Professional Documents
Culture Documents
Introduction
Contents
Prerequisites for Configuring
Automated Systems in a GMP 1
Environment
SIMATIC PCS 7 V6.1 Requirements for Automated
Systems in a GMP 2
Environment
GMP - Engineering Manual 3
Specification
Guidelines for Implementation
Guidelines for implementing in a GMP Environment with
automation projects Standard SIMATIC PCS 7 4
in a GMP environment Software
Supporting Functions during
Qualification 5
Additional Hardware /
Software Components 6
Glossary
Index
Edition 12/2006
A5E00362933-03
Safety-Related Notices
Notices that you should observe to ensure your own personal safety and to avoid damage to property
and equipment can be found in the relevant technical manuals. The safety of pharmaceutical products
of prime importance to the pharmacist must be evaluated by the pharmaceutical company itself. This
document provides information on this topic.
Qualified Personnel
Only qualified personnel should be allowed to install and work on this equipment. Qualified persons
are defined as persons who are authorized to commission, to ground, and to tag circuits, equipment,
and systems in accordance with established safety practices and standards.
Trademarks
SIMATIC®, SIMATIC HMI®, SIMATIC IT® and SIMATIC NET® are registered trademarks of
Siemens AG.
Third parties using for their own purposes any other names in this document which refer to trademarks
might infringe upon the rights of the trademark owners.
Siemens AG
Automation and Drives Group
Competence Center Pharma (A&D CC P) © Siemens AG 2006
D- 76181 Karlsruhe Technical data subject to change.
Intended Audience
The manual is intended for all planners, plant operators, developers of branch-
specific control system concepts, project leaders and configuration engineers,
maintenance and service personnel who implement process control systems in a
GMP environment. It describes approaches to the implementation of automation
solutions with SIMATIC STEP 7 where GMP is mandatory.
Disclaimer
This manual is a guide for system users and configuration engineers that will assist
them in integrating the SIMATIC PCS 7 process control system in a GMP
environment with regard to validation and taking into account the aspects 21 CFR
Part 11.
We have checked the contents of this manual for agreement with the hardware and
software described. Since deviations cannot be precluded entirely, we cannot
guarantee full agreement. The information in this document is checked regularly for
system changes or changes to the regulations of the various organizations and
necessary corrections will be included in subsequent issues. We would be thankful
for any proposed improvements that should be sent to the Competence Center
Chemical, Pharma in Karlsruhe (Germany).
Conventions
The following conventions are used in this manual.
Activities involving several steps are shown in the form of a table and numbered in
the order in which the activities should be performed.
Activities involving only a few steps are indicated by a bullet (•).
References to other relevant literature are shown in bold italic.
Further Support
If you have questions on the use of the products described in the manual and
cannot find answers here, please speak to your Siemens contact in your local
office.
You can find addresses of contacts at:
http://www.siemens.com/automation/partner
You will find the guide to the range of technical documentation available for the
individual SIMATIC products and systems at:
http://www.siemens.de/simatic-tech-doku-portal
The online catalog and the online ordering system is available to you at:
http://mall.automation.siemens.com/
If you have questions on the manual, please contact the Competence Center
Pharma:
E-mail: pharma.aud@siemens.com
Fax: +49 721 595 6930
You will find more information on the range offered by Siemens for the
pharmaceutical industry at:
http://www.siemens.com/pharma
Training Center
To familiarize you with the SIMATIC S7 automation system, we offer a range of
courses. Please contact your regional training center or the central training center
in D 90327 Nuremberg, Germany.
Phone: +49 (911) 895-3200.
Internet: http://www.sitrain.com
Technical support
You can contact Technical Support for all A&D products
• using the Web form for a support request
http://www.siemens.de/automation/support-request
• Phone: + 49 180 5050 222
• Fax: + 49 180 5050 223
You will find more detailed information on our technical support on the Internet at
http://www.siemens.de/automation/service
Introduction iii
Contents vii
3 Specification 3-1
3.1 Criteria for Selecting Hardware ........................................................................ 3-2
3.2 Criteria for Selecting Software.......................................................................... 3-3
3.2.1 Basic Software for User Management.............................................................. 3-3
3.2.2 Additional Software - Image & Partition Creator............................................... 3-3
3.2.3 Basic Software for the Engineering System ..................................................... 3-3
3.2.3.1 Process Control Libraries ................................................................................. 3-4
3.2.3.2 Multiproject Engineering ................................................................................... 3-4
3.2.4 Additional Software - Engineering System ....................................................... 3-4
3.2.4.1 Version Cross Checker..................................................................................... 3-4
3.2.4.2 Import/Export Assistant..................................................................................... 3-4
3.2.4.3 Controller Tuning with the PCS 7 PID Tuner.................................................... 3-5
3.2.4.4 Simulation with S7-PLCSIM ............................................................................. 3-5
3.2.5 Basic Software - Operator Station .................................................................... 3-6
3.2.6 Additional Software for an Operator Station ..................................................... 3-6
3.2.7 Basic Software - SIMATIC BATCH................................................................... 3-7
3.2.8 Interfaces to Process Data with OS Software Connectivity Pack................... 3-10
3.2.9 Additional Software for Long-term Archiving .................................................. 3-12
3.2.9.1 Central Archive Server (CAS)......................................................................... 3-12
3.2.9.2 StoragePlus .................................................................................................... 3-12
3.2.9.3 SIMATIC IT Historian...................................................................................... 3-12
3.2.10 Basic Software of Higher-level Systems......................................................... 3-13
3.3 User Requirements Specification ................................................................... 3-14
3.4 Functional Specification.................................................................................. 3-15
3.5 Design Specification ....................................................................................... 3-16
3.5.1 Specification of Automation Hardware ........................................................... 3-16
3.5.2 Specification of Automation Software............................................................. 3-18
4 Guidelines for Implementation in a GMP Environment with Standard SIMATIC
PCS 7 Software 4-1
4.1 Introduction ....................................................................................................... 4-1
4.2 Software Categorization of SIMATIC PCS 7 .................................................... 4-1
4.3 Software Installation ......................................................................................... 4-3
4.3.1 Operating System ............................................................................................. 4-3
4.3.2 SIMATIC PCS 7 Software................................................................................. 4-5
4.4 Installation of Utilities and Drivers .................................................................... 4-8
4.4.1 Printer Drivers................................................................................................... 4-8
4.4.2 Virus Scanners ................................................................................................. 4-8
4.5 Multiproject ....................................................................................................... 4-9
4.5.1 Engineering....................................................................................................... 4-9
4.5.2 Views .............................................................................................................. 4-11
4.6 SIMATIC NET Settings .................................................................................. 4-14
4.6.1 Setting up the OS, OS Client, OPC Server, and SIMATIC BATCH ............... 4-15
4.6.2 Automation System (AS) ................................................................................ 4-15
4.6.3 Engineering Station (ES) ................................................................................ 4-15
4.6.4 Industrial Ethernet........................................................................................... 4-15
4.6.5 PROFIBUS ..................................................................................................... 4-16
4.7 Configuration Management ............................................................................ 4-17
4.7.1 Changes to the System Software ................................................................... 4-18
4.7.1.1 Updates, Service Packs, and Hotfixes ........................................................... 4-18
4.7.1.2 Upgrades (Migration) ...................................................................................... 4-18
4.7.1.3 How to Update System Software.................................................................... 4-19
4.7.2 Versioning the User Software......................................................................... 4-20
4.7.2.1 Initial Creation of the User Software............................................................... 4-20
4.7.2.2 Initial Creation of the OS................................................................................. 4-21
4.7.2.3 Versioning Project Data with "SIMATIC PCS 7 Version Trail" ....................... 4-21
Index Index-1
Abbreviation/Acronym Description
VP Validation Plan1
QP Qualification Plan
QPP Quality and Project Plan
2
URS User Requirements Specification
FS Functional Specification
DS Design Specification (this includes, for example, P&I
charts, software and software module specification and
hardware design specification, etc.)
