Configuration and operation
6.11
Possible security gaps on standard IT interfaces: preventing unauthorized access
CP 343-1
54
Manual, 12/2018,
C79000−G8976−C201
-08
Access permissions using community name
The CP uses the following community names to control the access rights in the SNMP
agent:
Table
6
- 2
Access rights in the SNMP agent
Type of access
Community name
*)
Read access
public
Read and write access
private
*) Note the use of lowercase letters!
MIB files for your SNMP tools
If you use an SNMP tool, you will find the MIB files relevant to the CP in the STEP 7
installation in the following folder:
<Drive>\<Installation folder>\Siemens\Step7\S7DATA\snmp\mib
For the Automation System MIB, for example, these are the following files:
●
automationPS.mib
●
automationSmi.mib
●
automationSystem.mib
●
automationTC.mib
6.11
Possible security gaps on standard IT interfaces: preventing
unauthorized access
With various SIMATIC NET components, such as switches, a wide range of parameter
assignment and diagnostics functions (for example, Web servers, network management) are
available using open protocols and interfaces. The possibility of unauthorized misuse of
these open protocols and interfaces by third parties, for example to manipulate data, cannot
be entirely excluded.
When using the functions listed above and these open interfaces and protocols (for example,
SNMP, HTTP), you should take suitable security measures to prevent unauthorized access
to the components and the network particularly from within the WAN/Internet.
Note
We expressly point out that automation networks must be isolated from the rest of the
company network by suitable gateways (for example using tried and tested firewall systems).
We do not accept any liability whatsoever, whatever the legal justification, for damage
resulting from nonadherence to this notice.
If you have questions on the use of firewall systems and IT security, please contact your
local Siemens office or representative. You will find the address in the SIMATIC catalog IK
PI
or on the Internet at the following address:
(
Содержание SIMATIC NET CP 343-1
Страница 8: ...Preface CP 343 1 8 Manual 12 2018 C79000 G8976 C201 08 ...
Страница 30: ...Requirements for use 3 3 Programming CP 343 1 30 Manual 12 2018 C79000 G8976 C201 08 ...
Страница 34: ...LEDs CP 343 1 34 Manual 12 2018 C79000 G8976 C201 08 ...
Страница 64: ...Service and maintenance 7 4 Replacing a module CP 343 1 64 Manual 12 2018 C79000 G8976 C201 08 ...
Страница 78: ...Index CP 343 1 78 Manual 12 2018 C79000 G8976 C201 08 ...