SIMATIC NET OPC UA S7variable DOC V2 1 en
SIMATIC NET OPC UA S7variable DOC V2 1 en
Industry
Online
Support
APPLICATION EXAMPLE
S7 communication
between S7 CPU and
PC station
S7 variable services with SIMATIC NET OPC UA server
Table
Legal information
Use of application examples
Application examples illustrate the solution of automation tasks through an interaction of several components in the
form of text, graphics and/or software modules. The application examples are a free service by Siemens AG and/or a
subsidiary of Siemens AG (“Siemens”). They are non-binding and make no claim to completeness or functionality
regarding configuration and equipment. The application examples merely offer help with typical tasks; they do not
constitute customer-specific solutions. You yourself are responsible for the proper and safe operation of the products in
accordance with applicable regulations and must also check the function of the respective application example and
customize it for your system.
Siemens grants you the non-exclusive, non-sublicensable and non-transferable right to have the application examples
used by technically trained personnel. Any change to the application examples is your responsibility. Sharing the
application examples with third parties or copying the application examples or excerpts thereof is permitted only in
combination with your own products. The application examples are not required to undergo the customary tests and
quality inspections of a chargeable product; they may have functional and performance defects as well as errors. It is
your responsibility to use them in such a manner that any malfunctions that may occur do not result in property damage
or injury to persons.
Disclaimer of liability
Siemens shall not assume any liability, for any legal reason whatsoever, including, without limitation, liability for the
usability, availability, completeness and freedom from defects of the application examples as well as for related
information, configuration and performance data and any damage caused thereby. This shall not apply in cases of
mandatory liability, for example under the German Product Liability Act, or in cases of intent, gross negligence, or
culpable loss of life, bodily injury or damage to health, non-compliance with a guarantee, fraudulent non-disclosure of a
defect, or culpable breach of material contractual obligations. Claims for damages arising from a breach of material
contractual obligations shall however be limited to the foreseeable damage typical of the type of agreement, unless
liability arises from intent or gross negligence or is based on loss of life, bodily injury or damage to health. The foregoing
provisions do not imply any change in the burden of proof to your detriment. You shall indemnify Siemens against
existing or future claims of third parties in this connection except where Siemens is mandatorily liable.
By using the application examples you acknowledge that Siemens cannot be held liable for any damage beyond the
liability provisions described.
Other information
Siemens reserves the right to make changes to the application examples at any time without notice. In case of
discrepancies between the suggestions in the application examples and other Siemens publications such as catalogs, the
content of the other documentation shall have precedence.
The Siemens terms of use (https://support.industry.siemens.com) shall also apply.
Security information
Siemens provides products and solutions with industrial security functions that support the secure operation of plants,
systems, machines and networks.
In order to protect plants, systems, machines and networks against cyber threats, it is necessary to implement – and
continuously maintain – a holistic, state-of-the-art industrial security concept. Siemens’ products and solutions constitute
one element of such a concept.
Customers are responsible for preventing unauthorized access to their plants, systems, machines and networks. Such
systems, machines and components should only be connected to an enterprise network or the internet if and to the
extent such a connection is necessary and only when appropriate security measures (e.g. firewalls and/or network
segmentation) are in place.
For additional information on industrial security measures that may be implemented, please visit
https://www.siemens.com/industrialsecurity.
Siemens’ products and solutions undergo continuous development to make them more secure. Siemens strongly
recommends that product updates are applied as soon as they are available and that the latest product versions are used.
Use of product versions that are no longer supported, and failure to apply the latest updates may increase customer’s
exposure to cyber threats.
To stay informed about product updates, subscribe to the Siemens Industrial Security RSS Feed under
https://www.siemens.com/cert.
Table
1. Introduction ............................................................................................................... 5
2. Engineering.............................................................................................................. 12
3. Operation ................................................................................................................. 63
5. Appendix................................................................................................................ 103
1. Introduction
1.1. Overview
Communication functions of the SIMATIC NET OPC server for OPC UA
The OPC server provides standardized access to the industrial communication networks of SIMATIC NET.
