Safety notices
2.1 Security recommendations
SCALANCE XR-300WG
12 Operating Instructions, 05/2017, C79000-G8976-C454-01
Connect to the device and change the standard passwords for the users "admin" and "user"
before you operate the device. To be able to change passwords you need to be logged in
with write access to the configuration data.
To prevent unauthorized access, note the following security recommendations.
● You should make regular checks to make sure that the device meets these
recommendations and/or other security guidelines.
● Evaluate your plant as a whole in terms of security. Use a cell protection concept with
suitable products (
http://www.industry.siemens.com/topics/global/en/industrial-
security/network-security/Pages/Default.aspx).
● When the internal and external network are disconnected, an attacker cannot access
internal data from the outside. Therefore operate the device only within a protected
network area.
● For communication via non-secure networks use additional devices with VPN functionality
to encrypt and authenticate the communication.
● Terminate management connections correctly (WBM. Telnet, SSH etc.).
● Restrict physical access to the device to qualified personnel.
● Lock unused physical ports on the device. Unused ports can be used to gain forbidden
access to the plant.
Software (security functions)
● Keep the firmware up to date. Check regularly for security updates for the device. You will
find information on this on the Internet pages Industrial Security
(http://www.siemens.com/industrialsecurity
).
● Inform yourself regularly about security recommendations by Siemens ProductCERT
(http://www.siemens.com/cert/en/cert-security-advisories.htm
).
● Only activate protocols that you require to use the device.
● Restrict access to the management of the device with rules in an access control list
(ACL).
To Next Page
Loading...
Need help?
General