1. Manuals
  2. Brands
  3. Siemens Manuals
  4. Protection Device
  5. SCALANCE S612
  6. Commissioning and hardware installation manual

Siemens SCALANCE S612 Commissioning And Hardware Installation Manual page 45

Scalance s series industrial ethernet security
Hide thumbs
Table of Contents

Advertisement

● the key of a VPN group with the authentication method "Pre-shared key" or
● the password of a user has become known.
Private key of the server certificate known
If the private key belonging to the server certificate has become known, the server certificate
on the SCALANCE S device must be replaced. The user names stored on the SCALANCE S
device do not need to be changed.
Security Configuration Tool - follow the steps below:
1. Select the "Options" > "Certificate manager..." menu command, "Device certificates" tab.
2. Select the SSL certificate of the SCALANCE S module and select the entry "Renew
certificate..." in the shortcut menu.
3. Enter the parameters for the new SSL certificate and confirm your entry with "OK".
4. Download the configuration to the SCALANCE S module.
The private key of the certificate authority is known
If the private key of the certificate authority has become known, the certificate of the
certificate authority must be replaced on the SCALANCE S module. The user names can
remain unchanged. The VPN groups do, however, require new certificates provided by the
new certificate authority.
Security Configuration Tool - follow the steps below:
1. If necessary, change the project to advanced mode with the menu command "View" >
"Advanced mode".
2. In the navigation area, select the VPN group you want to edit.
3. Select the "Edit" > "Properties..." menu command.
4. Generate a new VPN group certificate by clicking the "New..." button in the "Certificate"
area.
5. Confirm the next two dialogs with "Yes" or "OK".
6. Download the configuration to all SCALANCE S modules that belong to the VPN group.
The key of a VPN group with the authentication method "Pre-shared key" is known
If the key of a VPN group that uses the authentication method "Pre-shared key" has become
known, the key must be renewed in the VPN group properties of this VPN group. Following
this, the new configuration must be downloaded to all SCALANCE S modules that are
members of the VPN group.
SCALANCE S
Commissioning and Hardware Installation Manual, 05/2016, C79000-G8976-C266-06
Troubleshooting/FAQs
7.5 SCALANCE S device is compromised
45

Advertisement

Table of Contents
loading

Related Manuals for Siemens SCALANCE S612

Related Products for Siemens SCALANCE S612

This manual is also suitable for:

Scalance s6026gk5612-0ba10-2aa36gk5623-0ba10-2aa36gk5627-2ba10-2aa3Scalance s623Scalance s627-2m ... Show all

Table of Contents