Using The Standard Configuration Of The Certificate - Siemens SINAMICS Configuration Manual

Industrial security, medium-voltage converter

Hide thumbs Also See for SINAMICS:

Equipment manual (104 pages)

Quick install manual (2 pages)

List manual (1976 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

page of 236

/ 236
Contents
Table of Contents
Bookmarks

Table of Contents

5.6.9.1

Using the standard configuration of the certificate

Note

Security

The standard configuration is not the most secure way of transferring data to the drive with the

web server.

It should therefore only be used if no self-created or purchased certificate can be used.

In the delivery state, there is a standard root certificate and a private key stored on the memory

card of the converter as a file. The server certificate and the private server key used later are

automatically generated from this data.

Name of the root certificate

Name of the private key

Proceed as follows:

1. Open an HTTPS web server connection to your drive in the browser for the first time.

– If you still do not have a server certificate or private server key, the firmware generates

– Following this, a warning is issued in the browser that the certificate is unknown.

2. Import the server certificate in your standard browser.

Instructions for importing the certificate can be found in your browser's help options.

– Alternatively, you can import the root certificate via the path "OEM/SINAMICS/HMICFG/

5.6.9.2

Using self-created certificates

If there is no Certification Authority in your business, proceed as described in this chapter.

Create the key files using the "OpenSSL" program and an EXE file. If OpenSSL is not installed

on your PC, you can download this program from the following Internet site and install it free

of charge: OpenSSL (https://www.openssl.org/)

Note

OpenSSL will be installed in C:\OpenSSL. If another path is selected, this path must be

transferred to the tool when called with the option "-o".

Proceed as follows:

1. Create a folder with any name on your local drive, e.g. "C:\MySSL".

2. Copy the "cert.exe" tool to the created folder.

The tool is located on the SINAMICS memory card in the "ADDON\SINAMICS\IT_TOOLS"

folder.

Industrial Security

Configuration Manual, 08/2017, A5E36912609A

this data.

CERT/ITDIAGROOTCA.CRT" instead of the server certificate.

This root certificate can be used irrespective of the IP address and drive.

ITDiagRootCA.crt

ITDiagRootCA.key

Security measures for SINAMICS

5.6 Web server

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

Using The Standard Configuration Of The Certificate - Siemens SINAMICS Configuration Manual

Using the standard configuration of the certificate

Hide quick links:

Related Manuals for Siemens SINAMICS

Related Content for Siemens SINAMICS

Table of Contents