The SIMATIC NET OPC server supports the connection of applications to any automation components that are networked
via PROFIBUS or Industrial Ethernet. The SIMATIC NET OPC server for OPC UA offers the following communication
functions:
• S7 communication
- S7 OPC UA server (see Chapter 4.1.1)
- S7OPT OPC UA server (see Section (4.1.2)
• Open communication services (SEND/RECEIVE)
- SR OPC UA server (see Chapter 4.1.3)
• PROFIBUS DP
- DP OPC UA server (see Section 4.1.4)
• Tag services
• Block services
• Block services
• Server services
Tag services
This application example shows how to use the tag service to exchange data between the PC station and S7 CPU. This
service is supported by the following communication functions:
• S7 communication
• Open communication services (SEND/RECEIVE)
• The following components are used in this application example:
• SIMATIC NET OPC UA server on the PC station
- S7OPT OPC UA server
- S7 OPC UA server
Industrial Ethernet
Figure 1-1
PC-Station
Industrial Ethernet
S7-1500
CPU /CP /CM
Unrestricted
PC-Station
PROFIBUS
CM 1243-5
S7-300 CPU /CP
S7-1500
CPU /CP /CM
NOTE Starting with STEP 7 V17 and SIMATIC NET PC Software V17, UDTs can be addressed as a node ID.
With access to optimized data blocks, the S7OPT OPC UA-Server supports the following objects:
• Data blocks (access to optimized data blocks)
• Instance data blocks (access to optimized instance data blocks)
S7 communication with access to optimized data blocks via OPC UA is supported by the S7-1200 CPUs
Note
(V4 onward) and the S7-1500 CPUs.
• Data blocks
• Instance data blocks
• Inputs
• Outputs
• I/O inputs
• I/O outputs
• Flags
• Timer
• Counter
PC station
OPC-Client
Data
S7-Connection
S7-CPU
S7 tags
The application example provides an introduction to using the S7-Tag service with S7OPT OPC UA
Note
server and S7 OPC UA server from SIMATIC NET. Details are described in the SIMATIC NET manuals
(see \3\, \4\ and \5\).
PG / PC S7 CPU
OPC client
Data 3 S7 tag
1
User program
Access to NodeId Operating system
Attributes
NodeId
S7 connection
OPC UA accesses objects and their subobjects. Data tags are, for example, subobjects of an S7 connection object.
The following S7 connection objects are available:
• Productive S7 connections
They are used for data exchange between the S7 CPU and PC station and are generally configured via STEP 7.
• DEMO connection
It is used exclusively for testing.
• @LOCALSERVER connection
It provides the local S7 data blocks for the S7 server functionality.
Unrestricted
Attributes define the objects in more detail. Each individual access to an object, subobject and attribute takes place via its
NodeId.
2. Engineering
2.1. Hardware configuration
The following figure shows the structure of the application example.
Figure 2-1 Hardware configuration
IP address: 192.168.178.35
Subnet mask: 255.255.255.0
IP address: 192.168.178.34
Subnet mask: 255.255.255.0
Industrial Ethernet
The SIMATIC Field PG is used as a PC station, i.e. the SIMATIC NET PC-Software is installed on the SIMATIC Field PG. The
following SIMATIC NET OPC UA servers are used to access the S7 variables of the S7 CPU from the PC station:
Unrestricted
Later on you configure the set IP address and subnet mask in the hardware configuration of STEP 7.
Note
Note
• You enter the set IP address and subnet mask later in the configuration.
• With the S7-1500 CPUs, you can also set the IP address and subnet mask on the display.
NOTE For a more detailed description of the differences between S7 and S7 optimized or S7Plus
interconnections, see 4.5.
3. Click the arrow icon next to the log, e.g. "S7 optimized" to access the extended parameter list for the report.
Port settings:
- If the check box is selected, the default setting for the specified port is used.
- If the check box is deactivated, you can edit the input field for the port.
Security policy:
- If the check box is selected, unsecured connections (none) to the OPC server are permitted.
- If the check box is deactivated, no unsecured connections (none) to the OPC server are permitted.