FAT Factory Acceptance Test
SAT Site Acceptance Test
IQ Installation Qualification
OQ Operational Qualification
PQ Performance Qualification
VR Validation Report
QR Qualification Report
1
To improve readability and recognition of familiar terminology, not all terms and
abbreviations/acronyms were translated in the German version.
2
The meaning of the terms used in GAMP ® 4 "User Requirements Specification" and
"Functional Specification" do not correspond to the German terms "Lastenheft" or
"Pflichtenheft" as used, for example, in VDI 3694 and VDI 2519.
Validation Plan
The Validation Plan is used to specify the methods used for validation or
qualification and measures for validating, for example, an automation system. A
Validation Plan should specify all validation activities and name those responsible
for their implementation. Further topics that should be covered by a Validation Plan
include:
• Documentation of the results of the validation activities
• All standard operation procedures (SOP) that relate to the system
• Preservation of the validation status of the system
A system-specific Validation Plan may be preceded by a generic Validation Master
Plan (VMP or MVP).
Qualification Plan
In contrast to the Quality and Project Plan, a Qualification Plan (QP) describes all
the qualification measures while the Quality and Project Plan deals mainly with
project and quality management. The Qualification Plan contains detailed
descriptions of the necessary test measures and a description of the
interdependencies of the individual tests. References to other test documents such
as FAT or SAT and a description of the deviation management must also be
integrated in the Qualification Plan.
Specification:
The specification phase begins with the creation of a user requirements
specification. The User Requirements Specification is normally created by the user
and describes the requirements that the system should meet. On completion of the
user requirements specification, the Functional Specification is created, usually by
the supplier. The Functional Specification (FS) describes the implementation and
the functions of the system set out in the user requirements specification. This is
followed by the detailed planning and implementation in the Design Specification
(DS).
The functional and Design Specification also form the test basis for later
qualification. The following aspects should also be specified in the functional and
Design Specification phase:
• Software structure
• Programming standards
• Name convention
• File naming convention
Implementation
The functions described in the Design Specification are implemented in the
implementation phase. The requirements of the pharmaceutical industry, in
particular, must be taken into account at this stage.
Based on the naming and file naming conventions decided in the specification
phase, the software, software blocks and variables must be named and
documented so that the program code can be structured clearly. Blocks or software
modules must be labeled uniquely with author, date created, version, and
comment. Versioning of these blocks is important to allow easier tracking of
subsequent changes. Software source code must be explained in comments.
"Dead code", in other words parts of the user program that are no longer called due
to changes in the programming must be removed or commented out.
User program code must be commented accordingly.
To be able to restore the last project engineering status if data is lost, regular
backups must be made:
• Backup of the user program
• Following changes to the settings of PC components - full backup of the
component involved
FAT
On completion of the implementation, a Factory Acceptance Test (FAT) is often
performed at the supplier's site. The purpose of this is to find and eliminate any
errors in the programming prior to delivery.
The aim of the FAT is the acceptance by the customer to allow the system to be
delivered in the tested status. The customer should follow the FAT and confirm that
it was completed correctly in a concluding report.
SAT
The Site Acceptance Test (SAT) shows that an automated system works within its
operating environment with interfaces to the instrumentation and plant sections
according to the specification. The SAT can contain additional tests during the
course of the FAT that are possible for the first time with connected field
instruments and plant sections as well as interfaces to neighboring systems. The
SAT can be combined with commissioning.
Qualification
The FAT is followed by the technical commissioning3 (commissioning phase). In
this phase, the system along with the user program that has been created is
installed at the system user's site, the technology is commissioned, tested and
qualified.
The commissioning phase and qualification phases can run sequentially or
simultaneously. It is advisable to synchronize the activities of commissioning and
qualification to save both time and costs.
The Qualification Plan should therefore be created in good time so that it is
possible to check whether or not tests already made during FAT or SAT need to be
repeated during qualification. In this case, the documented FAT / SAT tests must
be referenced in the qualification documents.
When creating the test documentation, tests and acceptance criteria must be
described so that they are easy to understand. Test documentation, for example
for FAT, SAT or qualification phases must be created according to the defined
methodology so that the system user will accept it as material that can be
referenced for qualification. Referencing previously performed tests during
qualification saves tests being repeated and reduces qualification costs. One
requirement for referencing test documentation is, however, that the test
documentation is approved according to schedule.
3
The technical commissioning must not be confused with the pharamceutical
commissioning. The aim is to put the technical system into operation for the first time,
for example to be able to run functional tests on the operational target system during
the OQ.
Qualification Report
Based on the Qualification Plan, the qualification report (QR) sums up the test
results of the tests performed and confirms the successful completion of the
qualification phases.
Validation Report
The Validation Report (VR) sums up the results of the individual validation steps
and confirms the validated status of the system. The creation of both the Validation
Plan and the Validation Report is the responsibility of the customer.
Operation
Following successful qualification and subsequent operation (start of production) of
the system, the plant must be serviced and maintained by the user. The
maintenance and service cycles must be defined and adhered to.
Risk Analysis
Risk analysis is a methodical procedure in which the process, the system or
programs are analyzed in sufficient detail. The risks identified by the analysis for
new installations and changes to plants are examined in terms of their results and
effects on the (pharmaceutical) product are examined.
Note
This manual is based on the requirements of GAMP ® 4 and FDA 21 CFR Part
11.
