OPC Rescue Snapshot Report This OPC Snapshot report provides a list of all settings relevant for operation of OPC products on INQU_LAB_PP. ============================================================ 1. OPC configuration: 1 critical error and 4 warnings Configuration errors OPC configuration errors stop OPC applications from connecting. When you activate OPC Rescue, you will receive a detailed report of each error and automatic repair capabilities. Configuration warnings OPC configuration warnings may stop OPC applications from connecting. When you activate OPC Rescue, you will receive a detailed report of each warning and automatic repair capabilities. 2. Security audit score: 65% with 9 potential security vulnerabilities Overview: This OPC Security Audit report provides a list any concerns that could compromise the security of industrial information. This report includes the cause of the vulnerability, a description of vulnerability, and suggested action. Security Comment: Your security score is very low. This could compromise Operations because too many people can access (and possibly change) Automation data. Take corrective action immediately. Check for full details in the "Security Audit" section. Note: The full security audit report contains more information about each of the above vulnerabilities. This information includes the cause, description, and suggested action. Activate this copy of OPC Rescue to receive the rest of this report. 3. General computer information Computer Name: INQU_LAB_PP Member of: The workgroup called "WORKGROUP" Interactive user: Administrator Operating System Windows 7 Workstation (Edition: Professional) Version 6.1 Build 7601 Service Pack 1.0 32-bit operating system Windows was started on 19 March 2019 at 10:03 (4 hours and 13 minutes ago) Miscellaneous settings "Simple File Sharing": Off "Accounts: Administrator account status": Enabled "Accounts: Guest account status": Disabled "Interactive logon: Do not display last user name": Disabled "Network access: Let Everyone permissions apply to anonymous users": Disabled "Network access: Sharing and security model for local accounts": Classic "DCOM: Machine Access Restrictions in SDDL syntax": Not defined "DCOM: Machine Launch Restrictions in SDDL syntax": Not defined Data execution prevention (DEP) Status: DEP is on for essential Windows programs and services only Application Exceptions: None 4. Windows firewall Profile: Public is active Firewall Status: Disabled 5. Computer-wide DCOM settings General tab The settings in this tab are not relevant for OPC Options tab The settings in this tab are not relevant for OPC Default Properties tab Enable Distributed COM on this computer: Checked Enable COM Internet Services on this computer: Unchecked Default Authentication Level: Connect Default Impersonation Level: Identify Provide additional security for reference tracking: Unchecked Default Protocols tab Connection-Oriented TCP/IP (Specific port ranges are not defined) MSDTC tab The settings in this tab are not relevant for OPC COM Security tab Launch and Activation Permissions Edit Limits (computer-wide launch and activation permissions) Name: Everyone (all permissions allowed) local launch allowed remote launch allowed local activation allowed remote activation allowed Name: INQU_LAB_PP\DeltaV (all permissions allowed) local launch allowed remote launch allowed local activation allowed remote activation allowed Name: INQU_LAB_PP\DVPEHAdmin (all permissions allowed) local launch allowed remote launch allowed local activation allowed remote activation allowed Name: INQU_LAB_PP\DVPEHUser (all permissions allowed) local launch allowed remote launch allowed local activation allowed remote activation allowed Name: INQU_LAB_PP\AMSDeviceManager (corruption warning!) This access control entry is corrupt. OPC Rescue will automatically repair this error when you click the Rescue button in the Repair tab. Name: BUILTIN\Administrators (all permissions allowed) local launch allowed remote launch allowed local activation allowed remote activation allowed Name: BUILTIN\Performance Log Users (all permissions allowed) local launch allowed remote launch allowed local activation allowed remote activation allowed Name: BUILTIN\Distributed COM Users (all permissions allowed) local launch allowed remote launch allowed local activation allowed remote activation allowed Edit Default (default launch and activation permissions) Name: NT AUTHORITY\SYSTEM (all permissions allowed) local launch allowed remote launch allowed local activation allowed