Professional Documents
Culture Documents
1 Products
MicroSCADA Pro SYS600 9.4 Featurepack 2
2.1.2 Hot-Stand-By
2.1.3 Mirroring
Topology Calculation
Topology calculation for feeders is optimized. Calculation is triggered only when topologically significant change
in process data occurs.
Topology Coloring
Topology coloring of the devices is enhanced to correctly indicate the device status also when the topology coloring
is turned off. For example OS (Object Status) value 10 is indicated with '?' symbol also when the topology coloring
is turned off.
2.1.7 Startup
2.2 COM500i
Handling of reset process command ASDU <105> improved with IEC60870-5-101 slave
Handling of the ASDU <105>, Reset Process Command has been improved with IEC60870-5-101 slave. The command
definition field QRP (Qualifier of reset process command) value <2> = 'reset of pending events' is now supported
as a new feature and it clears spontaneous events from queues. QRP value <1> = 'general reset of process' clears all
pending events. No other QRP values but 1 and 2 are accepted.
2.3 Communication
2.3.1 DuoDriver
2.3.3 PC-NET
IEC 60870-5-104 Slave: Event queue resetting using attribute RS did not clear
everything
If event queues were cleared using RS attribute, e.g. with value 3 which means that everything is cleared, it had no
effect on events which were already transmitted but which were waiting for acknowledgement from master. If
TCP/IP disconnection occurred, it was possible that the same events were retransmitted after a new connection
was established, despite of the RS writing which had been made. The fix is that RS writing has an effect on pending
events as well.
Highest vendor specific quality bit indicates GI with IEC61850 OPC Server
In case the used OPC server is SYS600 IEC61850 OPC Server and the bit 15 of the data item quality is set, it indicates
that the update is from general interrogation and this update is never marked as 'buffered'. The benefit is that all
values, including ones having invalid or old timestamp are updated to process objects without a need to issue a
#SET STAx:SUP=1 command in startup.
list without alarm acknowledgement. This issue is now fixed and the object remains in fleeting alarm state if the
alarm receipt requirement (attribute RC = 1) is set.
Object Not Found Dialog on Locate Object in Monitor Pro Menu Item Configurable
Additional parameter in Framewindow.ini can be used to configure, whether to show the object not found dialog
when navigating from list views to process display via Locate object in Monitor Pro -menu item and the selected
LN:IX combination isn't found in the display.
Hiding the dialog can be done by setting "HideObjectNotFoundOnLocate" value to 1 in Framewindow.ini under
MPROUI section.
2.5.7 Migration
Display migration
SYS600 display migration process (MigrationTool.exe) exit handling, is improved to exit without Windows event
log exception entries when MicroSCADA is stopped.
Display change events sent with incorrect arguments from Monitor Pro+
When navigating back from list displays to process graphics display change events sent to Visual SCIL tools were
given the list display name instead of the correct process display name.
2.6 Security
Uninstall MSXML4
Instructions to uninstall:
1. Remove MSXML4 parser from the system by opening Control Panel > Programs > Uninstall and selecting
Microsoft XML Parser. Uninstall all related security updates as well.
2. Check that the computer does not contain msxml4*.dll anymore. Open Windows Explorer and search for
'*msxml4*'.
3. If there are msxml4 files e.g. in side-by-side directory (SxS), run Disk Cleanup. See instructions below to remove
msxml4 from SxS directory.
Instructions to remove msxml4 components in side-by-side (SxS) directory with Disk Cleanup tool:
1. Open Windows Explorer, select C: and search *msxml4*. Verify that there are msxml4 files in SxS directory.
2. Start > Search: Cleanup
3. Launch Disk Cleanup tool for C: drive
4. Select all items in Files to delete list (system files also)
5. Press OK to clean
6. Reboot
7. Repeat step 1 to check that there are no msxml4 files in computer anymore
10 1MRS257740, MicroSCADA Pro SYS600 9.4 FP2 Hotfix3
If Disk Cleanup tool is not available e.g. in Windows Server operating systems, see this article on how to clean up
the winsxs directory (Add Features > Desktop Experience):
https://blogs.technet.microsoft.com/askpfeplat/2014/05/13/how-to-clean-up-the-winsxs-directory-and-free-up-disk-space-on-windows-server-2008-r2-with-new-update/
2.7 Sequencer
2.8 Tools
Online Diagnostics
Online Diagnostics didn't display values, qualities or time stamps of IED data objects.