NAMUR Recommendations
NAMUR Recommendations are reports of the experience of the "Process Control
Systems Special Interest Group of the chemical and pharmaceutical industry" for
optional use by their members. They do not have the status of standards or
directives. The following NAMUR recommendations are of particular interest with
regard to configuration and the use of automated systems in a GMP Environment:
• NE58 "Execution of Process Control Projects Subject to Validation"
• NE71 "Operation and Maintenance of Validated Systems"
• NE72 "Validation Support by Use of Control Systems"
1.3 Responsibilities
When configuring automated systems in a GMP environment and creating the
appropriate specifications, the responsibilities during the life cycle are defined as
follows.
Change control
Changes to an existing system (hardware / firmware, user software etc.) are
proposed by the system user in a change request. This is approved and released
by the user. This forms the basis of such a project.
Functional Specification
The Functional Specification is normally created by the system supplier. Based on
the User Requirements Specification or the change request, it describes the
functions of the system in detail. The Functional Specification is created in
consultation with the system user and must be approved and released by the user.
The approved Functional Specification is used as the basis for creating the detailed
specifications and for subsequent configuration.
Design Specification
The Design Specification (DS) like the Functional Specification is normally created
by the system supplier. This is based on the Functional Specification and
supplements this with detailed descriptions, for example, of the hardware and
software used, process variable lists etc. The Design Specification is created with
the co-operation of the system user and must be approved and released by the
system user.
Category 2, Firmware
Category 2 covers the firmware that is configured to match the local conditions.
Once again the name and version of the firmware and its configuration must be
documented and verified during an Installation Qualification (IQ). The functionality
of the software must be verified in an Operational Qualification (OQ).
Software
1 2 3 4 5 Kategorie
When creating software, guidelines documented in the Quality and Project Plan
must be adhered to (GEP awareness). Guidelines on software creation can be
found in the GAMP ® 4 Guide for Validation of Automated Systems and in the
relevant standards and recommendations.
The upkeep of the configuration items should be checked at regular intervals, for
example in reviews. Here, particular attention must be paid to the change control
and the related version control. Archiving and release of individual configuration
items should also be taken into account.
Note
! It is important to make sure that only authorized persons can access PCs. This
can be achieved by suitable mechanisms such as remote kits. Process control
system PCs should be installed in control rooms with restricted access or
integrated in lockable switching cabinets.
User ID:
The user ID of a system should have a minimum length agreed with the customer
and should be unique within the system.
Password:
A password should always consist of a combination of numeric and alphanumeric
characters. When setting up passwords, the number of characters and a period
after which a password expires should be stipulated. The structure of the password
is normally selected to suit the specific customer. The configuration is described in
the section Security Settings of Password Policy.
Criteria for the structure of a password are as follows:
• Minimum length of the password
• Use of numeric and alphanumeric characters
• Case sensitivity
Apart from the traditional methods of identification with a user ID and password,
users can also identify themselves with chip cards or with biometric systems, such
as fingerprint scanners.
Caution
! When exporting pharmaceuticals into the USA, the regulations according to 21
CFR Part 11 of the FDA must be adhered to.
If electronic signatures are used that are not based on biometrics, they must be
created so that persons executing signatures must identify themselves using at
least two identifying components. This also applies in all cases in which a chip card
replaces one of the two identification components.
These identifying components, can, for example consist of a user identifier and a
password. The identification components must be assigned uniquely and must only
be used by the actual owner of the signature.
When owners of signatures want to use their electronic signatures, they must
identify themselves by means of at least two identification components. The
exception to this rule is when the owner executes several electronic signatures
during one uninterrupted session. In this case, persons executing signatures need
to identify themselves with both identification components only when applying the
first signature. For the second and subsequent signatures, one unique
identification component (password) is then adequate identification.
Note
The use of biometric systems is currently considered a secure identification
method. Nevertheless, there are reservations about the use of biometric
identification characteristics in the pharmaceutical industry (for example poor face
recognition due to protective clothing covering the face, no fingerprint scans with
gloves, the expense involved and the reaction times of retina scans).
Software backups should be created following any software change to the system.
They must document the last valid software version of a system. If changes are
made to software components, it is adequate to back up the modified components
of the application software. A complete backup of the software should nevertheless
be made at regular intervals. If software backups need to be created when
changes are made to the software of an existing system or during the installation of
a new system, they should be created after the installation. During the course of a
project, the software version should be backed up and documented in conjunction
with defined milestones, for example at the end of the FAT (in other words before
the system is supplied), on completion of the Installation Qualification (IQ) as a
basis for the tests for Operational Qualification (OQ) and, of course, on handover
of the system to the user.
Software generations should also be recorded during the creation of new software
versions at regular intervals in the form of software backups.
Software backups must be created for both the application software and the
configuration parameters.
The data saved in the system, such as trends, measured values or alarms should
be backed up on external data media at periodic intervals. This measure can
minimize data loss if problems occur.
Note
For auditing a product supplier, the NAMUR Recommendation 72 contains a
considerable amount of information. Approaches to auditing a service provider or
solution provider can also be found, for example, in the GAMP ® 4 Guide, Annex
M2.
This section focuses on the criteria for selecting hardware and software. The
activities involved in selecting products, product variants and system constellations
take place in the specification phase of an automated system. This is illustrated in
the lifecycle model shown below by the marking in the area on the left.
.
Note
Only released hardware from the current PCS 7 catalog must be used because
this has been tested by Siemens.
If PCs are distributed in switching cabinets, make sure that suitable hardware
components, such as operator channel extensions are used.
The optional additional software "SIMATIC PC/PG Image & Partition Creator"
allows creation of data backups of hard disk contents. Fast recovery of the system
is then possible with these system and application software backups. Backed-up
hard disk contents can also be transferred to identically configured devices. This
simplifies replacement of computers or expansion of systems.
Apart from creating hard disk images, the Image & Partition Creator can also be
used to create, modify, and delete hard disk partitions.
The SIMATIC PCS 7 engineering software includes the basic functions for
engineering with PCS 7. Some of the most important functionalities are described
below.
Systems for control and monitoring of automation systems (AS) are implemented
either as single or multiple workstation systems.
From a single workstation system, the entire operation and monitoring of an
automation system can be performed on one PC.
A multiple workstation system (client / server architecture) is made up of operator
stations (OS clients) and one or more OS servers that supply the OS clients with
data.
By setting up systems redundantly, availability can be increased compared with
single workstation systems.
Apart from selecting the single workstation system, OS client, or OS server, the
number of variables managed by the operator station also plays a role in the
selection of OS software. To make the selection easier, the OS software is offered
based on the number of process objects (PO). Process objects are objects such as
valves, motors, controllers etc displayed on the operator stations. To visualize
these objects, a number of variables must be managed on the operator stations.
The number of managed variables per process object differs but is taken as an
average of 32 variables for one process object.
License keys for operator stations are available in different sizes and depending on
the size of the project.
Note
The size of the variable archive of the operator stations can be increased later
using suitable power packs.
