Using The Certificate Default Configuration - Siemens SINAMICS S120 Function Manual

Basic functions
7.28 Web server
7.28.11.2

Using the certificate default configuration

Note
Security
The use of a default configuration described in the following is not the most secure way of
transferring data to your drive with the Web server.
It should therefore only be used if no self-created or purchased certificate can be used.
In the delivery state, there is a standard root certificate and a private key stored on the
memory card of your device as a file.
Name of the root certificate
Name of the private key
The server certificate and the private server key used later are automatically generated from
this data.
Sequence
1. You first open an HTTPS Web server connection to your drive in the browser.
2. The firmware then creates a new server certificate and a private server key from the root
certificate and the private key, if they are not already available. This is individualized for
the IP address of the interface used for the communication.
3. A warning is then issued that the certificate is unknown and that the currently used
address of the SINAMICS interface does not match the setting in the certificate.
4. Import the server certificate in your standard browser.
Please follow the instructions (help) in your browser for the exact procedure when
importing the certificate.
Alternatively, you can import the root certificate via the path
"OEM/SINAMICS/HMICFG/CERTSTORE/CA/ITDIAGROOTCA.CRT" instead of the
server certificate. This root certificate can be used irrespective of the IP address and
drive.
420
ITDiagRootCA.crt
ITDiagRootCA.key
Function Manual, (FH1), 04/2014, 6SL3097-4AB00-0BP4
Drive functions