Software and hardware
This section describes the software and the hardware products that you can use in an Industrial Automation and Control Systems (IACS) with
CIP Security
implemented.CIP Security
Software ApplicationsThe following software supports
CIP Security
.Software | Description | Required |
|---|---|---|
FactoryTalk Policy Manager | FactoryTalk Policy Manager is a secure software application that you use to configure, deploy, and view the system communication security policies.The security policies are divided into different components, that is, devices, zones, and conduits. You use these components to design security models that control the permissions and usage of devices within the system. | Yes |
FactoryTalk System Services | FactoryTalk System Services is a secure EtherNet/IP client that runs in the background to deploy the security policies that are configured in FactoryTalk Policy Manager . You do not take action in the client. FactoryTalk System Services provides the following services to enforce security policies that are based on the ODVA CIP Security standard:
| Yes |
FactoryTalk Linx | FactoryTalk Linx is a secure EtherNet/IP client that initiates connections over a secure EtherNet/IP network with CIP Security -enabled devices.This server and communication service that lets devices communicate with the FactoryTalk software portfolio and Studio 5000 Logix Designer application. IMPORTANT: You can’t use RSLinx Classic software to implement CIP Security in an IACS. | Yes |
Studio 5000 Logix Designer | Logix Designer application is a comprehensive programming software that you use with Logix 5000 controllers.IMPORTANT: Logix Designer application isn’t required to implement CIP Security .However, Logix Designer application functions as CIP Security -capable software because it supports the CIP protocol and uses FactoryTalk Linx software to communicate with other devices via the CIP protocol.The Logix 5000 controller this is used in the system determines what Logix Designer application version to use. For example, to use a ControlLogix 5580 controller’s Ethernet port to connect to the system, you must use software version 32.00.00 or later. | Not required but commonly used with CIP Security |
In addition, any software that uses
FactoryTalk Linx
to access data can leverage the secure connectivity provided by CIP Security
.To download the software, visit the Rockwell Automation Product Compatibility and Download Center (PCDC).
CIP Security
-capable Hardware DevicesThe following hardware devices are
CIP Security
-capable.
IMPORTANT:
- The minimum firmware revisions forLogix 5000controllers indicate the earliest version supporting connection to an IACS withCIP Securityvia a secure connection to the controller’s Ethernet port.
- In some configurations, earlier firmware revisions can allow connection to an IACS withCIP Security. For more information on theCIP Security-capable hardware devices, see.CIP Securitywith Rockwell Automation Products
Hardware Product | Minimum Firmware Revision Required |
|---|---|
Armor PowerFlex Drives | 10.001 |
CompactLogix 5380 Controllers | 34.011 |
CompactLogix 5380 Process Controllers | 34.011 |
Compact GuardLogix 5380 Controllers | 34.011 |
ControlLogix 5580 Controllers | 32.011 |
ControlLogix 5580 Process Controllers | 32.011 |
1756-EN4TR ControlLogix EtherNet/IP Communication Module | Any |
GuardLogix 5580 Controllers | 34.011 |
Kinetix 5300 Drives | 13.003 |
Kinetix 5700 Drives | 11.001 |
PowerFlex 755T Drives | 10.001 |
PowerFlex 755TS Drives | 11.001 |
1783-CSP CIP Security Proxy | Any |
To confirm the
CIP Security
capability of products not listed, see the product documentation.Provide Feedback