Configuration
4.9 Security (CP 1543SP-1)
CP 154xSP-1
74
Operating Instructions, 12/2019, C79000-G8976-C426-05
SNMPv3
The algorithms need to be configured for encrypted access to the device via SNMPv3.
●
"Authentication algorithm"
Select the authentication method to be used from the drop-down list.
●
"Encryption algorithm"
Select the encryption method to be used from the drop-down list.
User management
In the user management that you will find in the global security settings, assign the various
users their role.
Below the properties of the roles you can see the rights list of the particular role, for example
the various types of access using SNMP. For new roles, you can freely configure individual
rights.
You will find information on users, roles and the password policy in the information system of
STEP 7.
4.9.7
Certificate manager
If the security functions are enabled, the certificates for all security modules involved are
generated in the STEP 7 project, for example to allow communication via VPN connections.
Certificates generated by STEP 7 such as SSL certificates or VPN group certificates are
automatically assigned to the corresponding modules and do not need to be assigned using
the local security settings.
The local certificate manager
Certificates that were imported via the certificate manager in the global security settings are
not automatically assigned to the corresponding modules. Imported certificates must be
included in the list of trustworthy partner certificates manually via the "Certificate manager"
entry in the local security settings. When assigning a CA certificate the module is also
assigned the certificates derived from it.
Adding certificates
Via the local certificate manager, assign certificates of the partners to the CP for certain
services, e.g. secure sending of e-mails.
1.
To do this, click the table cell "Add new".
2.
Click on the button on a white background "...".
3.
In the certificate list that opens, you can either add a new certificate using the "Add"
button or select an existing certificate of the project using the check mark symbol.
You can recognize the properties of the displayed certificates in the global certificate
manager.