Siemens SIMATIC S7-1500 System Manual page 173

Automation system

Hide thumbs Also See for SIMATIC S7-1500:

System manual (523 pages)

Function manual (402 pages)

Manual (188 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

page of 227

/ 227
Contents
Table of Contents
Bookmarks

Table of Contents

Protection

15.2 Configuring access protection for the CPU

Access levels of the CPU

Table 15- 1

Access levels

Complete

access (no

protection)

Read access

HMI access

No access

(complete

protection)

Each access level allows unrestricted access to certain functions without entering a

password, e.g. identification using the "Accessible devices" function.

The CPU's default setting is "No restriction" and "No password protection". In order to protect

access to a CPU, you must edit the properties of the CPU and set up a password. In the

default access level "Full access (no protection)" every user can read and change the

hardware configuration and the blocks. A password is not set and is also not required for

online access.

Communication between the CPUs (via the communication functions in the blocks) is not

restricted by the protection level of the CPU, unless PUT/GET communication is deactivated.

Entry of the right password allows access to all the functions that are allowed in the

corresponding level.

Note

Configuring an access level does not replace know-how protection

Configuring access levels offers a high degree of protection against unauthorized changes to

the CPU by restricting the rights to download the hardware and software configuration to the

CPU. However, blocks on the SIMATIC memory card are not write- or read-protected. Use

know-how protection to protect the code of blocks on the SIMATIC memory card.

172

Access levels of the CPU

Access restrictions

The hardware configuration and the blocks can be read and changed by all users.

With this access level, read-only access to the hardware configuration and the

blocks is possible without entering a password, which means you can download

hardware configuration and blocks to the programming device. In addition, HMI

access and access to diagnostics data is possible.

Without entering the password, you cannot load any blocks or hardware

configuration into the CPU. Additionally, the following are not possible without the

password: Writing test functions and firmware update (online).

With this access level only HMI access and access to diagnostics data is possible

without entering the password.

Without entering the password, you can neither load blocks and hardware

configuration into the CPU, nor load blocks and hardware configuration from the

CPU into the programming device. Additionally, the following are not possible

without the password: Test functions which write, changing the operating mode

(RUN/STOP), and firmware update (online).

When the CPU is completely protected, no read or write access to the hardware

configuration and the blocks is possible. HMI access is also not possible. The

server function for PUT/GET communication is disabled in this access level

(cannot be changed).

Authentication with the password will again provide you full access to the CPU.

S7-1500 Automation System

System Manual, 02/2014, A5E03461182-AB

Table of Contents

Siemens SIMATIC S7-1500 System Manual page 173

Related Manuals for Siemens SIMATIC S7-1500

Related Products for Siemens SIMATIC S7-1500

Table of Contents