Case Study: E.ON achieves NERC CIP compliance and secure privileged-session control with One Identity Safeguard for Privileged Sessions

Global Energy Provider achieves NERC CIP Compliance with privileged session management

E.ON, a major owner and operator of renewable power projects in North America, faced strict NERC CIP requirements to prevent DDoS or sabotage of high‑risk targets such as its wind farms and to keep system access from a single user or workstation below 750 MW. Existing controls (firewalls and Active Directory) could not meet these rules, so E.ON evaluated options and selected One Identity’s Safeguard for Privileged Sessions to secure privileged access.

One Identity deployed virtual Safeguard for Privileged Sessions appliances across 15+ distributed sites in a matter of weeks to monitor RDP access to 25 control systems used by about 50 privileged operators. The solution enforces gateway authentication, limits concurrent RDP sessions per user (to 3), and blocks unauthorized access, enabling E.ON to meet NERC CIP requirements while protecting high‑risk assets and maintaining availability.

E.ON

Brian Schoeck

SCADA Network Engineer