Configuration
4.9 Security (CP 1543SP-1)
CP 154xSP-1
Operating Instructions, 12/2019, C79000-G8976-C426-05
67
4.9.5.2
SINEMA Remote Connect
Remote maintenance with SINEMA Remote Connect (SINEMA RC)
The application "SINEMA Remote Connect" (SINEMA RC) is available for remote
maintenance purposes.
SINEMA RC uses OpenVPN for encryption of the data. The center of the communication is
SINEMA RC Server via which communication runs between the subscribers and that
manages the configuration of the communications system.
Preparatory steps
Execute the following steps before start configuring the SINEMA RC connection of the
module in STEP 7. They are the prerequisite for a consistent STEP 7 project.
●
Configuration of SINEMA Remote Connect Server
Configure SINEMA RC Server as necessary (not in STEP 7). The communications
module and its communications partners must be configured in the SINEMA RC Server.
●
Exporting the CA certificate (optional)
If you want to use the server certificate as authentication method of the communications
module during connection establishment, export the CA certificate from SINEMA RC
Server.
Then import the CA certificate from SINEMA RC Server to the engineering station.
Alternatively, you can use the fingerprint of the server certificate as authentication method
of the communications module. The fingerprint's duration of validity may be shorter than
that of the certificate.
Please note that you need to repeat the import of a certificate in the event of a module
replacement.
Configuration of SINEMA Remote Connect
Importing your own certificate
1.
On the CP, navigate to the parameter group "Security > Certificate manager >
Certificates of the partner devices".
2.
Open the certificate selection dialog with a double-click on the first free table row.
3.
Select the CA certificate of SINEMA RC Server.
Then navigate to the parameter group "Security > VPN".