General security recommendations - Metasys - LIT-12011279 - General System Information - Metasys System

General security recommendations - Metasys - LIT-12011279 - General System Information - Metasys System - 13.0.50

Network and IT Guidance Technical Bulletin

Product

Building Automation Systems > Building Automation Systems > Metasys System

Document type

Technical Bulletin

Document number

LIT-12011279

Version

13.0.50

Revision date

2024-01-26

Product status

Active

For general recommendations based on the Best Practices for Enterprise Security document on Microsoft TechNet, follow this link:

http://www.microsoft.com/technet/archive/security/bestprac/bpent/bpentsec.mspx

For the most up-to-date security recommendations, we recommend discussing your site security with your local Johnson Controls field support team. High-level security recommendations include:

Do not allow cross-frame scripting by setting X-Frame values to Deny or SAMEORIGIN.
Ensure the appropriate cipher keys exist and are enabled.
Ensure client and server protocols keys exist are either disabled or enabled depending on guidance from the field support team.

We recommend contacting your local field support to implement these security recommendations.