Cpu Behavior From Loading To Operational Readiness - Siemens SIMATIC ET 200AL System Manual

Distributed i/o system

Hide thumbs Also See for SIMATIC ET 200AL:

System manual (1585 pages)

Manual (86 pages)

Equipment manual (46 pages)

page of 2255

/ 2255
Contents
Table of Contents
Bookmarks

Table of Contents

Communications services

3.6 Secure Communication

Store CA certificate in the TIA Portal

To make the exported certificate known to a PG with TIA Portal and thus enable automatic

certificate checking, follow these steps:

1. Copy the CA certificate exported in the previous step to the following directory:

C:\ProgramData\Siemens\Automation\Certstore\Trusted

2. Start TIA Portal.

In the "Info" tab of the Inspector window, a message appears for each CA certificate which

provides information on whether the CA certificate could be successfully transferred to

the CA store of TIA Portal.

However, no detailed causes are output in case of failure.

Adding device certificates to the TIA Portal certificate revocation list (CRL)

You have the option to add individual device certificates to a certificate revocation list (CRL),

for example, because the associated key is no longer considered secure.

When the TIA Portal establishes a connection to a CPU whose device certificate is in the

certificate revocation list, a dialog appears in the TIA Portal asking whether you still want to

trust the certificate. If you decline, the connection will not be established.

To add a device certificate to the certificate revocation list, follow these steps:

1. Copy the device certificate to the following directory:

C:\ProgramData\Siemens\Automation\Certstore\CRL

2. Start TIA Portal.

In the "Info" tab of the Inspector window, a message appears for each certificate which

provides information about whether the certificate could be successfully transferred to the

CRL store of TIA Portal.

However, no detailed causes are output in case of failure.