Siemens Industry Online Support
Siemens AG
Entry type: FAQ Entry ID: 109480490, Entry date: 01/31/2018

How do you encrypt the connection between SIMATIC Logon and a Comfort Panel or a WinCC Runtime Advanced?

  • Entry
  • Associated product(s)
This entry will show you how to establish an encrypted connection between a SIMATIC Logon server and an HMI operator panel.

SIMATIC Logon enables centralized plant-wide user administration. The user data is stored and managed on a central logon server via the user administration of the Windows operating system.

The document below gives a detailed description of how to establish an encrypted connection.

  109480490_SIMATIC_Logon_en.pdf (740,0 KB)

1 Introduction
1.1 Requirements
2 Installation and Configuration of SIMATIC Logon
2.1 Software Installation
2.2 Configuration of SIMATIC Logon
2.2.1 Requirements
2.2.2 Configuration of the Encryption
2.2.3 Authentication and Handling of Certificates
3 Settings of the HMI Runtime
4 Generation of Certificates and Keys
4.1 Certificates and Private Keys
4.1.1 Creation of Certificates
5 Troubleshooting

Security Notes
Siemens offers products and solutions with industrial security functions which support the secure operation of plants, solutions, machines, devices and/or networks. They are important components in a comprehensive industrial security concept. The Siemens products and solutions continue to be developed under this aspect. Siemens recommends that you keep yourself regularly informed about product updates.
For the safe operation of Siemens products and solutions it is necessary to take appropriate security measures (cell protection concept, for example) and to integrate each component in an overall industrial security concept which is state of the art. This should also cover the third-party products used. Additional information about Industrial Security is available here:

In order to keep yourself informed about product updates, you can arrange in the Siemens Industry Online Support to receive news about the products you use. Further information about this is available at:
Product Support > Save Filter Settings.

Additional Keywords
User administration, Private keys, Create certificates, OpenSSL, TLS V1.2, Transport Layer Security, KTP Mobile Panels, Logon Administrator, Encrypted transfer, *.pem

Security information
In order to protect technical infrastructures, systems, machines and networks against cyber threats, it is necessary to implement – and continuously maintain – a holistic, state-of-the-art IT security concept. Siemens’ products and solutions constitute one element of such a concept. For more information about cyber security, please visit