Web server
11.5 Standard Web pages
Your login times out after thirty minutes of inactivity. If the currently-loaded page is
continually refreshing, the login does not time out.
Unauthorized access to the CPU through the Web server
Unauthorized access to the CPU or changing PLC variables to invalid values could disrupt
process operation and could result in death, severe personal injury and/or property
damage.
Because enabling the Web server allows authorized users to perform operating mode
changes, writes to PLC data, and firmware updates, Siemens recommends that you
observe the following security practices:
• Enable access to the Web server only with the HTTPS protocol.
• Password-protect Web server user IDs (Page 190) with a strong password. Strong
• Perform error-checking and range-checking on your variables in your program logic
If you encounter any errors logging in, return to the Introduction page (Page 613) and
download the Siemens security certificate (Page 666). You can then log in with no errors.
Logging out
612
WARNING
passwords are at least eight characters in length, mix letters, numbers, and special
characters, are not words that can be found in a dictionary, and are not names or
identifiers that can be derived from personal information. Keep the password secret and
change it frequently.
because Web page users can change PLC variables to invalid values.
To log out, simply click the "Logout" link from any page
when viewing from a PC or wide mobile device.
From a small mobile device, navigate to the
Login/Logout page from the Home page and tap the
"Logout" button.
System Manual, 03/2014, A5E02486680-AG
S7-1200 Programmable controller