Specify which connections to the OPC server are to be allowed and specify whether the messages are to be signed (sign)
or signed and encrypted (SignAndEncrypted):
- Secure connections based on the security policy "Basic128Rsa15"
- Secure connections based on the security policy "Basic256"
- Secure connections based on the security policy "Basic256Sha256"
- Secure connections based on the security policy "Aes128_Sha256_RsaOaep"
- Secure connections based on the security policy "Aes256_Sha256_RsaPss"
Logon settings
- If the check box is selected, the SIMATIC NET OPC allows-Server anonymous logon of OPC UA-Clients.
- If the check box is deactivated, anonymous logins are not permitted. User authentication with Windows login and
password is then required.
NOTE SIMATIC NET OPC uses OPC for user authentication Server the user administration of Windows. Log in
to the OPC client with your Windows user name and password on the SIMATIC NET OPC server.
GDS
The OPC UA GDS concept enables the configuration of cross-subnet Discovery services on the one hand and, on the other
hand, provides interfaces for operating central certificate management. The certificate management of the GDS contains
mechanisms for central management of the following components:
• CA-signed and self-signed certificates
• Trust lists and certificate non-trust lists
A GDS thus provides an access point for central certificate management. He thus assumes the task of a security server
within an OPC UA network. The GDS performs the following functions in detail:
• Initial creation of a certificate for OPC UA applications such as OPC UA server or OPC UA client
• Regular update of the trust list and the certificate non-trust lists
• Renewal of the OPC UA application certificate
Prerequisite
The following requirements are required to make the relevant methods and attributes visible for the GDS push
functionality:
• The set security policy supports the integrity and confidentiality of the data by signing and encrypting (Sign &
Encrypt).
• Access is performed by a user who has the role "SecurityAdmin".
Update Certificate Method for updating the server certificate for the OPC UA
server.
SupportedPrivateKeyFormats Tag that specifies the permitted formats of the private key. For
the SIMATIC NET PC software, only "PEM" (string array)
MaxTrustListSize Tag that specifies the maximum size of the trust list.
Table 2-1 Methods and attributes for accessing the address model
2.4. Overview
The following figure shows an overview of the steps that are performed during engineering.
• Design
• Configuring the Station Configuration Editor
• Loading configuration data of the PC station
• Downloading configuration data of the S7 CPU
There are several options for performing the engineering step when configuring the Station Configuration Editor and
when loading the configuration data of the PC station. It is sufficient to carry out one of the engineering steps in each
case.
This application example describes all the options of the engineering steps.
Figure 2-2
Configure the
Station manual Configure the XDB Export:
Configuration Station Exporting XDB from
Editor Configuration TIA Portal
Editor in TIA
Portal
Load PC station
Load configuration data XDB import:
configuration
via TIA Portal Importing XDB in Station
data
Configuration Editor
2.5. Configuration
The aim of the example configuration is to connect tags of a PLC of the S7-1500 family with encrypted S7 optimized
connection to the SIMATIC NET PC OPC UA server.
NOTE The example project provided shows you the finished configuration. It can be loaded directly into
devices taking into account the IP addresses.
If you have activated the "Open device view" option, the "Device view" of the S7 CPU opens
Note
automatically in the hardware and network editor.
You now have the option of protecting confidential configuration data of the PLC with a password.
The setting of the mode for PG/PC and HMI connections is important for the encrypted connection.
Unrestricted
NOTE By enabling, the connections of the PLC to the PG/PC and HMI are only permitted encrypted and a TLS
server certificate is created for the PLC.
The "Device view" of the S7 CPU opens in the hardware and network editor.
Unrestricted
If you have activated the "Open device view" option, the "Device view" of the PC station opens
Note
automatically in the hardware and network editor.
Unrestricted
Configuring a PC station
Configure the PC station in the device view.
1. The OPC server was automatically inserted in slot 2.
2. Insert a communication module, e.g. "IE General", in slot 1 of the PC station using drag & dop.
If you use the user application "OPC Server" with version "SW V14..." or higher, an optimized
Note
connection is automatically created for S7-1500 CPUs and S7-1200 CPUs (firmware V4 or higher).
NOTE You can recognize an optimized S7-Connection to the fact that only one single S7 connection was
created for the send and receive direction.
