Siemens SCALANCE W760, SCALANCE W720 Operating Instructions Manual

SIMATIC NET

Industrial Wireless LAN SCALANCE W760/W720

Operating Instructions

09/2017

C79000-G8976-C322-08

Introduction

Security recommendations

Description of the device

Mounting

Connection

Upkeep and maintenance

Technical data

Dimension drawings

Approvals

Legal information Warning notice system

This manual contains notices you have to observe in order to ensure your personal safety, as well as to prevent damage to property. The notices referring to your personal safety are highlighted in the manual by a safety alert symbol, notices referring only to property damage have no safety alert symbol. These notices shown below are graded according to the degree of danger.

DANGER

indicates that death or severe personal injury will result if proper precautions are not taken.

WARNING

indicates that death or severe personal injury may result if proper precautions are not taken.

CAUTION

indicates that minor personal injury can result if proper precautions are not taken.

NOTICE indicates that property damage can result if proper precautions are not taken.

If more than one degree of danger is present, the warning notice representing the highest degree of danger will be used. A notice warning of injury to persons with a safety alert symbol may also include a warning relating to property damage.

Qualified Personnel

The product/system described in this documentation may be operated only by personnel qualified for the specific task in accordance with the relevant documentation, in particular its warning notices and safety instructions. Qualified personnel are those who, based on their training and experience, are capable of identifying risks and avoiding potential hazards when working with these products/systems.

Proper use of Siemens products

Note the following:

WARNING

Siemens products may only be used for the applications described in the catalog and in the relevant technical documentation. If products and components from other manufacturers are used, these must be recommended or approved by Siemens. Proper transport, storage, installation, assembly, commissioning, operation and maintenance are required to ensure that the products operate safely and without any problems. The permissible ambient conditions must be complied with. The information in the relevant documentation must be observed.

Trademarks

All names identified by ® are registered trademarks of Siemens AG. The remaining trademarks in this publication may be trademarks whose use by third parties for their own purposes could violate the rights of the owner.

Disclaimer of Liability

We have reviewed the contents of this publication to ensure consistency with the hardware and software described. Since variance cannot be precluded entirely, we cannot guarantee full consistency. However, the information in this publication is reviewed regularly and any necessary corrections are included in subsequent editions.

Siemens AG Division Process Industries and Drives Postfach 48 48 90026 NÜRNBERG GERMANY

C79000-G8976-C322-08 Ⓟ 09/2017 Subject to change

Table of contents

1 Introduction...................................................................................................................................................5

1.1 Information on the Operating Instructions................................................................................5

2 Security recommendations...........................................................................................................................7

3 Description of the device............................................................................................................................11

3.1 Description of the device........................................................................................................11

3.2 Structure of the type designation...........................................................................................12

3.3 Components of the product....................................................................................................13

3.4 Accessories............................................................................................................................14

3.4.1 Flexible connecting cables and antennas..............................................................................16

3.4.1.1 Flexible connecting cables.....................................................................................................16

3.4.1.2 Antennas................................................................................................................................17

3.5 LED display............................................................................................................................20

3.6 Reset button...........................................................................................................................22

4 Mounting.....................................................................................................................................................25

4.1 Installing on a DIN rail / removing..........................................................................................26

5 Connection.................................................................................................................................................29

5.1 Lightning protection, power supply and grounding.................................................................30

5.2 Power supply..........................................................................................................................33

5.3 Ethernet..................................................................................................................................34

5.4 Antenna connector.................................................................................................................35

5.5 Grounding..............................................................................................................................36

6 Upkeep and maintenance...........................................................................................................................37

6.1 Device configuration with PRESET-PLUG.............................................................................37

6.2 Restoring the factory settings.................................................................................................40

6.3 Firmware update via WBM or CLI not possible......................................................................41

7 Technical data............................................................................................................................................43

8 Dimension drawings...................................................................................................................................45

9 Approvals....................................................................................................................................................47

Index...........................................................................................................................................................49

SCALANCE W760/W720 Operating Instructions, 09/2017, C79000-G8976-C322-08 3

Table of contents

SCALANCE W760/W720

4 Operating Instructions, 09/2017, C79000-G8976-C322-08

Introduction

1.1 Information on the Operating Instructions

Validity of the Operating Instructions

These operating instructions cover the following products:

