System requirements
If you want to connect "Manage MyMachines /Remote" to an existing control environment, the following requirements must be met.
Precondition
To connect to MindSphere, you need a current version of the SINUMERIK Integrate client - and the service client for Manage MyMachines /Remote. Install and configure the client subsequently.
Operating software and hardware
The following procedure is provided with the following components by way of example:
Operating software version |
SINUMERIK Integrate |
Hardware version |
Operating system |
HMI-Advanced*) ***) V06.04 V07.06 |
04.12.00.21 04.13.00.36 |
PCU 50.3B |
WinXP SP3 |
SINUMERIK Operate*) ***) V02.07.03.10 |
|||
FANUC 31i **) |
Windows 7 Standard Embedded |
*) The connection does not comply with security-related requirements. Although the functionality is guaranteed, it is not part of the product release. You must implement additional security measures for which you are responsible.
**) The additional driver "FANUCdriver 1.0" is required for the SINUMERIK Integrate client. Although the functionality is guaranteed, it is not part of the product release. The connection is only possible via the IPC client running on the IPC, and not via the SINUMERIK Integrate client integrated in SINUMERIK Operate.
***) Only PCU
NOTE
Parallel operation with SINUMERIK Integrate applications is not possible.
Industrial PC / 3rd party controller
Processor |
1 GHz processor |
RAM (GB) |
4 |
Free hard disk capacity (GB) |
1 |
Operating systems |
Windows 7 SP1 (x64) Professional/Enterprise/Ultimate Windows 7 Standard Embedded Windows 10 (x64) Pro/Enterprise |
Screen resolution |
At least 1980 x 1080 |
NOTE
Only one VNC viewer connection to the SINUMERIK control system is permissible.
Security instructions
NOTICE
The connection of SINUMERIK controls to MindSphere via TLS 1.2 /https meets the highest security standards.
SINUMERIK versions that do not meet these standards are not part of the product. For these versions, additional security measures must be taken.
You are responsible for preventing unauthorized access to your plants, systems, machines, and networks. Systems, machines and components should only be connected to the company's network or the Internet if and to the extent necessary and with appropriate security measures (e.g. use of firewalls and network segmentation) in place.
NOTICE
An unrestricted Internet connection can lead to data misuse.
Before establishing a network connection, ensure that your PC is exclusively connected to the Internet via a secure connection. Pay attention to the information relevant to security.
You will find further information about communication security in the Configuration Manual: Industry Security.
NOTE
The necessary security measures (e.g. virus scanner, firewalls, OS patching, etc.) must be implemented on the PCs that are used for visualization and configuration of Manage MyMachines /Remote with the machine operator or end customer.
Further information about PCs in the industrial environment can be found in the Configuration Manual: Industry Security.
NOTE
The necessary security measures (e.g. virus scanner, firewalls, operating system patching, etc.) must be implemented on the SINUMERIK controls.
You will find further information about communication security in the Configuration Manual: Industry Security.
NOTICE
It is essential to use secure data storage for saving your data, particularly confidential data. Store this data encrypted, either locally or on the network. Make sure that this data cannot be accessed by unauthorized personnel.
This applies to the following data:
-
Archive files
-
Image files
-
Project files
-
Trace files
-
Safety-related data
You will find further information about secure data storage in the Configuration Manual: Industry Security.
NOTICE
There is a risk that an attacker inside the network could gain access to the operator PC. There, the hacker can read or manipulate various system components (e.g. the content of databases). In this way, the attacker can change tool data, NC programs, machine archives, or the system structure itself, for example. Manage MyMachines /Remote cannot prevent this type of attack.
-
As the person responsible for the machine network, take measures to ensure the industrial security of the production/machine network.
Siemens AG accepts no liability for this!
NOTE
The "Manage MyMachines Remote" product was developed by Siemens, taking the "privacy by design" principle into account. This means that it is up to the service provider (OEM) to decide how long the acquired data, such as information about the time period and participation in remote sessions, will be stored.
Delivery form
The SINUMERIK Integrate client, the service client for Manage MyMachines /Remote as well as the latest updates and further information on the applications and products are stored on PridaNet and can be downloaded directly from there.
- OR -
You can contact your machine manufacturer.
- OR -
You can contact the Siemens Service&Support.
Additional references
-
Further information on the "SINUMERIK Operate" operating software can be found in the following reference:
SINUMERIK Operate Commissioning Manual (IM9)
-
For further information on "SINUMERIK Integrate", please refer to:
SINUMERIK Integrate MMP, MMT, AMC, AMP, AMM/E, AMD Commissioning Manual
Additional information regarding MindSphere applications is available at the following links:
Additional information
When connecting SINUMERIK controls that are not of the current generation, special attention must be paid to security requirements.
The security requirements of MindSphere according to the state of the art must be considered for such controls and ensured with further measures and network components within the local IT environment.
-
It must be ensured that the communication between the factory network and MindSphere meets the current security standards, e.g. TLS 1.2.
-
It must be ensured that unauthorized access to the control in the company network / factory network environment and attacks on the firewall in front of the control are not possible.
-
It must be ensured that communication inside the factory network environment cannot be attacked.
The guidelines of the customer's IT department must be followed.
NOTE
Windows XP and older versions of Windows do not support the TLS1.2 encryption protocol for secure data transmission that is necessary for a connection to MindSphere.