OS Archiving
OS archiving (short-term archives) uses a high-performance archive system based
on Microsoft SQL server technology. The licensing of the archive system is
scalable. Process values, messages, OS reports and batch data can be stored in
long-term archives (see Section 3.2.9 Additional Software for Long-term Archiving).
SFC Visualization
An SFC (Sequential Function Chart) is used for sequential control (also known as a
sequencer) of processes. SFCs consist of a sequence of steps separated by the
relevant step enabling conditions (known as transitions). Using SFC Visualization,
the configured SFC charts can be displayed on the operator station and operator
control can be enabled. With SFC Visualization, processes can be displayed more
clearly.
No extra effort is required to configure SFC Visualization.
SIMATIC BATCH works with the operator station and communicates with the
automation systems (AS) over the operator station. In small process cells,
SIMATIC BATCH can be installed along with the OS software on a single station.
ROP Library
The management of recipe operations (ROP) can be created using a ROP library.
Library recipe operations can be installed as references (software modules) in
recipe procedures. This guarantees that changes are made centrally and reduces
the effort for engineering and validation. Modified recipe operations are passed on
to all instances. By resolving the references, the recipe operation becomes a fixed
part of the recipe procedure and is therefore independent of further central
changes.
Grundrezept#1
Grundrezept#1 Grundrezept#2
Grundrezept#2 Grundrezept#3
Grundrezept#3
Connectivity Pack
The Connectivity Pack allows standardized access by computer systems at the
process level to computer systems at the factory and enterprise level with OPC.
Since the PCS 7 operator system is OPC-compliant, operator stations as OPC
servers can serve as the data source for other applications. The Connectivity
Packs provide further interfaces for access to archive data and messages of the
operator system.
Note
The basics of operation and working with the Connectivity Pack are described in
Section 4.25 "Data Exchange with the Plant Management Level".
3.2.9.2 StoragePlus
StoragePlus (see also Section 4.24.2) is used for long-term archiving of process
values, messages, BATCH batch data and reports from up to four servers. The
archives managed with StoragePlus (process values, messages, BATCH batch
data) can be cataloged and transferred to an external medium. Process data can
be accepted at a maximum rate of 1,000 per second per server, from more than
one server the overall rate is a maximum of 1,600 per second.
SIMATIC IT
With its numerous components, SIMATIC IT forms an MES (Manufacturing
Execution System) complying with the ISA 95 standard.
SIMATIC IT is used to optimize the interaction of planning, development, and
procurement within the framework of manufacturing and business processes.
The main elements of SIMATIC IT are:
• SIMATIC IT Framework (Plant Modeling)
• SIMATIC IT Components (Specific Functionality)
SIMATIC IT Framework connects the automation level to the operational
management and production control levels, as well as to the company
management and planning levels.
Note
For more information on the requirements, refer to GAMP ® 4, Annex D1.
Note
For more information on the requirements, refer to GAMP ® 4, Annex D2.
The Design Specification of the hardware used serves as the basis for successful
automation in a GMP environment. The hardware design specification (HDS)
describes the architecture and configuration of the hardware. It defines the
equipment used ranging from the number of input and output cards to the OS
server and OS client to be used. Functions, serial numbers, order numbers,
destination location etc. are documented and can therefore be used as a test basis
for IQ and OQ.
Since the hardware is normally used in conjunction with other components,
hardware overview plans of the plant to be installed are an advantage. The HDS
can be formulated in the function specification or in a separate document.
The HDS should contain the following points:
• Introduction
- Purpose of the HDS
- Author
- References
• Overview
- Overview / configuration of the hardware system
• Specification
- Specification of the hardware used
- Specification of the inputs and outputs
- Specification of the operating environment
- Specification of the supply systems
- Specification of the grounding concept
- Specification of lightning protection measures
The description of the hardware required for automation serves as the basic
information. The implementation can be made in HW Config (the hardware
configuration of SIMATIC PCS 7). In HW Config, amounts, order numbers, address
areas, physical connections etc. must be configured exactly. The hardware used
must match the switching cabinet documentation.
Note
! The information in the hardware overview plan and the naming of hardware
components must be unequivocal. The name of each hardware component must
only exist once in the automation system.
The Design Specification of the software used serves as the basis for successful
automation in a GMP environment. It describes all the software components used
for configuration, for example with their version numbers, order numbers etc. The
description serves as a template for tests (FAT, SAT) for IQ and OQ.
The standard software includes the following:
• Operating system
The following are recommended for new systems (you will find the current
recommendations in the relevant PCS 7 documentation):
- Windows XP Professional
- Windows Server 2003
• The components of the PCS 7 Toolset DVD
• SIMATIC PCS 7 Bundles (standard basic packages, for example, for OS
server, OS client, CAS, engineering system, BATCH server, BATCH client,
SIMATIC IT server etc.)
• Standard libraries (part of the engineering system)
• SIMATIC optional packages (SIMATIC BATCH, SIMATIC PDM, SIMATIC
Logon, SFC Visualization etc.). Separate license keys are necessary to use
some of the optional packages (if they are not included in the bundle)
The software design specification (SDS) or software module design specification
(SMDS) should cover the following aspects:
• Introduction
- Purpose of the software design specification
- Author
- References
• Overview
- Listing and purpose of the software modules
- Description of the software modules
- Interfaces
• Specification:
- Definition of data / data types
- Detailed description of the software modules
- Description of the subprograms
Note
The engineering software SIMATIC PCS 7 includes import/export functions with
which I/Os, parameters, CFC charts etc. can be adopted simply and without
errors. In the design phase, software tools (for example MS Office, EXCEL) can
be used to describe the plant to be automated.
Note
There are standards governing the description of software structures such as
ANSI/ISA-88.01 (1995) Batch Control, Part1: Models and Terminology.
SIMATIC PCS 7 uses the model of the ANSI/ISA-88.01 standard as the basis for
configuration of batch control. Refer to Configuration, Section ISA-88.01 -
Software Model SIMATIC PCS 7 4.15.3.
4.1 Introduction
Chapter 4 "Guidelines for Implementation in a GMP Environment with Standard
SIMATIC PCS 7 Software explains configuration in a GMP environment based on
examples. The graphic below shows the life cycle model. This focus of this section
is indicated by the marking in the lower area.
Kategorie 1
Betriebssystem wie
- WINDOWS 2000
- WINDOWS XP
- WINDOWS 2003
Kategorie 2
Firmware
- in der CPU befindlich Firmware
- in Kommunikationsprozessoren befindliche
Firmware
Kategorie 3
SIMATIC PCS 7 Standardsoftware/
Standardbibliotheken
- SIMATIC Manager, CFC-/SFC-Editor, etc.
- PCS 7 Library, Faceplates, etc.
