Skip to content
SUBNET Solutions Inc.

Just‑in‑time access without standing accounts

You can grant access when work is needed, then remove it automatically when the job ends.

About PowerSystem Center

PowerSystem Center (PSC) is a multi-function IED management platform that enables critical infrastructure asset owners to securely and centrally manage their large install base of many different intelligent electronic devices (meters, relays, RTUs, etc) deployed throughout their entire transmission and distribution system.

Core Platform Capabilities

  • NERC CIP Intermediate System for IED Access Control
  • Unified Relay Event File Collection and Archiving
  • Unified Asset Monitoring
  • Unified Data Historian Interfaces

Key Benefits

  • Ensure compliance with regulatory requirements
  • Integrate all devices, regardless of manufacturer or model
  • Eliminate human performance issues and errors
  • Protect your existing device investment

Used by dozens of the largest T&D companies in the US, PSC provides a central source of truth for all your devices with automated baseline monitoring, remote access control, and automatic scheduled password changes.

Problem in the field

Shared passwords and standing accounts raise risk and fail audits. Field work still needs access.

How PSC helps

PSC brokers sessions with your directory and MFA. Technicians never see device credentials. Access expires on schedule or when the task closes.

Evidence and control

Every session records who connected, from where, to which device, and what changed.

Frequently asked questions

Can crews work offline?

Yes, PSC can issue time-bound credentials that work during network outages. These offline tokens have strict time limits and automatically expire. Once connectivity is restored, PSC logs all activities that occurred during the offline period.

How are credentials issued?

Access requests go through an approval workflow tied to work orders. Once approved, PSC generates temporary credentials or establishes a brokered session. The technician authenticates through your existing directory (AD/LDAP) with MFA before receiving access.

Do you integrate with AD?

Yes, PSC integrates with Active Directory, LDAP, and other enterprise identity systems. User groups, roles, and policies are synchronized from your existing directory. MFA can use your current solution (RSA, Duo, Azure MFA, etc.).

What happens when access expires?

PSC automatically terminates sessions and rotates device passwords when access windows expire. Users receive warnings before expiration. If work is incomplete, they can request an extension through the approval workflow.

How do you track contractor access?

Contractor access follows the same JIT principles with additional controls. PSC can limit contractors to specific devices, time windows, and functions. All contractor activities are logged with enhanced detail, and access automatically expires when contracts end.

Supports evidence for NERC CIP‑005 electronic access control and logging.

Related solutions

Password management

100% rotation coverage

Automate credential rotation after every JIT access session

Learn more →

Config drift detection

<90 sec restore

Monitor what changes during time-bound access sessions

Learn more →

Asset discovery

90% less manual work

Ensure JIT access covers all devices in your inventory

Learn more →

Ready to eliminate standing accounts?

Start a pilot with just-in-time access and remove dormant OT logins from your environment.

Start a pilot