WebSocket Communication
The handling of a large view caused too much processing which created an error situation in the WebSocket
communication.
Error handling code in WebSocket communication caused an infinite loop. This resulted server to be non-responsive.
This is now fixed.
3 New features
This chapter highlights the main new features of this release.
4 Known Limitations
5 Dependencies
This Hotfix should only be used with SYS600 9.4 FP2 installation.
6 Recommendations
It is recommended to install this Hotfix in all SYS600 9.4 FP2
7 Installation
7.1 To install the Hotfix:
1. Stop the SYS600 system
2. Before installing SYS600 9.4 FP2 HF3, uninstall previous version of CET for IEC61850 OPC Server from Windows
programs and features
3. Before installing SYS600 9.4 FP2 HF3, uninstall old Sentinel HASP drivers manually:
a. Stop hasplms service by opening Command Prompt window (run as admin) and running command ‘sc the service,
run command ‘sc query hasplms’ to verify that the service is stopped.
b. Locate haspdinst.exe in old SYS600 installation (sc\drivers\HASP). Run ‘haspdinst.exe -info’ to check installed
to the system and versions included in the installation package.
c. Run ‘haspdinst.exe -purge’ to uninstall old Sentinel HASP component versions
d. Hotfix can now be installed that includes an update to Sentinel HASP
4. Run the installation program SYS600_94-2_HF3.exe
5. Due to diverse system installations, vulnerability described in Improper Access Control Vulnerability in MicroSCADA
Pro SYS600 9.x security advisory is not fixed automatically. See section Cyber Security > Improper Access Control
for instructions.
The Hotfix will install the following new files or file versions:
sc\stool\sysconf\UAM.VSO
sc\stool\sysconf\SYSCONF.VSO
sc\stool\sysconf\ATTR_DEF.VSO
sc\stool\Misc\7z.exe
sc\stool\Misc\7z.dll
sc\stool\AplBuild\OBJGP.VSO
sc\stool\AplBuild\NT_MANAGER.VSO
sc\Setup\DuoDriver\vendor.cer
sc\Setup\DuoDriver\SnmpExtensionAgentSetup.exe
sc\Setup\DuoDriver\SnmpExtensionAgentSetup_x64.exe
sc\Setup\DuoDriver\SetupGuiNG.exe
sc\Setup\DuoDriver\SetupGuiNG_x64.exe
sc\Setup\DuoDriver\setup.ini
sc\Setup\DuoDriver\setup.exe
sc\Setup\DuoDriver\ProtocolSetup.exe
sc\Setup\DuoDriver\ProtocolSetup_x64.exe
sc\Setup\DuoDriver\iec62439_snmp_agent.dll
sc\Setup\DuoDriver\iec62439_snmp_agent_x64.dll
sc\Setup\DuoDriver\iec62439_mgmt.dll
sc\Setup\DuoDriver\iec62439_mgmt_x64.dll
sc\Setup\DuoDriver\duodrv_prot.inf
sc\Setup\DuoDriver\duodrv_prot.cat
sc\Setup\DuoDriver\duodrv_mp.inf
sc\Setup\DuoDriver\duodrv_mp.cat
sc\Setup\DuoDriver\DuoDriverNotifyObj-DB3268CB-818D-41AE-8940-D4706D65AFE1.dll
sc\Setup\DuoDriver\DuoDriverNotifyObj-DB3268CB-818D-41AE-8940-D4706D65AFE1_x64.dll
14 1MRS257740, MicroSCADA Pro SYS600 9.4 FP2 Hotfix3
sc\Setup\DuoDriver\DuoDriverMgmtGUI.exe
sc\Setup\DuoDriver\duodriver.sys
sc\Setup\DuoDriver\duodriver_x64.sys
sc\sa_lib\defaults\misc\SDIActiveBar.tb2
sc\sa_lib\defaults\misc\FrameWindow.ini
sc\sa_lib\base\bbone\use\BGU_CALTC.TXT
sc\prog\sa_lib\ualctl.dll
sc\prog\sa_lib\MicroSCADALoginManager.dll
sc\prog\sa_lib\MeasReport.dll