• The OPC server actively establishes the S7 connection. The S7 CPU is passively involved in establishing the connection.
ATTENTION It is not possible to establish an encrypted connection to the SIMATIC NET OPC UA server if the PC
station and the PLC are not created in the same project.
The TLS server certificate selected in the PLC is marked as "trusted" when loading the PC station from
TIA Portal in SIMATIC NET. If the two devices are in different projects, SIMATIC NET does not recognize
the TLS server certificate of the PLC and therefore refuses a secure connection.
If the connection parameters have not yet been set completely, the S7 connection is displayed as
Note
faulty in the connection table.
3. Enter the partner TSAP under "Address details" in the "General" tab. The partner TSAP is made up as follows: 03rd slot
of the CPU, e.g.:
- S7-1500/S7-1200 CPU in slot 1: 03.01
- S7-300 CPU in slot 2: 03.02
- S7-400 CPU in slot 3: 03.03
4. Activate the "Maintain connection permanently" function under "OPC" in the "General" tab.
Unrestricted
4. Make the following settings and then confirm your entries with the "OK" button.
- Click the "Data block" button.
- Select the type "Global DB".
- Enter the name of the DB, e.g. "OptimizedData".
- Activate the "Automatic" option button for automatic number assignment. The number of the global DB is
assigned by TIA Portal.
7. Create the required S7 tags. Use the following data types, for example.
- Integer
- Bool
- Real
- Array: Data structure consisting of a fixed number of components of the same data type. In this application
example, the data types BYTE and PLC data type are used for the components.
- PLC data type: complex user-defined data type. It represents a data structure consisting of several components of
different data types.
8. Click in the "Project tree" with the right mouse button of the newly inserted global DB "OptimizedData".
7. Create the required S7 tags. Use the following data types, for example:
- Integer
- Bool
- Real
- Array: Data structure consisting of a fixed number of components of the same data type. In this application
example, the data types BYTE and PLC data type are used for the components.
- PLC data type: complex user-defined data type. It represents a data structure consisting of several components of
different data types.
8. Click in the "Project tree" with the right mouse button of the newly inserted global DB "Data".
10. Make the following settings under "Attributes" in the "General" tab and then apply the settings with the "OK" button:
- Deactivate the "Optimized block access" function
- Activate the function "DB accessible from OPC UA" ("DB accessible drom OPC UA")
• Flags
• Inputs
• Outputs
• Times
• Counter
In this example, memory byte MB 0 is activated as clock memory in the S7 CPU. For S7-1500 CPUs and S7-1200 CPUs, the
clock flags are automatically entered with symbolic names in the tag table.
If you are using an S7-300 CPU or S7-400 CPU, enter the addresses and symbol names of the clock memory bit manually
in the tag table.
4. To access all symbolic S7 tags in the OPC server, activate the "All" option.
5. To access configured symbolic S7 tags in the OPC server, activate the "Configured" option and click the "Configuring"
button.
NOTE This step is only necessary if you want to use access via the absolute addresses of the tags. This step is
not necessary for symbolic addressing.
With the S7-1500 CPUs and S7-1200 CPUs, it is necessary to allow access via PUT/GET communication by remote partners
so that the SIMATIC NET OPC UA server with the services "PUT" and "GET" can access the S7 tags in the S7 CPU via the
absolute address.
1. Open the device view of the S7 CPU.
2. Select the S7 CPU in the device view.
The properties of the S7 CPU are displayed in the Inspector window.
3. Navigate to "Protection & Security > > Connection mechanisms" in the "General" tab.
4. Activate the "Permit access with PUT/GET communication from remote partner" function.
1. Double-click the corresponding icon on the desktop to start the "Station Configuration Editor".
2. Click the "Station Name" button.
Unrestricted
The following status symbols for components show that the configuration data has not yet been loaded:
• The component is present in the current configuration of the PC station, but not configured. Depending on the
intended application, you must still configure the component in STEP 7 and load the configuration data.
After you have configured the "Station Configuration Editor" manually, download the configuration data of the PC station
(see Section 2.6.2).