Article number of the

RoW version

Article number of the US version

Article number of the IL

version Access point SCALANCE W761-1

RJ-45

6GK5761-1FC00-0AA06GK5761-1FC00-0AB0 -

Ethernet client modules SCALANCE W722-1

RJ-45 (iFeatures)

6GK5722-1FC00-0AA06GK5722-1FC00-0AB0 6GK5722-1FC00-0AC0

SCALANCE W721-1 RJ-45

6GK5721-1FC00-0AA06GK5721-1FC00-0AB0 -

These operating instructions apply to the following software version:

● SCALANCE W760/W720 with firmware as of Version 6.2

Purpose of the Operating Instructions

Using the Operating Instructions, you will be able to install and connect the SCALANCE W760/ W720 correctly. The configuration and the integration of the device in a WLAN are not described in these instructions.

Documentation on the accompanying CD

You will find detailed information about configuration in the SCALANCE W700 configuration manuals on the accompanying SIMATIC NET IWLAN CD under the file name:

PH_SCALANCE-W760-W720-WBM_76.pdf and PH_SCALANCE-W760-W720-CLI_76.pdf

Note

Make sure that you read the explanations and instructions in the README.txt file

Security information

Siemens provides products and solutions with industrial security functions that support the secure operation of plants, systems, machines and networks.

SCALANCE W760/W720 Operating Instructions, 09/2017, C79000-G8976-C322-08 5

In order to protect plants, systems, machines and networks against cyber threats, it is necessary to implement – and continuously maintain – a holistic, state-of-the-art industrial security concept. Siemens’ products and solutions constitute one element of such a concept.

Customers are responsible for preventing unauthorized access to their plants, systems, machines and networks. Such systems, machines and components should only be connected to an enterprise network or the internet if and to the extent such a connection is necessary and only when appropriate security measures (e.g. firewalls and/or network segmentation) are in place.

Additionally, Siemens’ guidance on appropriate security measures should be taken into account. For additional information on industrial security measures that may be implemented, please visit Link (https://www.siemens.com/industrialsecurity)

Siemens’ products and solutions undergo continuous development to make them more secure. Siemens strongly recommends that product updates are applied as soon as they are available and that the latest product versions are used. Use of product versions that are no longer supported, and failure to apply the latest updates may increase customer’s exposure to cyber threats.

To stay informed about product updates, subscribe to the Siemens Industrial Security RSS Feed under Link (https://www.siemens.com/industrialsecurity).

Trademarks

The following and possibly other names not identified by the registered trademark sign ® are registered trademarks of Siemens AG:

SIMATIC NET, SCALANCE, C-PLUG, RCoax

Introduction

1.1 Information on the Operating Instructions

SCALANCE W760/W720

6 Operating Instructions, 09/2017, C79000-G8976-C322-08

Security recommendations

To prevent unauthorized access, note the following security recommendations.

General

● You should make regular checks to make sure that the device meets these recommendations and/or other security guidelines.

● Evaluate your plant as a whole in terms of security. Use a cell protection concept with suitable products.

● When the internal and external network are disconnected, an attacker cannot access internal data from the outside. Therefore operate the device only within a protected network area.

● For communication via non-secure networks use additional devices with VPN functionality to encrypt and authenticate the communication.

● Terminate management connections correctly (WBM. Telnet, SSH etc.).

See also

Product cert (http://www.siemens.com/cert/en/cert-security-advisories.htm)

http://www.siemens.com/industrialsecurity (http://www.siemens.com/industrialsecurity)

Passwords

● Define rules for the use of devices and assignment of passwords.

● Regularly update passwords and keys to increase security.

● Change all default passwords for users before you operate the device.

● Only use passwords with a high password strength. Avoid weak passwords for example password1, 123456789, abcdefgh.

● Make sure that all passwords are protected and inaccessible to unauthorized personnel.

● Do not use the same password for different users and systems or after it has expired.

Keys and certificates

This section deals with the security keys and certificates you require to set up HTTPS ( HyperText Transfer Protocol Secured Socket Layer).

● We strongly recommend that you create your own HTTPS certificates and make them available. There are preset certificates and keys on the device. The preset and automatically created HTTPS certificates are self-signed. We recommend that you use HTTPS certificates signed either by a reliable external or by an internal certification authority. The HTTPS certificate checks the identity of the device and controls the encrypted data exchange. You can install the HTTPS certificate via the WBM (System > Load and Save).

● Handle user-defined private keys with great caution if you use user-defined SSH or SSL keys.