remote activation allowed Name: BUILTIN\Administrators (all permissions allowed) local launch allowed remote launch allowed local activation allowed remote activation allowed Name: Everyone (all permissions allowed) local launch allowed remote launch allowed local activation allowed remote activation allowed Name: NT AUTHORITY\INTERACTIVE (all permissions allowed) local launch allowed remote launch allowed local activation allowed remote activation allowed Access Permissions Edit Limits (computer-wide access permissions) Name: Everyone (all permissions allowed) local access allowed remote access allowed Name: INQU_LAB_PP\DeltaV (all permissions allowed) local access allowed remote access allowed Name: INQU_LAB_PP\DVPEHAdmin (all permissions allowed) local access allowed remote access allowed Name: INQU_LAB_PP\DVPEHUser (all permissions allowed) local access allowed remote access allowed Name: INQU_LAB_PP\AMSDeviceManager (corruption warning!) This access control entry is corrupt. OPC Rescue will automatically repair this error when you click the Rescue button in the Repair tab. Name: BUILTIN\Performance Log Users (all permissions allowed) local access allowed remote access allowed Name: BUILTIN\Distributed COM Users (all permissions allowed) local access allowed remote access allowed Name: ANONYMOUS LOGON (all permissions allowed) local access allowed remote access allowed Edit Default (default access permissions) Name: Everyone (all permissions allowed) local access allowed remote access allowed Name: NT AUTHORITY\SELF (all permissions allowed) local access allowed remote access allowed Name: NT AUTHORITY\SYSTEM local access allowed Name: BUILTIN\Administrators (all permissions allowed) local access allowed remote access allowed 6. OPC client applications installed on this computer OPC Rescue does not have a record of OPC client applications on this computer Inform OPC Rescue about additional OPC client applications Select the Repair tab Click the Secure button Navigate to the OPC Port Selection dialog Click the Add Applications button 7. OPC servers installed on this computer OpcEnum (also known as "Opc ServerList Class") General Tab Application Name: OpcEnum Application ID: {13486D44-4821-11D2-A494-3CB306C10000} Application Type: Local Service Authentication Level: None Service Name: OpcEnum (which is set to Automatic) Locations Tab Run application where data is located: Unchecked Run application on this computer: Checked Run application on the following computer: Unchecked Security Tab Launch and Activation Permissions Name: Everyone (all permissions allowed) local launch allowed remote launch allowed local activation allowed remote activation allowed Access Permissions Name: Everyone (all permissions allowed) local access allowed remote access allowed Endpoints tab This application uses the default system protocols. See above in "DCOM Default Protocols" Identity Tab Identity is set to: The system account (services only) OPC Data Access 2.0 Server for iFix OPC server overview Vendor: Intellution Inc. ProgID (version dependent): Intellution.OPCiFIX.1 ProgID (version independent): Intellution.OPCiFIX This OPC server claims to support OPC Data Access Servers Version 2.0 General Tab Application Name: OPC20iFIX Application ID: {3C570292-EB8E-11D4-83A4-00105A984CBD} Application Type: Local Server Authentication Level: Default (which is set to 'Connect') Local Path: "C:\DELTAV\IFIX\OPC20iFIX.exe" Locations Tab Run application where data is located: Unchecked Run application on this computer: Checked Run application on the following computer: Unchecked Security Tab Launch and Activation Permissions This application uses the "default launch and activation permissions" as listed above, under: "Default launch and activation permissions" Access Permissions This application uses the "default access permissions" as listed above, under: "Default access permissions" Endpoints tab This application uses the default system protocols. See above in "DCOM Default Protocols" Identity Tab Identity is set to: The launching user AMS OPC Server OPC server overview Vendor: Vendor did not provide this information ProgID (version dependent): AMS.OPCServer.1 ProgID (version independent): AMS.OPCServer This OPC server claims to support OPC Data Access Servers Version 1.0 OPC Data Access Servers Version 2.0 General Tab Application Name: AMS OPC Server Application ID: {4C853380-83C4-11d2-9C40-006097BD9545} Application Type: Local Server Authentication Level: Default (which is set to 'Connect') Local Path: "C:\AMS\bin\Amsopc.exe" Locations