On this page:

StruxureWare Data Center Expertis a client/server configuration. The server is a proprietary version of CentOS 6.10 (64-bit). The client runs on a standard Linux or Windows computer. System requirements can be found here.

Network protocol and ports

Protocol

Transfer protocol

Port(s)

NetworkCredentials/AccessEncryptionComments

HTTP

TCP (SSL)

80 (443)

Network speed of minimum 100 Mbps is recommended. Bandwidth usage between client and server heavily depends on number of discovered devices, alarm configuration and operations carried out in the client e.g. report generation.

 

Manual created user and password (default apc/apc)

Authentication server integration support

There is no option to reset client user password

Password policy is not implemented in DCE but can be enforced using Authentication servers. Password can be ASCII format and numbers

Server and client negotiate SSL cipher type and key lengthCommunication from NetBotz Appliances / DCE Console/Web API and 3rd party integrations. 
SNMPUDP161The bandwidth needed heavily depends on number of discovered devices, polling interval configured and alarm activity in the system.

Specified in device SNMP configuration

default community string: public

SNMP v3 offer encryption as configuredSNMP Communication between discovered devices and DCE 
SNMP (Trap)TCP/UDP162The bandwidth needed heavily depends on number of discovered devices, polling interval configured and alarm activity in the system.

Specified in device SNMP configuration

SNMP v3 offer encryption as configuredSNMP Communication between discovered devices and DCE
SMTPTCP25Network requirements are low. Email traffic from the DCE is depended on alarm policy configuration and number of alarms occurring.As specified in E-mail settingsRequires STARTTLS extensionCommunication with e-mail server
FTPTCP21Used when device is discovered and DDF file transferred. The network requirements are low.As specified in Device File Transfer SettingsNot supported by protocolTransfer DDF files between devices and DCE
SCPTCP22Used when device is discovered and DDF file transferred. The network requirements are low.As specified in Device File Transfer SettingsServer and client negotiate cipher type and key lengthTransfer DDF files between devices and DCE
ModbusTCPTCP/UDP502The bandwidth needed heavily depends on number of discovered devices, polling interval configured and alarm activity in the system.Not supported by protocolNot supported by protocolModbus TCP Communication from Modbus Device/Gateway
NTPTCP123Very limited traffic and bandwidth requirementAs specified in system time settingsDepending on system integrationNTP server communication
SMBTCP/UDP139Depending on system integrationAs specified in system storage settingsDepending on system integrationSMB communication to NAS/SAN
NFSTCP/UDP111Depending on system integrationAs specified in external system configurationNot supported by protocolNFS mounted external drive
NFSTCP/UDP2049Depending on system integrationAs specified in external system configurationNot supported by protocolNFS communication to NAS/SAN
DNSTCP/UDP53Very limited traffic and bandwidth requirementAs specified in external system configurationNot supportedDNS server communication
LDAPTCP389Very limited traffic and bandwidth requirement  Active Directory/LDAP 
CIFSTCP445Depending on system integrationAs specified in external system configurationDepending on system integrationCIFS communication to NAS/SAN
APC Proprietary CommunicationTCP6000The bandwidth needed heavily depends on number of discovered devices, polling interval configured and alarm activity in the system.Not supported by protocolNot supported by protocolCommunication with AP76xx outlet strips and gen1 PDU on private lan. 
PostgreSQLTCP5432Depending on system integration the bandwidth requirements should be specified accordingly.As specified in external system configurationDepending on system integration 


Firewall configuration

StruxureWare Data Center Expertserver also comes with a firewall included. The server is not configurable and therefore the firewall cannot be changed.

Packages used in StruxureWare Data Center Expert

Packages and their version numbers being used in StruxureWare Data Center Expert can be found here.

Software Vulnerability, Scan(s) and Certifications

 

Nessus

A Nessus scan is run against StruxureWare Data Center Expert before every release of the product. The results are investigated and needed action in terms of security updates etc. taken. This scan might also be part of official certifications.
The results and resolution of the security scan and StruxureWare Data Center Expert status in terms of general known vulnerabilities are here.

Nessus is an open-source network vulnerability scanner that uses the Common Vulnerabilities and Exposures architecture for easy cross-linking between compliant security tools.

Antivirus

StruxureWare Data Center Expert does not include antivirus in the installation. The server is not configurable and therefore the antivirus cannot be added.

Logging

The StruxureWare Data Center Expert product has several log files capturing kernel, cron, job etc. based on standard Linux capabilities. 

Logs are stored on the server and are accessible to system administrator.

Database architecture

The database and server is one unit and cannot be separated. The database and operating system is running on the same partition on the server. The database technology is postgreSQL and cannot be exchanged with any other database type or technology.

 

See also

 

StruxureWare Data Center: IT Optimize security

Schneider Electric Cybersecurity Support Portal

 

 

 

 

 

 

Skip to end of metadata
Go to start of metadata

3 Comments

  1. Software packages in StruxureWare Data Center Expert.
    Hi support.
    There is no access to this link: "Page level restrictions apply to this page."
    Why?
    Really "Packages and their version numbers" - this is private information???
    Very thanks for the support.
    1. Hi Spezialist,

      The page that lists installed packages is now available.

      Best,

      Jackie

  2. Hi Jackie,

    Thanks for the support :-).

RELATED COMMUNITY QUESTIONS
WAS THIS ARTICLE HELPFUL?