sc\prog\sa_lib\InstanceHandler.exe
sc\prog\sa_lib\FrameWindow.exe
sc\prog\sa_lib\eventctl.dll
sc\prog\sa_lib\en\ualctl_EN.dll
sc\prog\sa_lib\en\FrameWindow_EN.dll
sc\prog\sa_lib\en\eventctl_EN.dll
sc\prog\sa_lib\en\blockingctl_EN.dll
sc\prog\sa_lib\en\alarmctl_EN.dll
sc\prog\sa_lib\eablistcomm.dll
sc\prog\sa_lib\blockingctl.dll
sc\prog\sa_lib\alarmctl.dll
sc\prog\sa_lib\Actbar3.ocx
sc\prog\pcm_client\PcmClientSetup.exe
sc\prog\pcm_client\PcmClient2.dll
sc\prog\pcm_client\PcmClient.dll
sc\prog\pc_net\pc_nets.exe
sc\prog\OPC_Client\DA_Client\daopccl.exe
sc\prog\graphicsEngine\system\OpcConnection.dll
sc\prog\graphicsEngine\system\dvwin.dll
sc\prog\graphicsEngine\system\DVUOM.tlb
sc\prog\graphicsEngine\system\Dvuom.dll
sc\prog\graphicsEngine\system\dvtools.dll
sc\prog\graphicsEngine\system\DVPaletteUI.ocx
sc\prog\graphicsEngine\system\DVnames.dll
sc\prog\graphicsEngine\system\DVFillEffectControl.ocx
sc\prog\graphicsEngine\system\DVDraw.exe
sc\prog\graphicsEngine\system\DVDataEditor.ocx
sc\prog\graphicsEngine\system\DVCustomEditor.ocx
sc\prog\graphicsEngine\system\dvaxvp.tlb
sc\prog\graphicsEngine\system\dvaxvp.ocx
sc\prog\graphicsEngine\system\dvactive.tlb
sc\prog\graphicsEngine\system\dvactive.ocx
sc\prog\graphicsEngine\system\DataViewsEditor.ocx
sc\prog\exec\WmiAccess_WinIO.dll
sc\prog\exec\vgal7.dll
sc\prog\exec\UALW.exe
sc\prog\exec\UALP.exe
sc\prog\exec\sysm.exe
sc\prog\exec\status.txt
sc\prog\exec\status.bin
sc\prog\exec\ssleay32.dll
sc\prog\exec\shad.exe
sc\prog\exec\scsshr.dll
sc\prog\exec\scspico.dll
sc\prog\exec\SCSPCNET.dll
1MRS257740, MicroSCADA Pro SYS600 9.4 FP2 Hotfix3 15
sc\prog\exec\SCSINT.dll
sc\prog\exec\scs.exe
sc\prog\exec\SCINFO.EXE
sc\prog\exec\scil.exe
sc\prog\exec\SAPI.exe
sc\prog\exec\repr.exe
sc\prog\exec\REPL.exe
sc\prog\exec\repf.exe
sc\prog\exec\qpidtypes.dll
sc\prog\exec\qpidcommon.dll
sc\prog\exec\qpidclient.dll
sc\prog\exec\pros.exe
sc\prog\exec\prof.exe
sc\prog\exec\proc.exe
sc\prog\exec\prnc.exe
sc\prog\exec\prin.exe
sc\prog\exec\picv.exe
sc\prog\exec\picn.exe
sc\prog\exec\picg.exe
sc\prog\exec\PCNI.exe
sc\prog\exec\OSEX.exe
sc\prog\exec\oseh.exe
sc\prog\exec\OPCS.exe
sc\prog\exec\opcc.exe
sc\prog\exec\oaes.exe
sc\prog\exec\oaec.exe
sc\prog\exec\notify.exe
sc\prog\exec\LICV.dll
sc\prog\exec\libeay32.dll
sc\prog\exec\inet.exe
sc\prog\exec\hasp_windows_69167.dll
sc\prog\exec\file.exe
sc\prog\exec\ddex.exe
sc\prog\exec\CPMW.exe.config
sc\prog\exec\CPMW.exe
sc\prog\exec\Control.exe
sc\prog\exec\CAMP.exe
sc\prog\61850_OPC_Server\IEC61850 OPC Server\bin\opcs_iec61850.exe
sc\drivers\HASP\haspdinst.exe
sc\Com\active\COM_\COMTOOL.VSO
sc\Com\active\COM_\COM_UPDT.TXT
sc\Com\active\COM_\COM_REVDTA.TXT
sc\Com\active\COM_\COM_RESPRC.TXT
sc\Com\active\COM_\COM_IESEI.TXT
sc\Com\active\COM_\COM_IESA.TXT
sc\Com\active\COM_\COM_GENINT.TXT
sc\Com\active\COM_\COM_DSAO.TXT
Revision History
— — —
ABB Grid Automation Products Copyright © 2019 ABB. We reserve all rights in this document and in the
abb.com/substation-automation All rights reserved. subject matter and illustrations contained therein.