Kategorie 4
SIMATIC PCS 7 Konfiguration
Erstellung der Applikationssoftware auf
Basis der Standardbibliotheken mit
PCS 7 Editoren
Kategorie 5
All the information relating to operating system installation can be found in the
current function manual "PCS 7 – PC Configuration and Authorization". The
readme file on the SIMATIC PCS 7 Toolset DVD also contains information on the
hardware and software requirements.
The following table shows an overview of the operating systems to be installed for
SIMATIC PCS 7 PCs.
Note
!
The mixed use of operating systems within a plant is permitted only as of version
SIMATIC PCS 7 V6.1 SP1.
The mixed use of operating systems within a redundant server pair is not
permitted.
Note
You will find additional information relating to hardware and software requirements
of SIMATIC PCS 7 on the PCS 7 Tool Set DVD in the "pcs7-readme.wri" file.
Note
! When using domain servers, remember that following the installation of the
operating system, the domain clients are set up according to the specified
requirements (URS, FS, DS).
The installation program is started within the SIMATIC PCS 7 system setup. The
user has the option of making a package installation or a customized installation.
PCS 7 Single Station, Process Device Manager, BATCH Engineering and BATCH
Single Station
Installing the following components is analogous to the installation of a SIMATIC
PCS 7 engineering system:
• PCS 7 Single Station (OS, BATCH, Route Control)
• Process Device Manager,
• Engineering (BATCH, Route Control)
The system components you want to install must be selected in the "Setup" dialog
box, in the section "Program Packages".
Note
Optional packages such as Simatic Logon Service, Electronic Signature etc. must
be installed in a user-defined installation.
It is advisable to use the printer drivers integrated in the operating system and
therefore released for use. If external drivers are used, there can be no guarantee
that the system will operate trouble-free.
The use of virus scanners in process mode (runtime) is permitted. For more
information on configuration and selecting virus scanners, refer to the PCS 7
readme files.
4.5 Multiproject
4.5.1 Engineering
When creating the project, care must be taken that the project name of the
application software matches the project name specified in the Software Design
Specification (see also GAMP ® 4). The "New Project" SIMATIC PCS 7 Wizard
supports you when you create projects.
In many projects, functions are used such as valve, motor, analog value, and
sequencer functions that will be required several or even many times within the
project.
According to GAMP ® 4, these functions should be pretested in a software module
test and the results documented. Following this, instances of such functions can be
created.
To allow software module instances to be created, SIMATIC PCS 7 offers the
option of duplicating process tag types and models according to a defined software
procedure. Instances can, however, only be created in conjunction with a
multiproject with a master data library. This means that it is absolutely necessary to
work in the multiproject mode.
4.5.2 Views
When configuring with SIMATIC PCS 7, the configuration engineer has three views
available.
• Component view
• Plant view
• Process object view
Component View
The hardware of the control system made up of the following individual
components is configured in the component view:
• OS server
• ES
• I/O modules
• CPU
• Bus systems
The following screenshot illustrates the structure of the component view.
Plant View
Here, the plant is configured hierarchically according to process engineering
aspects, for example in the hierarchy:
• Plant (process cell)
• Unit
• Function (phase)
The plant view is used to store flow charts and to structure individual functions and
CFC and SFC charts. The assignment of Batch objects is also made in this view.
The following screenshot illustrates the structure of the plant view.
4.6.1 Setting up the OS, OS Client, OPC Server, and SIMATIC BATCH
Each SIMATIC PCS 7 OS, each SIMATIC PCS 7 OS client, each OPC server and
each SIMATIC BATCH server is managed and configured as a SIMATIC PC
station in the SIMATIC Manager. After they have been inserted and configured in
the SIMATIC Manager, these PC stations are handled in the same way as
automation systems (AS). In SIMATIC NET, S7 connections must be configured to
guarantee the data exchange between the individual stations.
To allow central OS test operation with the AS data from the engineering station,
an S7 connection or a fault-tolerant S7 connection must be configured between
each automation system (AS) and the ES system.
Industrial Ethernet is used as the system bus. The Industrial Ethernet network uses
the access method CSMA/CD (Carrier sense multiple access with collision
detection) standardized in IEEE 802.3.
Industrial Ethernet provides a wide range of network components for electrical and
optical data transmission. In SIMATIC PCS 7, a distinction is made between the
plant bus and the terminal bus. To guarantee a high degree of security and
performance, the separate installation of both buses is recommended.
4.6.5 PROFIBUS
Note
All existing configured and programmed automation and operator systems are
stored in a common project in the SIMATIC Manager on the engineering system.
A backup of the engineering project therefore contains the entire user software.
From the perspective of validation, the advantage of this is that verification within
the framework of the IQ/OQ is restricted to a central backup.
Note
The following sections contain an example of software versioning and change
control. The procedure for changes made to a plant/process cell during operation
must always be agreed with the plant user.
Note:
! Further information on migration to PCS 7 can be found in the manual "SIMATIC
Process Control System PCS 7 Software Update V6.0 to V6.1 with Utilization of
the New Functions".
Note
The author and comment fields can be written using the IEA File Editor.
The following screenshot shows the dialog box of the "Plant View"; entries have
been made in the Author and Comment fields.
The following screenshot shows the dialog box of a CFC chart with a text box.
When application software is changed, this must be versioned and described. With
the Version Cross Checker (VXC), PCS 7 provides the ability to compare changes
made in CFC and SFC charts in different version of a user program..
Operational Changes
The following flowchart describes an example of the procedure for implementing a
change while the plant is in operation. The stipulations of the user must be taken
into account.
3. Beschreibung der
Softwareänderung (z.B. FS)
4. Durchführung der
Softwareänderung inkl.
Dokumentation auf Basis der
akuellen Version
6. Sicherung der
Anwendersoftware
4.8.1 General
The use of software modules is common in process control engineering. They are
used in the form of function blocks or complex sequencers that can be copied and
duplicated within the projects. In SIMATIC PCS 7, a distinction is made between
process tag types, models and SFC types, for example:
Note
The color coding of the graphics modules and the representation of the faceplates
(for example for valves, motors, closed-loop controllers, etc.) must be defined in
the specification in consultation with the user. Faceplates that differ from the
standard, should be edited in the Faceplate Designer editor as a copy of the
standard or as a newly created faceplate. These faceplates should be tested as a
process tag type/typical along with the corresponding software module and
approved by the customer before they are instantiated and used in large numbers!
SFC Type
With SIMATIC PCS 7, types of sequential control systems can be created using
the type/instance concept of SIMATIC PCS 7.
In SFC, there is not only the object type "SFC chart" but also "SFC type". The SFC
type allows the definition of sequential control systems including an interface in the
form of a CFC block. The sequence logic of the SFC type is based solely on the
interface I/Os of the SFC type; in other words, in contrast to an SFC chart, an SFC
type cannot access all process signals.
