Secure by default: Configuring PLCnext Store PLCnext Store and NTP server A connection to the PLCnext Store can only be established with the current time. In the security context, you can only establish a reliable connection to the PLCnext Store if an NTP server is available. See also Configuring the system time in… Read More
Secure by default: Activating PROFINET A large port range is required for the use of PROFINET as the system automatically selects the required ports depending on the network configuration. To restrict access to the PROFINET interfaces, the IP addresses of the PROFINET devices must be configured so that… Read More
Secure by default: Installing apps Installing apps can compromise security Before installing an app, you must perform a risk analysis of the app and its impact on the security of the device and the application, taking into account the overall security context. In particular, investigate the following… Read More
Secure by default Guideline and security measures – an overview To achieve security in an automation system, a holistic approach is necessary. An adequate security concept must be drawn up that covers technologies used, the defined processes, and the people involved. Both technological and organizational measures must be taken… Read More
Secure by default: Use cases and security context PLCnext Technology is supporting different security use cases. There are PLCnext Control devices that are equipped with Security Profile and devices that are secure by default. Check which device you are using in the PLCnext Control topic. A secure by default PLCnext Technology device is an IEC 62443-4-1/4-2… Read More
Secure by default: Managing certificates For more information on certificate management, refer to the Certificate management in the main PLCnext Technology – Info Center. • Published/reviewed: 2026-02-23 • Revision 021 • … Read More
Secure by default: Configuring Modbus TCP Client Activating the Modbus TCP Client in the system services The Modbus TCP Client is deactivated by default. To activate Modbus TCP Client, proceed as follows: Log in to the WBM. Return to topicHow do I get to the WBM again? Click here… Read More
Secure by default – Starting up The starting up of a PLCnext Control in a security context includes the following steps: Checking the device Deriving IP addresses Assigning IP addresses Checking the integrity state Creating users Configuring TLS Generating self-signed HTTPS certificates in the… Read More
Secure by default: Checking the device Note: If you have installed firmware 2025.0 and activated the Security Profile in the previous firmware version, you must perform a reset 1 after the update. Log in to the WBM. Return to topicHow do I get to the WBM again?… Read More
Secure by default: Checking the integrity state Checking the integrity state depends on your particular PLCnext Control. Therefore, please note the information for your respective PLCnext Control. • Published/reviewed: 2026-02-23 • Revision 021 • … Read More
