1. Manuals
  2. Brands
  3. Apricum Manuals
  4. Network Hardware
  5. MECtp-Sec
  6. Application description

Apricum MECtp-Sec Application Description

Knx secure line/area coupler/repeater
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
MECtp
SECURE
MECtp-Sec
KNX Secure Line/Area Coupler/Repeater
Technical & Application Description

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the MECtp-Sec and is the answer not in the manual?

Questions and answers

Summary of Contents for Apricum MECtp-Sec

  • Page 1 MECtp SECURE MECtp-Sec KNX Secure Line/Area Coupler/Repeater Technical & Application Description...
  • Page 2 MECtp SECURE This document is property of the company named at the last page. Without written approval, it may not be reproduced or commercialized, distributed or presented to other individuals for commercial purpose. Details and information contained within may be subject to change without notice.

  • Page 3: Table Of Contents

    MECtp SECURE Content Product Description Front Panel LED Indication LED Indication of Special Functions Commissioning Secure Commissioning Important Notes 1.6.1 Installation and Commissioning 1.6.2 Mounting and Safety 1.6.3 Maintenance Safekeeping of Device Certificate Feature Summary KNX Secure Operational Description TP Secure Coupler Application TP Secure Repeater Application KNX Network Installation 3.3.1...
  • Page 4 MECtp SECURE ETS Database of TP Secure Repeater General Main Line Subline Glossary Technical State of Delivery Datasheet Drawings - 4 -...

  • Page 5: Product Description

    Security function “Secure Commissioning” that can be set to active. MECtp-Sec can work as Line/Area Coupler to connect KNX TP Lines and KNX TP Areas. It can also work as KNX Repeater to extend a KNX TP Line. For this purpose, different applications are available.

  • Page 6: Front Panel

    MECtp Product Description SECURE Front Panel Figure 1: Front View Table 1: Front Panel Elements LEDs Buttons / Connectors Bus State KNX TP (Main line) Function Button Bus State KNX TP (Subline) Programming Button Telegram Traffic KNX TP (Main line) KNX TP Main Line Connector Telegram Traffic KNX TP (Subline) KNX TP Subline Connector...

  • Page 7: Led Indication

    MECtp Product Description SECURE LED Indication Following table gives a general description of the LED display indication intended for normal operation. Constellations of LED lighting during active special functions are further described in next chapter. Table 2: Normal LED Display Number Color Explanation / Range...

  • Page 8: Led Indication Of Special Functions

    MECtp Product Description SECURE LED Indication of Special Functions During an active special function, only LEDs described here are lighting. Other LEDs are off. Table 3: LED Status Display for Manual Function Number Color Comment Bus State KNX TP orange (Main line) Bus State KNX TP is <off>...

  • Page 9: Commissioning

    Figure 2: Connection Scheme To start a secured configuration download, Secure Commissioning must be activated in the ETS project before. Without activation, MECtp-Sec is working as plain device and will behave like MECtp (without supporting KNX Secure). Please also read chapter 1.6 Important Notes...

  • Page 10: Secure Commissioning

    Before the secured download of a configuration setting and/or the Individual Address can start, the individual Device Certificate of MECtp-Sec must have been added to the ETS project. To be able to add it, the ETS project must be password-protected.

  • Page 11: Important Notes

    MECtp Product Description SECURE Important Notes It is recommended to participate the standardized courses of a KNX-certified training center before installing, programming, and commissioning a KNX system. Here, the participant gains the necessary knowledge and skills, also required for troubleshooting, by practical exercises.

  • Page 12: Safekeeping Of Device Certificate

    MECtp Product Description SECURE Safekeeping of Device Certificate The Device Certificate can be found on a label that is adhered on side of the housing. To avoid unwanted access, the label consists of two parts. The upper part must remain on the housing, for identifying the device.

  • Page 13: Feature Summary

    KNX Data Secure format. • Configuring MECtp-Sec plus devices on the main line from the subline can be switched off. (This is very useful, when there are sublines that bear a high risk of being misused.) •...