For more detailed information, refer to the manual "SFC for S7 Sequential
Function Chart" .
Alone, the SFC type cannot execute. An SFC type, just like a function block type,
must be placed in a CFC chart before it contains an executable object, in this case
an SFC instance. The SFC type and the SFC instances are compiled when the
program is compiled. To run an SFC instance, both the SFC type and the SFC
instance are downloaded to the automation system. Seven messages requiring
acknowledgment and five messages not requiring acknowledgment can be
configured for an SFC type. The SFC type itself requires the remaining available
messages (one per message type and 10 notify messages for SIMATIC BATCH).
Note
The naming and functionality of the modules is uniform according to the
stipulations in the Functional and the Design Specification.
Note
When using software modules, a document should be created and maintained
that lists the modules and identifies their versions for each AS (configuration
management).
In the first step, the CFC chart is created as the template for each software
module. After the software module test, this CFC chart is released for instantiation
and can be used within the framework of the configuration.
For a spring-closing valve, the module might appear as follows.
The valve to be controlled has an activation signal for the OPEN function and two
return messages for the statuses opened and closed and monitoring of the module
I/O errors for the statuses of the return messages open/closed. For the example
above, the following blocks from the "PCS 7 Library V61" standard library were
used:
• VALVE (FB73)
• CH_DI (FC277)
• CH_DO (FC278)
The parameter assignment and the interconnection of the inputs and outputs must
be described in detail in a suitable specification (for example, "Software Module
Design Specification") according to the GMP requirements and checked in a test
("Software Module Test" or "Typical Test").
In the second step, the IEA file editor (IEA = Import/Export Assistant) is used to
enter the parameters and signal processing in a table for each instance according
to the stipulations in the URS, FS or DS.
Note
! The interconnections and parameter settings meet the project-specific
requirements that must be defined in the URS, FS or DS.
In the third step, the instances are included in the project according to the P&I flow
charts taking into account the requirements defined in the URS/FS. The inclusion
of type instances should be assigned for the specific instance using the automatic
generation of block icons, in other words, each instance-specific module (valve,
pump, controller etc.) is assigned a block icon in the flow diagram being
implemented via the IEA file. Block icons can only be generated when the picture
and the charts for the blocks represented in the picture are configured in the same
plant hierarchy folder or in a folder of the same name.
Note
If the connection to the archive server is interrupted, the data is buffered in the
short-term archive of the station involved.
The size of the database is decided by the number of process value archives and
the process variables they contain. The size of the process value archive depends
on the measurement with the fastest acquisition cycle. The cycle acquisition should
be uniform within a process value archive
It is therefore advisable to store process tags with the same acquisition cycle in
one process value archive (for example 500 ms, 1 s, 10 s., 1 min). A separate
process value archive is therefore configured for each acquisition cycle.
The archiving cycles are specified in the process object view (see graphic). When
the OS is compiled, PCS 7 automatically stores the process values in the tag
logging archive of the server so that archiving is always guaranteed.
Stipulations
The stipulations for process value archives are made by the plant owner and
suppliers in the specifications in the EMSR process tag list or Functional
Specification.
The following parameters can be defined in the stipulations.
• Classification into quality-relevant and non quality-relevant measurements
• Scaling 4 through 20mA with a range of values of for example -10°C through
140°C
• The type of acquisition (cyclic, cyclic-continuous, on changes, etc.)
• Cycle time
• Frequency of archiving
• Type of value (instantaneous value, mean value, maximum value etc.)
Note
For further information, refer to the SIMATIC PCS 7 product documentation
manuals "WinCC". The settings must be agreed with the plant user.
Caution
! The IEA is a separate optional package in SIMATIC PCS 7. The IEA, the plant
hierarchy and the process object view are part of the PCS 7 Toolset DVD and are
installed with the general setup. It does, however, require a separate license.
With the Create/Update Block Icons command, the block icons are assigned to the
higher-level hierarchical pictures.
Activating Simulation
Simulation for test purposes can be activated in the channel input drivers or
channel input driver blocks.
Sample valve
Simulation is activated at the inputs SIM_ON and the input can be simulated at the
input SIM_I.
Deactivating Simulation
Caution
! The activated simulations should be noted according to GEP. A table allows an
overview of the active simulations. On completion of the test phase, make sure
that all simulations are deactivated again.
Ideally all simulation inputs are connected to an OP_D allowing simulation to be
turned on and off.
Recommendation
Where possible, central switches can be configured for specific units to
disable/enable simulation and be interconnected with all input drivers. On
completion of the test, this central switch can be deleted and simulation turned off
centrally.
When creating an OS project in the SIMATIC PCS 7 ES, the OS Project Editor is
started in the background and initialized with the default settings. Modifications due
to customer requirements are made in the configuration of the Project Editor. The
following screenshot shows the layout of the OS Project Editor.
Note
You should only start to create the overview graphics for visualization when the
module test of the project is completed.
Master Recipe
Set of rules and information required to define how a product is manufactured.
Control Recipe
Copy of the master recipe with extra information specific to a process cell.
Batch
Equipment-dependent amount of a product manufactured in a defined
discontinuous production sequence.
Process
A sequence of chemical, physical, or biological activities for the manufacture
materials or products.
ISA-88.01 describes various models that can be implemented completely with PCS
7 and SIMATIC BATCH.
Rezept
Anlage Rezept
Prozedur
Anlage Prozedur
Teilrezept
Teilanlage Teilrezept
Prozedur
Teilanlage Prozedur
Technische Rezept
Technische Rezept
Operation
Einrichtung Operation
Einrichtung
Einzelsteuer Rezept
Einzelsteuer Rezept
Funktion
Einheit Funktion
Einheit
The process cell model describes the process cell, unit, equipment module and
control module level that is mapped using the plant hierarchy in the plant view of
the SIMATIC Manager.
The process cell model described above is provided by SIMATIC BATCH so that
the procedural model in the form of recipes can be mapped on it.
Recipe Procedure
A recipe procedure runs on a process cell to control a process and to create a
batch of a product.
Recipe Operation
A recipe operation or a recipe phase runs on an equipment module to implement a
process engineering task or function.
The ISA S88.01 software model divides the process into various modules
simplifying the process of validation and qualification. The process model is split up
hierarchically into the following parts.
Note
! The names and functionality of the modules are uniform according to the
stipulations in the URS, FS or DS.
Further Information
How to create this equipment phase is described in "SIMATIC BATCH Getting
Started".
The "SIMATIC BATCH Getting Started Part 3 and Part 4" documents describe the
interaction between the various levels (control module level and phase).
SIMATIC Logon
Konfiguration
Windows 2000
Benutzerverwaltung
Administration der
Benutzerverwaltung
Note
! The setting up of access protection must be completed before configuration starts
and must also be integrated in the typical description.
