Communications Document

Network Security

General

Morningstar controllers/inverters do not contain any built-in security features or protections. The

userisresponsibleforsecuritythroughnetworkcongurationandsettings.Therewillbenologin

or password required to communicate with the controller/inverter. If your system has internet ac-

cess,useofarewallishighlyrecommendedtopreventunauthorizedusersfromaccessingthe

controller.

Basic Security

If your Morningstar product will be connected to the internet, it is highly advised that it is pro-

tectedbehindtherewallofanotherdevice,suchasarouter.Linksys

brand routers are a cost

effectivewaytoprovideamoderateamountofinternetsecurity(ifconguredproperly).

Ethernet equipped Morningstar products will have an Ethernet Security DIP switch setting to al-

low/disable write commands to the unit’s internal memory. (i.e. TSMPPT - DIP Switch #8) This a

safety feature to prevent unintended changes to custom settings, but it is not a replacement for

proper network security. Never connect units to an open or unprotected network.

NOTE: Adjustments to network settings and custom

charging setpoints are always enabled via RS-232 or EIA-

485. The Ethernet Security swtich only enables/disables

remote conguration via TCP/IP.

CAUTION: Risk of Tampering

The Ethernet Security settings switch is NOT a replacement for network security. A network

rewall should be used.

CAUTION: Risk of Tampering

The Ethernet Security settings switch does not block write commands to devices bridged via EIA-

485.

High-Security Applications

Applications with tighter security needs will require more advanced routers or other equipment.

Wireless applications are an example; wireless transmission is much easier to intercept than is

wired transmission. To reduce the risks of sending sensitive information wirelessly, data encryp-

tioninconjunctionwitharewallshouldbeused.

Network Security10.0