● Use the certification authority including key revocation and management to sign the certificates.

● Verify certificates and fingerprints on the server and client to avoid "man in the middle" attacks.

Security recommendations

SCALANCE W760/W720

8 Operating Instructions, 09/2017, C79000-G8976-C322-08

● We recommend that you use certificates with a key length of 2048 bits.

● Change keys and certificates immediately, if there is a suspicion of compromise.

Secure/non-secure protocols

● For the DCP function, enable the "DCP read-only" mode after commissioning.

● Avoid and disable non-secure protocols, for example Telnet and TFTP. For historical

reasons, these protocols are still available, however not intended for secure applications. Use non-secure protocols on the device with caution.

● The following protocols provide secure alternatives:

– SNMPv1/v2 → SNMPv3

Check whether use of SNMPv1 is necessary. SNMPv1 is classified as non-secure. Use the option of preventing write access. The product provides you with suitable setting options. If SNMP is enabled, change the community names. If no unrestricted access is necessary, restrict access with SNMP. Use SNMPv3 in conjunction with passwords.

– HTTP → HTTPS

– Telnet → SSH

– SNTP → NTP

● Use secure protocols when access to the device is not prevented by physical protection

measures.

● To prevent unauthorized access to the device or network, take suitable protective measures

against non-secure protocols.

● If you require non-secure protocols and services, operate the device only within a protected

network area.

● Restrict the services and protocols available to the outside to a minimum.

Available protocols per port

The following list provides you with an overview of the open ports on this device.

The table includes the following columns:

● Protocol

All protocols that the device supports

● Port number

Port number assigned to the protocol

● Port status

– Open

The port is always open and cannot be closed.

– Open (when configured)

The port is open if it has been configured.

Security recommendations

SCALANCE W760/W720 Operating Instructions, 09/2017, C79000-G8976-C322-08 9

● Factory setting

– Open

The factory setting of the port is "Open".

– Closed

The factory setting of the port is "Closed".

● Authentication Specifies whether or not the protocol is authenticated.

Protocol Port number Port status Factory setting of the

port

Authentication

SSH TCP/22 Open (when config‐

ured)

Open Yes

TELNET TCP/23 Open (when config‐

ured)

Open Yes

HTTP TCP/80 Open (when config‐

ured)

Open Yes

HTTPS TCP/443 Open (when config‐

ured)

Open Yes

SNTP NTP

UDP/123 Open (when config‐

ured)

Closed No

SNMP UDP/161 Open (when config‐

ured)

Open Yes

PROFINET UDP/34964,

UDP/49154, 49155

Open Open No

Syslog UDP/514 Open (when config‐

ured)

Open No

EtherNet/IP TCP/44818,

UDP/ 2222,44818

Open (when config‐ ured)

Open No

DHCP UDP/67,68 Open (when config‐

ured)

Closed No

RADIUS UDP/

1812,1813

Open (when config‐ ured)

Closed No

TFTP UDP/69 Open (when config‐

ured)

Closed No

Security recommendations

SCALANCE W760/W720

10 Operating Instructions, 09/2017, C79000-G8976-C322-08

Description of the device

3.1 Description of the device

W76x / W72x

L1P1R1 F

SCALANCE

W700

R1A1











① LEDs ② Antenna connector ③ RESET button ④ Ethernet connector ⑤ Connector for power supply and grounding

SCALANCE W760/W720 Operating Instructions, 09/2017, C79000-G8976-C322-08 11

3.2 Structure of the type designation

The type designation of the device is made up of several parts that have the following meaning:

Ethernet copper cable

1 Standard device 2 Device supports iFeatures

6 Access point 2 Client

Number of IWLAN interfaces

W7 - 1 RJ45

Description of the device

3.2 Structure of the type designation

SCALANCE W760/W720

12 Operating Instructions, 09/2017, C79000-G8976-C322-08

3.3 Components of the product

The following components are supplied with the product:

● SCALANCE W761 or SCALANCE W722 or SCALANCE W721

● 1 protective cap for the antenna socket

● A 3-pin terminal block for the power supply

● SIMATIC NET Industrial Wireless LAN CD

Please check that the consignment you have received is complete. If the consignment is incomplete, contact your supplier or your local Siemens office.

Description of the device

3.3 Components of the product

SCALANCE W760/W720 Operating Instructions, 09/2017, C79000-G8976-C322-08 13

3.4 Accessories

Technical data subject to change.