  • Page 14: Knx Secure

    MECtp KNX Secure SECURE KNX Secure KNX devices that support KNX Secure are able to use a special protection basing on telegram encryption. Also, access to the device for configuring is protected and limited to the user that knows its Device Certificate. The Device Certificate is a device-specific protection code that is enclosed with the device on delivery.

  • Page 15: Operational Description

    SECURE Operational Description In KNX network installations, MECtp-Sec is used as KNX TP line/area coupler to connect two KNX TP lines. It can be used in plain mode, without activation of Security, and in ETS projects where Security is set to active. After connecting to KNX TP, MECtp-Sec operates with its default settings.

  • Page 16: Tp Secure Repeater Application

    If a telegram is routed by MECtp-Sec without receiving the corresponding acknowledgement, i.e. due to a missing receiver or to a transmission error, the telegram will be repeated up to three times (depending on the ETS setting).

  • Page 17: Knx Network Installation

    3.3.1 Individual Address For line coupler functionality in a KNX network, MECtp-Sec has to use the correct Individual Address of a line coupler (x.y.0). For backbone/area coupler functionality in a KNX network, MECtp-Sec has to use the correct Individual Address of an area coupler (x.0.0).

  • Page 18: Knx Topology

    To maintain this condition, interconnection between lines or line segments is strictly forbidden. Figure 8: MECtp-Sec Network Topology Each line segment requires its own KNX power supply unit. Using repeaters on backbone and main lines is not allowed.

  • Page 19: Adding Device Certificate

    MECtp Operational Description SECURE Adding Device Certificate The Device Certificate can be found printed on a side label on the housing. Every KNX Secure device uses its own Device Certificate. Entering this Device Certificate in ETS is mandatory before activating or using KNX Security functions. Please also follow the advice on handling the tear-off part of the side label in chapter 1.7 Safekeeping of Device Certificate.
  • Page 20 MECtp Operational Description SECURE Figure 11: Adding Device Certificate - 20 -...

  • Page 21: Programming

    3.5.1 Programming of Individual Address (and Application) The Individual Address (IA) can be assigned to MECtp-Sec by setting the desired address in the properties window of ETS. After downloading it into the device, MECtp-Sec can be addressed and identified by its new Individual Address.

  • Page 22: Special Functions

    Reset. With the Manual Function, the device switches to a special filter setting and with the Factory Reset, MECtp-Sec can be reset to its manufacturer default state. The active special function status is indicated by the LED display (see chapter 1.3 LED Indication of Special...

  • Page 23: Ets Database Of Tp Secure Coupler

    MECtp ETS Database of TP Secure Coupler SECURE ETS Database of TP Secure Coupler General Figure 13: General Tab Parameters Table 7: General Tab Parameter Settings Settings ETS Parameter Comment [Default Parameter] disabled pass all telegrams Configuration setting for telegram Manual Function pass all Physical telegrams routing when the Manual Function is...

  • Page 24: Main Line

    Setting “transmit all” is intended only for testing use. Please do not use for normal operation. If the parameter “Send confirmation on own telegrams” is set to “yes”, MECtp-Sec systematically sends an ACK on any own routed telegram. For example, since repeaters do not use filter tables, it is useful to have an ACK sent along with routed telegrams.
  • Page 25 MECtp ETS Database of TP Secure Coupler SECURE Settings ETS Parameter Comment [Default Parameter] After main line transmission error (e.g. Physical telegrams: due to missing receiver) Physical up to 3 repetitions Repetition if errors telegrams can be not repeated, be only one repetition on main line repeated only once, or be repeated for...

