurity Software 2101 Optional Components

RELEASE MEDIA CONTENTS CS-HFCSE100en-2101A 16 Hash value (SHA-256): bbfd795ba77dee2ac2acd0a5512c522dd72cc66abf3d0e84b7b719b26f5124d4 4. Cybersecurity Software 2101 Optional Components (CS-HFCP-OPTS-200-51156946) a. Active Discovery Service ER4.2.0 b. Hardening Compliance ER1.3.3 c. NAPICMD ER1.1.0 d...

Page 17 - Cybersecurity Software 2101 Installation Prerequisites

RELEASE MEDIA CONTENTS CS-HFCSE100en-2101A 17 h. Risk Monitoring for Site Offering i. Active Discovery Product Line 4.2.5 ii. Acronis Backup and Restore 1.6.1 iii. Carbon Black 1.0 iv. Cisco Network Devices 2.7.1 v. Controllers 1.14.0 vi. Experion – TPS 1.7.1 vii. McAfee MOVE AV 1.9.0 viii. Server -...

Page 18 - User documentation book set; Table 1 Documentation set

RELEASE MEDIA CONTENTS CS-HFCSE100en-2101A 18 3.1 User documentation book set The following list identifies publications released with the Honeywell Forge Cybersecurity Suite 2101 (Jan 2021) These are provided on the Honeywell Forge Cybersecurity Suite 2101 (Jan 2021) Document Set media and may also...

Page 19 - Document Name

RELEASE MEDIA CONTENTS CS-HFCSE100en-2101A 19 Document Name Document Number Honeywell Forge Cybersecurity Suite 2101 (Jan 2021) – Security Center DB-API Reference Guide CS-HFCSE800en-2101A Honeywell Forge Cybersecurity Suite 2101 (Jan 2021) – VSE Installation Guide CS-HFCSE501en-2101A Honeywell Forg...

Page 20 - Forward and backwards compatibility

RELEASE MEDIA CONTENTS CS-HFCSE100en-2101A 20 Document Name Document Number Honeywell Forge Cybersecurity Suite 2101 (Jan 2021) – Reports Center User Guide CS-HFCSE505en-2101A Honeywell Forge Cybersecurity Suite 2101 (Jan 2021) – Regional Remote Access White Paper CS-ICS900w-2006A 3.2 Forward and ba...

Page 21 - Table 2 Installation, upgrade, and update matrix

RELEASE MEDIA CONTENTS CS-HFCSE100en-2101A 21 Table 2 Installation, upgrade, and update matrix From product and version To product and version New installation – SC and DB Honeywell Forge Cybersecurity Suite 2101 (Jan 2021) – SC and DB Honeywell Forge Cybersecurity Suite 2101 (Jan 2021)– Prerequisit...

Page 22 - From product and version

RELEASE MEDIA CONTENTS CS-HFCSE100en-2101A 22 From product and version To product and version 2101 (Jan 2021) – Session Recording ICS Shield 510.6 – Session Recording Honeywell Forge Cybersecurity Suite 2101 (Jan 2021) – Session Recording Honeywell Forge Cybersecurity Suite 2003 (Mar 2020) – Session...

Page 25 - Product Line name and version; New installations and upgrades; Honeywell personnel.

RELEASE MEDIA CONTENTS CS-HFCSE100en-2101A 25 Product Line name and version Safety Manager 1.0.0 Server-Station 2.10.1 Splunk Reverse Tunnel 1.1.0 SYSLOG Listener 1.1.0 SYSLOG Report 1.0.3 Veeam 1.0.0 Virtualization 1.6.1 VSE Supplemental 1.5.0 VSE Utilities 3.4.1 Windows Supplemental 2.20.1 WSUS 3....

Page 26 - Special Considerations; Known to exist in this version; Cybersecurity Suite. If available, a workaround is also provided.

SPECIAL CONSIDERATIONS CS-HFCSE100en-2101A 26 4. Special Considerations 4.1 Known to exist in this version The following system issues are known to exist for this version of the Honeywell Forge Cybersecurity Suite. If available, a workaround is also provided. Contact your relevant Honeywell Global T...

Page 27 - Fixed from previous versions; It is now possible to import and export Risk Configuration.

SPECIAL CONSIDERATIONS CS-HFCSE100en-2101A 27 4.2 Fixed from previous versions  It is now possible to import and export Risk Configuration. Identified in Honeywell Forge Cybersecurity Suite 2003 (Mar 2020) and ICS Shield R510.4.

Page 28 - Software and Hardware Specifications; Modern Lifecycle Policy

SOFTWARE AND HARDWARE SPECIFICATIONS CS-HFCSE100en-2101A 28 5. Software and Hardware Specifications This chapter provides information about the software and hardware specifications for the Honeywell Forge Cybersecurity Suite 2101 (Jan 2021). The Honeywell Forge Cybersecurity Suite components support...

Page 29 - Component Name

SOFTWARE AND HARDWARE SPECIFICATIONS CS-HFCSE100en-2101A 29 Component Name VM Host Ordinal Number Guest OS and Requirements OS Additions Terminal Server VM Host #1 Upgrade:  Windows Server 2016 Standard New:  Windows Server 2016 Standard  Windows Server 2019 Standard CPUs:  8 cores (min 2 )  16...

Page 37 - VSE Sizing Guidelines

SOFTWARE AND HARDWARE SPECIFICATIONS CS-HFCSE100en-2101A 37 Component Name VM Host Ordinal Number Guest OS and Requirements OS Additions VSP (Virtual Security Proxy) VM Host #??? Upgrade:  Windows Server 2016 Standard New:  Windows Server 2016 Standard  Windows Server 2019 Standard CPUs:  4 core...

Page 38 - Deployment Type; Virtualization host recommended sizing; Table 5 Minimal and recommended hardware for virtualization

SOFTWARE AND HARDWARE SPECIFICATIONS CS-HFCSE100en-2101A 38 Deployment Type OS CPUs RAM Storage Existing ICS Shield or Cybersecurity Suite customers that upgrade and upgrade to Enterprise Premium  Windows 10 Professional 1903 and later  Windows Server 2016 Standard and later 8 CPUs (min) 16 CPUs (...

Page 39 - Component Name ICS Shield Components

SOFTWARE AND HARDWARE SPECIFICATIONS CS-HFCSE100en-2101A 39 Component Name ICS Shield Components Sizing Hardware Models VM Host #1 (Application Server) Base:  Application Server with Remote Access Gateway  Communication Server with Remote Access Bridge  Support VSE Optional:  Terminal Server  S...

Page 41 - Honeywell Process Solutions

CS-HFCSE100en-2101A © 2021 Honeywell International Sàrl Honeywell Process Solutions 1250 W Sam Houston Pkwy S #150, Houston, TX 77042 Honeywell House, Skimped Hill Lane Bracknell, Berkshire, RG12 1EB Building #1, 555 Huanke Road, Zhangjiang Hi-Tech Park, Pudong New Area, Shanghai, China 201203 www.h...