greenBOX Access Control: Protecting System Settings Without Slowing Down the Factory
- 13 hours ago
- 5 min read
greenBOX Passwords
Modern dust collection control is no longer just a start button and a fan. A current Ecogate greenBOX controller manages workstations, gates, fan speed, airflow monitoring, dust collector protection, dashboards, and remote support access. That makes the user interface valuable for daily operations, but it also means configuration changes should be handled carefully.
Ecogate's greenBOX Access Control is designed around one practical goal: keep monitoring easy for the people who need visibility, while limiting configuration changes to trained personnel.
The feature was developed under the leadership of Marek Litomisky, Ecogate’s Head of Software Engineering. Marek used AI extensively during development, with AI generating much of the relevant code while he orchestrated, reviewed, and debugged the implementation.
greenBOX sign-in window showing Continue as Guest option
Why Access Control matters in an demand-based dust collection system
An on-demand dust collection system depends on accurate setup values. Workstation demand, gate behavior, duct airflow, fan speed, and system limits all work together. When those settings are correct, the system can reduce wasted fan energy while helping maintain the airflow needed for proper dust transport.
When settings are changed by someone who is not trained, the consequences can be real. Too little airflow can reduce collection performance or allow duct velocity to fall below the intended minimum transport velocity. Too much airflow can waste electricity and, in some processes, pull actual product into the dust collection system (like food packaging or pharmaceutical facilities).
That is why Access Control is not just an IT feature. In a demand-based industrial ventilation system, it is part of protecting the operating setup.
Three access paths, one practical structure
greenBOX Access Control is organized around three common ways people interact with the controller: directly at the touchscreen, from the local network, and through authorized general access such as remote web access. Because the greenBOX includes a built-in web server, local browser access does not require a separate software installation. A user on the same network can access the controller by entering the greenBOX local IP address in a browser.
Access path | Read / view access | Write / configuration access |
greenBOX touchscreen | Available locally without a password by default. | Password protection is optional and can be enabled after setup. |
Local network | Guest view-only access can be enabled or disabled by the user. | Requires a username and password with the correct permissions. |
General access | Requires read credentials. | Requires read/write credentials. |
This structure lets a facility keep useful visibility open while protecting the settings that affect airflow, fan behavior, and system performance.
The ACCESS CONTROL tab is available from greenBOX Settings.
Recommended setup: fast commissioning, controlled operation
During initial system setup, open write access at the local touchscreen can help qualified technicians move quickly through commissioning. Once the system is configured and verified, the better long-term practice is to enable password protection for touchscreen write access.
For day-to-day operations, read-only access can be valuable. Maintenance staff may want to review filter pressure. Engineering teams may want to monitor energy performance. Managers may want to look at workstation usage during a shift. Those users do not always need the ability to change configuration values.
A good access plan gives the right people visibility, but reserves configuration authority for trained users who understand the dust collection system.
Dedicated credentials can be created for technicians, maintenance personnel, local IT, and authorized administrators. Profiles can be set for read-only or read/write access, and administrator privileges can be enabled or disabled for individual users.
Access Control settings include touchscreen password protection, guest access, and named users.
Existing users can be assigned read/write access and administrator status.
New users can be created with read-only or read/write permissions.
Guest access is for monitoring, not changes
The local network guest account is intended for view-only access. It gives users a way to monitor the system without sharing configuration credentials. Guest access can be enabled or disabled in the ACCESS CONTROL tab.
Guest access allows read-only local network viewing and can be enabled or disabled.
If a user is logged in as a guest and needs to switch to a read/write account, they can use the three-dot menu in the top-right corner of the greenBOX interface, log out, and sign back in with the correct username and password.
A blue indicator shows read-only status.
Guest users can log out from the top-right menu.
A read/write administrator account exposes additional system options.
Emergency Stop remains available locally at the greenBOX touchscreen. Reset All Errors is restricted to users with read/write access.
Remote access should be secure by design
Current Adelie-generation greenBOX systems use Tailscale VPN for remote access. The controller shows connectivity status under Monitoring > Computer > Networking, including Ethernet status, VPN status, remote access availability, and the Remote Access URL when available.
For most facilities, no special firewall configuration is required for the greenBOX to connect through Tailscale. In strict corporate networks, IT teams may need to allow outbound connectivity for the VPN service. That is an important distinction: this is not about opening inbound internet ports to the greenBOX.
EcogateOS is designed around encrypted remote communications and no open inbound internet ports. For customers who need more detail, Ecogate can provide network security resources for IT review.
Credential rules and account ownership
greenBOX passwords must be at least 8 characters long. A successful login provides an authorized access window of 24 hours.
Touchscreen write access can be protected with a display write password or cleared when appropriate.
Customers are responsible for establishing and managing their own administrator accounts. Ecogate technicians use the built-in Ecogate Service account when providing setup or support, including creating an administrator profile for maintenance staff or local IT when needed.
If a password is lost, the current best path is to work with an existing administrator to create new credentials and remove obsolete accounts. As of the June 2026 support guidance, software version 9.5.5 does not include a direct password reset feature, though a dedicated reset function is planned for a future update.
Users may store greenBOX login credentials in a personal or corporate password manager when accessing the system from a device that supports one.
Secure configuration access while keeping visibility open
greenBOX Access Control is built for the way industrial systems are actually used: operators and managers need visibility, while configuration changes should stay with trained personnel. That separation protects the setup values that make an on-demand dust collection system work correctly.
For facilities using a greenBOX, the recommended workflow is practical: keep commissioning efficient, enable write protection after setup, use read-only access for monitoring, assign named credentials to trained users, and coordinate with Ecogate Support when administrator access or remote support setup is needed.
Comments