  • Page 26: Subline

    Setting “transmit all” is intended only for testing use. Please do not use for normal operation. If the parameter “Send confirmation on own telegrams” is set to “yes”, MECtp-Sec systematically sends an ACK on any own routed telegram. For example, since repeaters do not use filter tables, it is useful to have an ACK sent along with routed telegrams.
  • Page 27 ACK. Send confirmation on Telegrams sent out to the subline can own telegrams be confirmed by an added ACK. [no] ‘Block’ means MECtp-Sec can only be allow Configuration from configured from its main line side and block subline (KNX TP)
  • Page 28 MECtp ETS Database of TP Secure Repeater SECURE ETS Database of TP Secure Repeater General Figure 16: General Tab Parameters Table 10: General Tab Parameter Settings Settings ETS Parameter Comment [Default Parameter] disabled pass all telegrams Configuration setting for telegram Manual Function pass all Physical telegrams routing when the Manual Function is...
  • Page 29 Setting “transmit all” is intended only for testing use. Please do not use for normal operation. If the parameter “Send confirmation on own telegrams” is set to “yes”, MECtp-Sec systematically sends an ACK on any own routed telegram. For example, since repeaters do not use filter tables, it is useful to have an ACK sent along with routed telegrams.
  • Page 30 MECtp ETS Database of TP Secure Repeater SECURE Settings ETS Parameter Comment [Default Parameter] Send confirmation on Telegrams sent out to the main line can own telegrams be confirmed by an added ACK. [no] - 30 -...
  • Page 31 Setting “transmit all” is intended only for testing use. Please do not use for normal operation. If the parameter “Send confirmation on own telegrams” is set to “yes”, MECtp-Sec systematically sends an ACK on any own routed telegram. For example, since repeaters do not use filter tables, it is useful to have an ACK sent along with routed telegrams.
  • Page 32 [Default Parameter] Send confirmation on Telegrams sent out to the subline can own telegrams be confirmed by an added ACK. [no] ‘Block’ means MECtp-Sec can only be allow Configuration from configured from its main line side and block subline (KNX TP)
  • Page 33 MECtp Glossary SECURE Glossary An ACK is a positive IACK frame. If the sender detects an ACK, then the sender´s data has been received correctly, meaning the data has been successfully transmitted to the receiver. Acknowledgement frames Acknowledgment on the KNX Link Layer is also called Immediate ACK (IACK) in KNX jargon, presumably to differentiate it from other ack methods on the upper layers.
  • Page 34 MECtp Glossary SECURE Group Communication Group communication objects contain the datapoints which Object are transmitted via runtime communication. One or more group addresses are assigned to one group communication object. One of these assigned group addresses is the sending group address (to send the group communication object value to the bus).
  • Page 35 MECtp Glossary SECURE Security functions For using ETS Security functions, a minimum ETS version is necessary. Security functions have been available since ETS version 5.7.2 (ETS Inside 1.4.0). Short Telegrams Short telegrams or short frames are telegrams having an APDU length that is not exceeding 15 octets. Short telegrams use the standard frame format.
  • Page 36 MECtp Technical SECURE Technical State of Delivery Table 13: Factory Default Setting General Individual Address 15.15.0 KNX TP Main line (Main line to Subline) Group telegrams (main group 0…13) filter (filter table is empty) Group telegrams (main group 14…31) route all Physical telegrams filter Physical: Repetition if errors on main line...
  • Page 37 MECtp Technical SECURE Datasheet MECtp-Sec Marking/Design < 10 mA Current consumption KNX TP main line: KNX TP connector (red/black), screwless, for single-core cable Ø 0.6…0.8 mm Connections KNX TP subline: KNX TP connector (red/black), screwless, for single-core cable Ø 0.6…0.8 mm...
  • Page 38 MECtp Technical SECURE Drawings Dimensions shown here are specified in mm. The total device width is 2 modules at 18 mm. Figure 19: Dimension drawings - 38 -...
  • Page 39 MECtp-Sec doesn´t work. Either use Commissioning Password and Authentication Code from your former project or make a factory reset to set MECtp-Sec´s tool key back to its FDSK. I lost the Device Certificate and the password for the project where it was •...
  • Page 40 MECtp SECURE MECtp-Sec Application: KNX Secure Line/Area Coupler/Repeater Doctype: Technical & Application Description Release Number / Release Date: R1-1 / November 2022 TAD is intended for: Firmware (y = a,b,c, …) Databases R1-2y ETS version ETS5.7.3 and higher (not ETS6) Weblink to actual ETS Database: https://www.apricum.com/mectp-sec...

Table of Contents