Unrestricted
The following status symbols for components show that the configuration data has not yet been loaded:
• The component is present in the current configuration of the PC station, but not configured. Depending on the
intended application, you must still configure the component in STEP 7 and load the configuration data.
After you have configured the "Station Configuration Editor" in the TIA Portal, load the configuration data of the PC station
(see Section 2.6.2).
Result
The XDB configuration file is generated and saved under the path that you set in the configuration of the PC station.
Translate
1. Select the S7 CPU in the "Project tree".
2. Click the "Compile" button in the toolbar.
NOTE The "Extended download to device" dialog only opens automatically if the access path from the PG/PC
to the S7 CPU has to be set again.
Unrestricted
Downloading via TIA Portal in online mode only results in a successful installation of the
Note
communication services on your PC station if the component arrangement in the configuration data is
identical to the arrangement in the configuration data on the PC station.
Conditions:
Translate
1. Select the PC station in the "Project tree".
2. Click the "Compile" button in the toolbar.
NOTE The "Extended download to device" dialog only opens automatically if the access path to the PC
station has to be set again.
• The components are in "RUN" mode. This is indicated by the icon in the "Run/Stop" column ("Run/Sop").
• The following status symbol for the component indicates that the configuration data has been successfully loaded.
- The component is available and configured in the current configuration of the PC station.
- The component is ready for operation!
• The configured S7-Connection is loaded. This is indicated by the icon in the "Verb" column ("Conn").
• The station has the same name as in the component image that you created in the "Device view" of the PC station in
TIA Portal.
• The components are in "RUN" mode. This is indicated by the icon in the "Run/Stop" column ("Run/Sop").
• The following status symbol for the component indicates that the configuration data has been successfully loaded.
- The component is available and configured in the current configuration of the PC station.
- The component is ready for operation!
• The configured S7-Connection is loaded. This is indicated by the icon in the "Verb" column ("Conn").
3. Operation
The SIMATIC NET OPC UA server does not call data from the S7 until a client has been successfully connected via an S7
connection.
3.1.1. UA Expert
An encrypted and signed connection to the SIMATIC NET OPC UA server is to be established. For this purpose, the
respective partner certificate must be trusted.
The UA Expert certificate is now trusted for the S7OPT and S7 protocols.
4. Open the PKI structure of the UA Expert client. For more information, refer to ua expert in the certificate manager.
("Settings > Manager Certificates")
5. Select "Open Certificate Location".
6. Now copy the previously exported certificates to this folder.
Result
Write tags
1. Double-click the "Value" of the tag.
2. Enter the desired value.
3. Confirm with Enter.
Result
4. Under "UA Server> Local UA Servers > OPC. SimaticNET.S7OPT" ("UA server > Local UA server > OPC.
SimaticNET.S7OPT") right-click on the S7 connection to establish an optimized S7 connection from the SIMATIC NET
OPC UA server to the S7 CPU.
Click the "Connect" entry.
6. If you have activated the option "Allow anonymous logins to the OPC UA server" in the "Communication Settings",
anonymous logon is also possible.
To establish a standard S7 connection to an S7-300 CPU or S7-400 CPU, connect to the SIMATIC NET
Note
OPC UA server "OPC. SimaticNET.S7".
2. Drag-and-drop the required S7 tags into the DA view of OPC Scout V10.
2. Insert the required templates (templates) for accessing the absolute addresses of the S7 tags in the DA view of OPC
Scout V10 using drag-and-drop.
3. Adapt the templates according to your configuration. In this application example, the S7 variables are stored in DB2
"Data".
Connection
1. Call OPC Scout V10 via the Windows Start menu "Siemens Automation > OPC Scout V10" ("Siemens Automation > OPC
Scout V10").
2. In "Server Explorer" under "UA server", right-click on the "Local UA server" entry.
Click on the entry ("Update" browsing").
5. If you have activated the option "Allow anonymous logins to the OPC UA server" in the "Communication Settings",
anonymous logon is also possible.
To establish an optimized S7 connection to an S7-1500 CPU or S7-1200 CPU (as of V4), connect to the
Note
SIMATIC NET OPC UA server "OPC. SimaticNET.S7OPT".
