PLCnext starting up The starting up of a PLCnext Control in a security context includes the following steps: Checking the device Deriving IP addresses Assigning IP addresses Activating the Security Profile Checking the integrity state Creating users Configuring TLS Generating self-signed HTTPS certificates in… Read More
Generic security concept Defense-in-depth design of automation systems is an important IEC 62443 process measure to achieve reliable security. The result is a generic layered architecture that leads step-by-step to a fully segmented network layer structure that describes the PLCnext Technology security architecture and the security use cases in… Read More
Checking the integrity state If the Security Profile is activated, an integrity state check is performed after each boot and log-in to the WBM. The integrity state is displayed in the WBM in the page header line right to the Security Profile state field. Note: Every event… Read More
Activating Proficloud Activating further system services can compromise security Before activating further system services, you must perform a risk analysis of the system service and its impact on the security of the device and the application, taking into account the overall security context. The Proficloud is deactivated by default. Read More
Handling the Security Profile Activating the Security Profile Log in to the WBM. Return to topicHow do I get to the WBM again? Click here for more information… Establishing a connection to the Web-based Management (WBM): Open a web browser on your computer. In… Read More
Configuring extended firewall settings See also the Configuring basic firewall settings topic. For basic firewall configuration information, refer to the Firewall WBM topic in the main PLCnext Technology ‑ Info Center . In the exemplary security context, access from the Engineering Station is only allowed via the extension module from the superordinate network. To… Read More
Configuring basic firewall settings For basic firewall configuration information, refer to the Firewall WBM topic in the main PLCnext Technology ‑ Info Center. Log in to the WBM. Return to topicHow do I get to the WBM again? Click here for more information… Establishing a connection to the Web-based… Read More
Activating DataLogger Log in to the WBM. Return to topicHow do I get to the WBM again? Click here for more information… Establishing a connection to the Web-based Management (WBM): Open a web browser on your computer. In the address field, enter the URL… Read More
Checking SD card settings Note: Make sure that the Security Profile is activated before you start encrypting the SD card. For BPC 9102S and RFC 4072S When using a BPC 9102S or RFC 4072S, the use of an external SD card is mandatory. In a security context, you must use encrypted SD cards. Make… Read More
Installing apps Installing apps can compromise security Before installing an app, you must perform a risk analysis of the app and its impact on the security of the device and the application, taking into account the overall security context. In particular, investigate the following effects on the… Read More