Any reproduction, disclosure to third parties or
utilization of its contents
– in whole or in parts – is forbidden without prior
written consent of ABB.
1MRS257740, MicroSCADA Pro SYS600 9.4 FP2 Hotfix3 17
Service: Inbound Port number Port status open al- Description Security
port num- fixed/configur- ways/configurable
ber able
Service: Inbound Port number Port status open al- Description Security
port num- fixed/configur- ways/configurable
ber able
Inbound (listening)
Service: Inbound Port number Port status open al- Description Security
port num- fixed/configur- ways/configurable
ber able
IEC60870-5- TCP 2404 configurable configurable IEC 60870-5-104 for tele- Secure: No
104 Slave control equipment and Risks: Through
systems with coded bit IEC104 it is pos-
serial data transmission in sible to control
TCP/IP based networks for electric network.
monitoring and controlling
geographically widespread
processes. Network Con-
trol Center (NCC).
DNP 3.0 Secure TCP configurable configurable Secure communication for DNP 3.0 secure
Authentication 19999 DNP 3.0 communication
Version 5 is authenticated
LAN/WAN and encrypted.
Slave
DNP 3.0 UDP and configurable configurable The Distribute Networks Secure: No. Use
LAN/WAN TCP Protocol (DNP) 3.0 DNP 3.0 Secure
Slave 20000 LAN/WAN is a standards- instead.
based communication Risks: Through
protocol designed for DNP3 it is pos-
electric utility, water, oil & sible to control
gas and security systems. electric network.
DNP 3.0 UDP and configurable configurable Accepts localhost connec- N/A
LAN/WAN TCP tions only, open only a
1MRS257740, MicroSCADA Pro SYS600 9.4 FP2 Hotfix3 19
Inbound (listening)
Service: Inbound Port number Port status open al- Description Security
port num- fixed/configur- ways/configurable
ber able
ELCOM-90 Ad- TCP 6999 configurable configurable Used to debug Provider Secure:No
min
Opcs_iec61850.exe TCP 123 configurable configurable IEC 61850 OPC DA Server, Secure:No
which contains SNTP Serv-
er as TCP/IP Server (IEDs
synchronizes time with
20 1MRS257740, MicroSCADA Pro SYS600 9.4 FP2 Hotfix3
Inbound (listening)
Service: Inbound Port number Port status open al- Description Security
port num- fixed/configur- ways/configurable
ber able
Op- TCP 102 fixed configurable IEC 61850 System Supervi- Secure:No
cc_iec61850.exe sion Server (obsolete from Risks: Through
SYS600 9.4 FP2 and later). MMS server it is
OPC client in this compon- possible to con-
ent is connected to SYS600 trol electric net-
OPC DA Server. IEC 61850 work.
(MMS) server is a TCP/IP
server. There is no built-in
security in MMS protocol.
Inbound (listening)
Service: Inbound Port number Port status open al- Description Security
port num- fixed/configur- ways/configurable
ber able
Microsoft Win- TCP 3389 Fixed Configurable Microsoft Windows Termin- Remote desktop
dows Remote al Services [Terminal Server sessions operate
Desktop Ser- Client, RDP Client] over an encryp-
vices ted channel.
Citrix ICA TCP 1494 Fixed Configurable MetaFrame Application Remote desktop
Server for Windows / Citrix sessions operate
ICA over an encryp-
ted channel.