2. Drag-and-drop the required S7 tags into the DA view of opc scout V10.
2. Insert the required templates (templates) for accessing the absolute addresses of the S7 tags in the DA view of OPC
Scout V10 using drag-and-drop.
3. Adapt the templates according to your configuration. In this application example, the S7 variables are stored in DB1
"Data".
Overview
PC station S7 station
STEP 7
watch table
1 Write
OPC UA Client
2 Read/Monitor
S7 CPU
SIMATIC NET
OPC UA server
S7OPT Symbolic name
Item Data / absolute
address
The S7 variables are described with the control values. The values of the S7-Tags are displayed in the "Monitor value"
column.
1. Click the "Monitoring ON" button in the DA view of OPC Scout V10 to continuously monitor the values of the S7
variables.
2. Click the "Read" button to select the values of the S7-Variables to be read once and immediately.
Result
Figure 3-2
Overview
Figure 3-3
PC station S7 station
STEP 7
watch table
1 Write
OPC UA client
2 Read/Monitor
S7 CPU
SIMATIC NET
OPC UA server
S7OPT Symbolic name
Item Data / absolute
address
Result
The values of the S7 variables are displayed in the "Monitor value" column.
4. Additional Information
4.1. SIMATIC NET OPC server
4.1.1. S7 OPC UA server
The S7 OPC UA server supports S7 communication via Industrial Ethernet and PROFIBUS.
Connection
The S7 OPC UA server supports the following connection type:
Communications
The S7 OPC UA server supports the following communication services:
Table 4-1
Communication Description
Tag services Functions for reading and writing one or more S7 variables.
Block services Program-controlled transmission of larger data blocks.
Block services Transfer of a loadable data area from and to S7.
Server functionality The PC can be used as a server for data blocks and data blocks.
S7 password function Setting a password for accessing protected blocks.
OPC UA events, conditions and alarms Processing of S7 messages and S7 diagnostic events.
Historical data via OPC UA Access to historical S7 data tags that are archived in a database for up to 360
hours.
The Table 4-1 Listed communication services of the S7 OPC UA server are available on Industrial
Note
Ethernet and PROFIBUS.
Connection
The S7OPT OPC UA server supports the following connection type:
Communications
The S7OPT OPC UA server supports the following communication services:
Table 4-2
Communication Description
Tag services Functions for reading and writing one or more S7 tags via standard access
and access to optimized data blocks.
OPC UA events, conditions and alarms Processing PLC alarms.
Historical data via OPC UA Access to historical S7OPT data tags that are archived in a database for up
to 360 hours.
S7-CPU protection level concept Setting a password for protected connection establishment and access to
the S7-1200 and S7-1500 stations.
The Table 4-2 Listed communication services of the S7OPT OPC UA-Servers are only available for
Note
Industrial Ethernet.
Connection
The SR OPC UA server supports the following connection types:
• TCP connections
• ISO-on-TCP connections
• ISO transport connections
Type of connection
The type of SR access options that is possible via an SR connection is set in STEP 7. The connection can either:
• Fetch only
• Write only
• Send/Receive only
Communications
The SR OPC UA server supports the following communication services:
Table 4-3
Communication Description
Tag service Reading and writing data tags for S5-Data blocks and areas (S5-compatible
communication) require the configuration of a fetch or write connection.
The data tags on a fetch connection are read only. The data tags are only written
to a write connection. If data blocks of a communication partner are to be read
and written, you must configure two corresponding connections, which are
managed completely independently by the OPC UA server.
Block service The block-oriented services enable program-controlled transmission of larger
data blocks. These services are also referred to as SEND/RECEIVE services. The
transfer with the OPC UA server is realized by means of tags:
• Tags that receive data blocks
• Tags that send data blocks
A default size of the data blocks is specified in the configuration; the size can be
restricted when sending tags. Partial access within the data blocks is possible.
• Tag services for access to local slave data Access to the inputs and outputs of the slave
• Diagnostics tags: Evaluation of the static diagnostics of the slave
Engineering
1
OPC
server
Configuration
Index 1 Index 2
Industrial Ethernet
Configuration
Use the "Station Configuration Editor" to insert the components into the virtual slots of the PC station and assign them
addresses and parameters.