All password levels of the visualization interface (faceplates, input boxes, buttons
etc.) must be set up according to the specifications in the URS and FS.
Note
! The access security of the monitoring mechanisms (password age, password
length, password generation, password disable threshold etc.) must be configured
and set in Windows. The operating system user should also only have power user
or user rights but should not have administrator privileges. This ensures that only
PCS 7 has access to the database. Access by the operating system to the SQL
database is not therefore possible.
In a productive SIMATIC PCS 7 system, there are generally to users logged on.
One is the operating system user who controls coordination of the SIMATIC PCS 7
runtime software, the other is the SIMATIC PCS 7 runtime user who controls and
monitors the process.
Note
When the Windows audit trail is activated (see Section 4.17.2 Permission
Management in Windows), all changes made by an operating system user are
recorded.
SIMATIC PCS 7 runtime users with Windows guest rights cannot start any
SIMATIC PCS 7 applications, delete directories or shut down PCs.
Since the user management of SIMATIC Logon is based on the mechanisms of the
Windows operating system, two options are available for permissions management
in Windows:
• in a domain
• in a workgroup
Windows Domain
Within a domain, the AGLP strategy recommended by Microsoft is used (Access
Global Local Permission, basic principle in the management of access to
resources using trusts in Windows), in other words, if users of a domain with the
same tasks are placed in one global group, they are also placed in a local group
and then adopt the necessary permissions. If a domain server is used in the
working environment, the advantages of the group and user management can be
used in conjunction with SIMATIC Logon. The central administration of groups and
users on the domain server allows all computers that belong to the domain access
to the groups and users. To increase availability, domains can be set up with
multiple domain servers.
Windows Workgroup
Within a workgroup, local users with the same tasks should be placed in a local
group and the group should then be given the required permissions and rights.
If a computer is a member of a Windows workgroup, the computer acting as server
of the workgroup must be specified. All user data is created and managed on this
server. From here, it is made available to other computers in the system. When
selecting the server, the PCS 7 OS server can be considered, for performance
reasons however separate computers are often selected that are used only to
manage users.
In the Login list box, the local computer or a domain can be selected. This displays
all groups of this server. Administration of the groups and users of the computers
belonging to the workgroup is not necessary. A redundant configuration is not
possible in this case. Emergency operation is possible using the local user
management.
Note
! The Windows domain must be used when several servers or redundant servers
are involved to make sure that if a domain server fails, operator control and
system access of users can be guaranteed.
Users and groups are configured in the user management of Windows as specified
in the URS or FS. With the PCS 7 PC logon assigned to the particular tasks, the
following is achieved:
a) When logging on in Windows, users are assigned exactly the permissions that
are required to execute the particular task, for example, they must be members
of the power users and SIMATIC HMI group to edit the PCS 7 project.
b) With the login in process mode, users have the right to control the plant
according to their group permissions.
The following screenshot shows the "Local Users and Groups" dialog box in which
the users and user groups are defined.
To open Computer Management, select the Start menu followed by Settings and
then click on Control Panel. Then select Administrative Tools and double-click
on the Computer Management menu command to open the following window.
To operate correctly, the following settings must be made for SIMATIC Logon:
• To configure SIMATIC Logon, a Windows group with the name
"Logon_Administrator" must be created. All users assigned to this group have
permissions to configure SIMATIC Logon.
• The full name of every user must be entered in "Local Users and Groups" in
the Windows Computer Management. This name is used by the application for
display in SIMATIC PCS 7 after logging on.
Further Information
• Manual SIMATIC Process Control System PCS 7 - Security Concept PCS 7 ;
Chapter 4 "User and Access Management in PCS 7 and Integration in
Windows Management"
For the monitoring mechanisms of the password policy of Windows, the previously
specified settings (URS, FS or DS) must be made. The following security settings
and password policy settings must be configured in the operating system.
The following screenshot shows the "Password Policy" dialog box. The settings are
simply examples.
You can open Computer Management with the following menu command: Start >
Settings > Control Panel > Administrative Tools > Security Settings.
For the monitoring mechanisms of the account lockout policy of Windows, the
settings as required in the user requirements or Functional Specification must be
made. The following security settings must be configured in the account lockout
policy.
The following screenshot shows the "Account Lockout Policy" dialog box.
For the audit policies of Windows, the following settings must be made to create an
audit trail of logon attempts. The audited events are stored in the Event Viewer in
the security report and are available for analysis.
You can open Computer Management with the following menu command: Start >
Settings > Control Panel > Administrative Tools > Security Settings.
Note
To monitor the Logon activity, the required settings must be made in the audit
policy of the local policies of Windows.
Note
! After installing Windows, default parameters are set for the password policy,
account lockout policy and audit policy. The settings must be checked and
adapted to the requirements of the current project.
Further Information
For more detailed information on setting up Windows workgroups and Windows
domains, refer to the online help of the Microsoft Windows operating system or the
Windows 2000/XP manual Windows 2000/2003 Server - Technical Reference.
Note
To configure SIMATIC Logon, a Windows group with the name
"Logon_Administrator" must be created. All users assigned to this group have
permissions to use the "Configure SIMATIC Logon" tool for configuration
purposes.
The basic settings for configuring SIMATIC Logon are made with the "Configure
Simatic Logon" tool. When the tool is started, the following dialog opens.
The language is specified in the "General" tab. You can also define whether a
default user should be logged on (by the user or automatically by the system) after
the user logs off. You can also set the number of days after which the user will be
reminded that a change of password will be required.
Note
!
In contrast to all other users, the "default user" does not need to be created as a
Windows user. The "default user" is a member of the "DefaultGroup"
"Emergency_Operator" roles. The rights for these groups are specified in the
relevant PCS 7 OS (server/client) applications.
In the "Working Environment" tab, the user specifies whether the information
relating to groups and users relates to a Windows domain or a Windows workgroup
server. The name of the domain or workgroup server must be entered.
In the "Logon Device" tab, the user specifies whether the logon is via the keyboard,
chip card or other procedure such as biometric user identification, for example by
fingerprint.
The "Automatic Logoff" tab is used to specify whether or not the automatic logoff
function is used. If this is selected, the delay before a user is automatically logged
off must also be specified.
Caution
! Activating a screensaver is not permitted in conjunction with SIMATIC Logon.
Below, you will see an example of the change log showing a change made by the
user administrator.
Note
The change log records the user, the timeand the comment entered by the
configuration engineer.
The following screenshot shows the "WinCC Adapter" dialog after successful
project adaptation.
Note
To ensure that operator input in the productive system is possible, user groups
must also be configured in the WinCC User Administrator.
Windows groups are assigned to PCS 7 OS groups by creating groups with the
same name. If, for example, a Windows group called "Operator" is required, a
group with the same name "Operator" must be created in the PCS 7 OS User
Administrator and the required permissions assigned.