Tab Run application where data is located: Unchecked Run application on this computer: Checked Run application on the following computer: Unchecked Security Tab Launch and Activation Permissions Name: Everyone Access Permissions Name: Everyone Endpoints tab This application uses the default system protocols. See above in "DCOM Default Protocols" Identity Tab Identity is set to: This user (see below) The user account is "AmsServiceUser" DeltaV OPC HDA Server OPC server overview Vendor: Vendor did not provide this information ProgID (version dependent): DeltaV.OPCHDAsvr.1 ProgID (version independent): DeltaV.OPCHDAsvr This OPC server claims to support OPC Historical Data Access Servers Version 1.0 General Tab Application Name: DeltaV OPC HDA Server Application ID: {8351A72D-A1D8-4C9D-B390-97DB17FCD6E6} Application Type: Local Server Authentication Level: Default (which is set to 'Connect') Local Path: "C:\DeltaV\bin\DOPCHDA1.exe" Locations Tab Run application where data is located: Unchecked Run application on this computer: Checked Run application on the following computer: Unchecked Security Tab Launch and Activation Permissions This application uses the "default launch and activation permissions" as listed above, under: "Default launch and activation permissions" Access Permissions This application uses the "default access permissions" as listed above, under: "Default access permissions" Endpoints tab This application uses the default system protocols. See above in "DCOM Default Protocols" Identity Tab Identity is set to: The interactive user DeltaV OPC Server OPC server overview Vendor: Fisher-Rosemount Systems Inc. ProgID (version dependent): OPC.DeltaV.1 ProgID (version independent): See comment below This OPC server does not have a version independent program identifier (this is not an error) This OPC server claims to support OPC Data Access Servers Version 1.0 OPC Data Access Servers Version 2.0 General Tab Application Name: FrsOpcDv Application ID: {C3B72AB1-6B33-11d0-9007-0020AFB6CF9F} Application Type: Local Server Authentication Level: Default (which is set to 'Connect') Local Path: "C:\DeltaV\bin\FrsOpcDv.exe" Locations Tab Run application where data is located: Unchecked Run application on this computer: Checked Run application on the following computer: Unchecked Security Tab Launch and Activation Permissions Name: NT AUTHORITY\SYSTEM local activation allowed remote activation allowed Name: INQU_LAB_PP\DeltaV local activation allowed remote activation allowed Name: INQU_LAB_PP\DeltaV Admins local activation allowed remote activation allowed Access Permissions Name: NT AUTHORITY\SYSTEM Name: INQU_LAB_PP\DeltaV Name: INQU_LAB_PP\DeltaV Admins Endpoints tab This application uses the default system protocols. See above in "DCOM Default Protocols" Identity Tab Identity is set to: This user (see below) The user account is "DeltaVAdmin" DeltaV OPC Alarms and Events Server OPC server overview Vendor: Vendor did not provide this information ProgID (version dependent): DeltaV.OPCEventServer.1 ProgID (version independent): DeltaV.OPCEventServer This OPC server claims to support OPC Alarm & Event Servers Version 1.0 General Tab Application Name: DvOPCAE Application ID: {DD99BFB8-3571-11D3-848E-00C04F99022F} Application Type: Local Server Authentication Level: Default (which is set to 'Connect') Local Path: "C:\DeltaV\bin\DvOPCAE.exe" Locations Tab Run application where data is located: Unchecked Run application on this computer: Checked Run application on the following computer: Unchecked Security Tab Launch and Activation Permissions Name: NT AUTHORITY\SYSTEM local activation allowed remote activation allowed Name: INQU_LAB_PP\DeltaV local activation allowed remote activation allowed Name: INQU_LAB_PP\DeltaV Admins local activation allowed remote activation allowed Access Permissions Name: NT AUTHORITY\SYSTEM Name: INQU_LAB_PP\DeltaV Name: INQU_LAB_PP\DeltaV Admins Endpoints tab This application uses the default system protocols. See above in "DCOM Default Protocols" Identity Tab Identity is set to: This user (see below) The user account is "DeltaVAdmin" 8. OPC Rescue information User information Name: Your name Company: Your company name Email: Your email address Phone: Your phone number Snapshot date: 19 March 2019 Snapshot time: 2:16:32 PM (SA Western Standard Time) Version 3.6.1303.7 Executable date is 26 November 2013 This copy of OPC Rescue has not been activated Download from www.OpcRescue.com ============================================================ End of OPC Snapshot report