Each component has a unique id number for communication between the components within the PC station and for
receiving configuration data. The code number for components in a PC station is the index. Corresponding to the slot of a
module in an S7 CPU, the index corresponds to a virtual slot in a PC station.
The "Station Configuration Editor" is on the PC-Station on which you install the "SIMATIC NET PC
Note
software" is always available and started.
4.3.1. Overview
The following figure shows the structure of the "Station Configuration Editor".
1. Components:
Components are the modules and the applications involved in communication tasks in the PC station. Configuration
and configuration data is required for these components.
2. Station manager:
The station manager keeps the configuration and configuration data of the components in the component
management (database).
In addition to the component configuration, the "Station Configuration Editor" can be used for diagnostic purposes.
Unrestricted
- Online mode
In online mode, you have the option of downloading the configuration data directly to the PC station with TIA
Portal. An XDB import can be performed at any time. You can specify (option) whether the "Offline mode" mode is
to be adopted after the import.
In the locked state, it is not possible to change the configuration. The following functions are disabled:
• Station import (XDB file)
• Loading the PC station via TIA Portal (local or remote)
• Changing the PC station in the "Station Configuration Editor"
The S7-300 and S7-400 automation systems only support data blocks with standard access.
4.5. Types
Name Description Note
Optimized S7 connection Further development of the standard S7 As of STEP 7 V12, optimized connections
connection are created for the devices by default.
The send and receive directions are
grouped together in a configured
connection.
• Optimized S7 connections including optimized data blocks can only be used via OPC UA. DCOM-based OPC clients
cannot access optimized data blocks.
• The SIMATIC NET software must have V12, for encrypted connections V17 or higher.
• Smaller quantity structure for CP1613 A2. Only 40 optimized S7 connections are possible for this CP.
PG / PC
OPC client
User program
Access to NodeId of the node:
1 2 3 4 5 6
Table 4-5
No. Description Value
1 Protocol S7
2 Connection name S7 connection PC
3 Object DB
4 Start address 8
5 Type b (byte)
6 Number 10
Unrestricted
• Simple XML/SOAP with "HTTP" via port 80 or with "HTTPS" via port 443.
• Binary TCP via port 4840 and other ports such as port 55101 to port 55105, if additional servers are added.
The protocol can be used via the URL address of the OPC UA server on the OPC-user interface. Alternatively, the following
two options are available.
4.9.1. "Browse"
This service is used to determine the references (links) of a node.
4.9.2. "Read"
This service is used to determine one or more attributes of one or more nodes.
4.10.1. "Read"
This service is used to determine one or more attributes of one or more nodes. With structured attribute values whose
elements are indexed as for an array, clients can read the entire set of indexed values in the group, they can read certain
areas of the block or individual elements.
The currentness of the values is determined using the "maxAge" parameter.
4.10.2. "Write"
This service is used to write values to one or more attributes of one or more nodes. With structured attribute values whose
elements are indexed as for an array, clients can write the entire set of indexed values in the group, they can write certain
areas of the block or individual elements.
The service job is pending until the values have been written or until it has been determined that the values could not be
written.
Access to "Read" and "Write" takes place via the NodeId of the respective node or nodes. The NodeId is the identifier of a
node in the namespace of OPC UA.
5. Appendix
5.1. Service and support
SiePortal
The integrated platform for product selection, purchasing and support - and connection of Industry Mall and Online
support. The SiePortal home page replaces the previous home pages of the Industry Mall and the Online Support Portal
(SIOS) and combines them.
• Products & Services
In Products & Services, you can find all our offerings as previously available in Mall Catalog.
• Support
In Support, you can find all information helpful for resolving technical issues with our products.
• mySieportal
mySiePortal collects all your personal data and processes, from your account to current orders, service requests and
more. You can only see the full range of functions here after you have logged in.
You can access SiePortal via this address: sieportal.siemens.com
Technical Support
The Technical Support of Siemens Industry provides you fast and competent support regarding all technical queries with
numerous tailor-made offers – ranging from basic support to individual support contracts.
Please send queries to Technical Support via Web form: support.industry.siemens.com/cs/my/src