Siemens SIMATIC S7-1500 System Manual page 59
Redundant system
Hide thumbs
Also See for SIMATIC S7-1500:
- Function manual (402 pages) ,
- System manual (393 pages) ,
- Manual (188 pages)
Table of Contents
Advertisement
Industrial cybersecurity
4.9 Secure operation of CPUs
Selecting the server authentication
After selecting the TLS transport protocol, the configured syslog server must authenticate
itself. This ensures that the CPU only connects to a trusted server. If you want to waive server
authentication, activate the automatic acceptance of server certificates during runtime. To
configure these settings, follow these steps:
1. Select the required CPU in the device or network view of STEP 7.
2. In the Inspector window, navigate to "Properties > Protection & Security > Syslog >
Certificates for Syslog".
3. In the "Trusted servers" area, specify whether the connected syslog server is to be
authenticated. In this case, it is necessary to complete the following information:
– Add trusted server: Add a valid server certificate in the "Common name of subject"
– Automatically accept certificates during runtime: Activate the "Automatically accept
Result: You have configured the server authentication.
58
column.
server certificates during runtime" option. Editing in the table is then not possible.
Note
No authentication with automatically accepted server certificates
If you enable the "Automatically accept server certificates during runtime" option, a
server does not need to authenticate itself. This means that the CPU can also connect
to unknown servers that could represent a security risk.
Only select this option during commissioning or in a protected environment.
S7-1500R/H redundant system
System Manual, 01/2024, A5E41814787-AF
Advertisement
Table of Contents
