S7-1500R/H redundant system
System Manual, 11/2022, A5E41814787-AD
236
Protection
10
10.1 Overview of the protection functions
Introduction
This section describes the functions for protection from unauthorized access:
•
Protection of confidential configuration data
•
Access protection
•
Know-how protection
•
Protection by locking the CPUs
Other CPU protective measures
The following measures provide extra protection against unauthorized access from external
sources and through the network:
•
Do not activate time-of-day synchronization over NTP servers.
•
Do not activate PUT/GET communication.
10.2 Protection of confidential configuration data
As of STEP7V17, you have the option of assigning a password for protecting confidential
configuration data of the respective CPU. This refers to data such as private keys that are
required for the proper functioning of certificate-based protocols.
You can find detailed information on protecting confidential configuration data in the Com
munication (https://support.industry.siemens.com/cs/ww/en/view/59192925) function
manual.
10.3 Configuring access protection for the CPU
Introduction
The S7-1500R/H redundant system has four or five different access levels to limit access to
specific functions.
By setting up access levels and passwords, you limit the functions and memory areas that are
accessible without a password. The individual access levels and corresponding passwords are
specified in the object properties of the CPUs.
To Next Page
Loading...