You will find further information on the accessories program in the Industry Mall. (https://

mall.industry.siemens.com)

Cables Industrial Ethernet

Component Description Article number IE FC TP STANDARD CA‐

BLE GP2X2 (PROFINET type A)

Standard bus cable, TP installation cable for con‐ nection to FC OUTLET RJ-45, for universal use, 4wire, shielded, CAT 5E

Sold by the meter

6XV1840-2AH10

IE FC TP ROBUST STANDARD CABLE GP 2X2

(PROFINET type A)

Standard bus cable, ATPE outer jacket for connec‐ tion to FC RJ-45 PLUG and FC OUTLET RJ-45, fixed installation, for universal use, 4-wire, shielded, CAT 5

Sold by the meter

6XV1841-2A

IE FC TP ROBUST FLEXI‐ BLE CABLE GP 2X2

(PROFINET type B)

Flexible bus cable, TPE outer jacket for connection to FC RJ-45 PLUG and FC OUTLET RJ-45, flexible wires, 4-wire, shielded, CAT 5

Sold by the meter

6XV1841-2B

IE FC TP FLEXIBLE CA‐ BLE GP 2X2

(PROFINET type B)

Flexible bus cable, TP installation cable, flexible wires, shielded, CAT 5

Sold by the meter

6XV1870-2B

IE FC TP TRAILING CA‐ BLE 2X2

(PROFINET type C)

Highly flexible bus cable, TP installation cable for connection to FC OUTLET RJ-45, for use in drag chains, 4-wire, shielded, CAT 5

Sold by the meter

6XV1840-3AH10

IE TP TORSION CABLE 2X2

(PROFINET type C)

Highly flexible bus cable, TP installation cable for use in highly flexible applications (torsion), 4-wire

Sold by the meter

6XV1870-2F

IE CONNECTING CABLE M12-180/IE RJ45

Flexible IE connecting cable, 4-wire, preassembled with a 4-pin M12 plug (D-coded) and an IE FC RJ-45 plug 145

6XV1871-5T*

IE CONNECTING CABLE M12-180/M12-180

Flexible IE connecting cable, 4-wire, preassembled with two 4-pin M12 plugs (D-coded)

6XV1870-8A*

* Available in different lengths

Description of the device

3.4 Accessories

SCALANCE W760/W720

14 Operating Instructions, 09/2017, C79000-G8976-C322-08

Cabinet feedthrough

Component Description Article number IE M12 PANEL

FEEDTHROUGH

Cabinet feedthrough for conversion from M12 connector technology (D-coded, IP65) to RJ-45 connector technolo‐ gy (IP20)

pack of 5

6GK1901-0DM20-2 AA5

IE M12 PANEL FEEDTHROUGH PRO

Cabinet feedthrough for conversion from M12 connector technology (D-coded, IP65) to M12 connector technology (D-coded, IP65)

pack of 5

6GK1901-0DM30-2 AA5

IE M12 PANEL FEEDTHROUGH 4X2

Cabinet feedthrough for conversion from M12 connector technology (X-coded, IP65/67) to RJ-45 connector tech‐ nology (X-coded, IP20)

pack of 5

6GK1901-0DM40-2 AA5

N-Connect/N-Con‐ nect female/female Panel Feedthrough

Panel feedthrough for wall thicknesses up to a maximum of 4.5 mm, two N-Connect female connectors.

6GK5798-2PP00-2 AA6

N-Connect/SMAConnect female/fe‐ male Panel Feed‐ through

Panel feedthrough for wall thicknesses up to a maximum of 5.5 mm, two N-Connect/SMA female connectors.

6GK5798-0PT00-2 AA6

Lightning protection

Component Description Article number LP798‑1N Lighting protector with N/N female/female connector with gas dis‐

charge technology

6GK5798-2LP00-2 AA6

LP798‑2N Lighting protector with N/N female/female connector with quarter

wave technology

6GK5798-2LP10-2 AA6

Terminating resistor

Component Description Article number TI795-1R Electrical connection

RSMA-Connect, male

6GK5795-1TR10-0 AA6

Description of the device

3.4 Accessories

SCALANCE W760/W720 Operating Instructions, 09/2017, C79000-G8976-C322-08 15

+ 35 hidden pages

Siemens SCALANCE W760, SCALANCE W720 Operating Instructions Manual

Specifications and Main Features

Frequently Asked Questions

User Manual