User Manual

ManualsBrandsSiemens ManualsAutomationSignal module SIMATIC S7-1200 Series

191

192

193

194

195

196

197

198

199

200

Web server for easy Internet connectivity

9.1 Easy to use the standard Web pages

Easy Book

Manual, 03/2014, A5E02486774-AF

195

The File Browser page allows you to view,

download, or edit files in the load memor

y of

the CPU such as

data logs (Page 112) and

recipes. Unless the CPU has Level 4

protection, all users can view the files from the

File Browser p

age. Users with privileges to

modify files can delete, edit and rename files.

The Module Information page in addition to

displaying inf

ormation about the modules in

your station allows you to update the version

of firmware in your CPU or other modules that

support firmware update. Users with privileges

to query diagnostics can view module

information. Users with privileges to perform a

rmware update can update firmware.

Other standard web pages display information about the CPU (such as the serial number,

the version and the order number) and about the communication parameters (such as

network addresses, physical properties of the communication interfaces, and communication

statistics).

WARNING

Unauthorized access to the CPU through the Web server

Unauthorized access to the CPU or changing PLC variables to invalid values could disrupt

process operation and could result in death, severe personal injury and/or property

damage.

Because enabling the Web server allows authorized users to perform operating mode

changes, writes to PLC data, and firmware updates, Siemens recommends that you

observe the following security practices:

• Enable access to the Web server only with the HTTPS protocol.

• Password-protect Web server user IDs with a strong password. Strong passwords are at

least ten characters in length, mix letters, numbers, and special characters, are not

words that can be found in a dictionary, and are not names or identifiers that can be

derived from personal information. Keep the password secret and change it frequently.

• Do not extend the default minimum privileges of the "Everybody" user.

• Perform error-checking and range-checking on your variables in your program logic

because Web page users can change PLC variables to invalid values.

• Use a secure Virtual Private Network (VPN) to connect to the S7-1200 PLC Web server

from a location outside your protected network.