You assign the individual roles to the operator rights directly in SIMATIC BATCH.
Here, the assignment of rights can be made in groups.
Electronic Signature
An Electronic Signature optional package is available for SIMATIC BATCH,
however this can also be used with other applications as a basis for developing an
electronic signature function. The following screenshot shows a configuration
dialog for setting up electronic signatures. In the following example, two electronic
signatures are required. These are specified in the SIMATIC BATCH Recipe Editor
in the "Configured roles" box
Recipes, formulas, and recipe operations can also be released using the electronic
signature of the SIMATIC BATCH Recipe Editor.
The electronic signatures made are entered in the change log of SIMATIC BATCH
and are available there for analysis.
For more information, refer to the What's New in SIMATIC BATCH V6.1 manual.
Further Information
Manual Process Control System PCS 7 SIMATIC Logon; Section SIMATIC
Logon Admin Tool
Note
! Access to the operating system level should be reserved solely for administrators
or technical maintenance personnel.
Access to the operating system during process mode can be configured using the
parameter properties of the OS. The necessary settings are shown in the
screenshot below. Make sure that clicking the button for disabling process mode
(system change) is possible only with the appropriate permission. After disabling
and restarting, the operating system can be accessed.
Make sure that no OLE objects are configured that, for example, call the Windows
Internet Explorer etc. With Windows OLE objects, unauthorized access to folders,
files and programs may be possible.
You must also make sure that any hot key assignments are deactivated. Normally,
hot keys are used, for example, to influence the properties of the graphics card. By
influencing the graphics card properties, it is possible to go to the operating system
user interface.
4.19.1 PCS 7 OS
Note
Select the hard disk capacity so that it is possible to store the entire audit trail until
it is transferred to an external data medium.
In SIMATIC BATCH, there is a distinction between the online and offline audit trail.
In the online audit trail, a batch report is created containing the information on
operator input (who, when, what).
In the offline audit trail, the changes to recipe data and batch data (for example
deleted batches) are logged in the change log. Here, the user, the time and the
action are entered. To log changes to recipes, it is necessary to increment the
recipe version automatically. For this reason, the property Allow editing of
recipes in the "Release revoked" status can be selected; see screenshot below.
While changes are being made, the recipe is available to only one person. Saving
a change to a recipe forces a new version of the recipe.
Note
Activating time synchronization is an absolute necessity in plants subject to GMP
and this must be taken into account and implemented even in the basic
configuration (HW Config, OS etc.) to ensure a correct audit trail in process mode
(runtime).
Note
!
Time synchronization must be activated on the engineering stations otherwise
problems may be encountered when downloading changes.
Note
Time synchronization of the domain clients uses Microsoft system services.
Further Information
How to configure time synchronization is described in the following documents:
• Configuration manual "Process Control System PCS 7 Operator Station" in the
section "Time Synchronization and Lifebeat Monitoring"
• OS online help in Release Notes > Process Control Options > Time
Synchronization
• PCS 7 online help in Configuration – Engineering Station > Performing PCS 7
Configuration > Configuring Hardware > Setting Time Synchronization
Refer to the manual SIMATC PCS 7 Security Concept Chapter 5 "Planning and
Time Synchronization".
Note
If other automation systems (AS) are used, the settings must be transferred to all
other hardware systems.
The settings must be saved, compiled and downloaded to the hardware.
In the WinCC Explorer, the time synchronization must be set with the "Time
Synchronization" tool.
a) Time synchronization over the plant bus (OS server is time master).
By selecting the "Synchronization over Plant Bus (Master, Slave)" check box,
you can define the access point of time synchronization. You then also define
the OS server as time master.
Note
! When using domain controllers, make sure that the domain controller acts as the
time master.
The time basis for the time must also be set to Universal Time Coordinated (UTC)
in the properties of the computer in the "Parameters" tab.
The time mode must also be selected in the properties of the CP 1613 in the
"Options" tab. After compiling and downloading the hardware again, time
synchronization is activated.
Lifebeat Monitoring for third-party systems must be configured manually. Its use
depends on the communication partner of the third-party system. If the third-party
system represents an important interface to SIMATIC PCS 7, Lifebeat Monitoring is
absolutely necessary.
The graphic shows an example of a solution for Lifebeat Monitoring with a third-
party system. SIMATIC PCS 7 sets a defined OPC variable bit from logical 0 to 1.
After a defined time X, the third-party system must reset the OPC variable bit from
logical 1 to 0.
This is repeated cyclically. If the third-party system does not bring about a state
change within the specified time, a process control message is generated in the
SIMATIC PCS 7 Process Control System. This indicates to the operator that
communication between SIMATIC PCS 7 and the third-party system is not
functioning.
SIMATIC BATCH stores the batch data in XML format allowing straightforward
processing of the data by external systems. This data can be archived or
processed with a different report system for batch reports. The XML files are
protected by checksum.
The batch data is available either as a file in an area "protected" by the Windows
security mechanism on the hard disk or in a database and is accessible only to
authorized persons or systems. For more detailed information, refer to the
Windows manual.
The batch data report can be printed out or displayed with an integrated browser
while the batch is running or after the end of the batch.
Hard disk images should be used to backup the operating system and the PCS 7
installation. Using such images, it is relatively simple to restore the original status
of the PC.
Note
The backups of the application software and the backup of the operating system
with and without SIMATIC PCS 7 should be stored on external storage media (for
example MOD, CD, DVD, network backup).
Note
! An image can only be copied back to a PC with identical hardware. For this
reason, it is advisable to document the hardware configuration of the PCs.
Images of individual partitions cannot be exchanged between PCs since various
settings, for example in the registry, differ from PC to PC.
The example shown in the schematic below illustrates the access possibilities for
displaying trends and tables (Tag Logging) on the OS clients.
In the "Properties" dialog of the CAS, the configurations required for the
implemented PCS 7 standard as mentioned above (common area of StoragePlus)
are made in the "CAS Options" tab.
To be able to keep the database files resulting in the CAS in the "connected" status
for as long as possible, – making access to them possible – it is, for example,
possible to select a particular percentage of the hard disk capacity as the limit at
which the automatic storage of the long-term segments starts.
Other activities relating to the destination paths, creation of server data (packages),
start and execution of the Project Editor in the WinCC Explorer and finally
download to the CAS computer are essentially the same as for an OS server.
The OS clients must be supplied with the package created by the CAS to allow
access to the long-term archive data of Tag Logging.
Runtime can be activated after the download to the CAS.
If the central archive server is deactivated, the PC must be restarted before the
central archive server can be activated again.
Note
• The period for the single segments on the OS servers in Tag Logging must be
selected so that it is significantly shorter than the period of temporary
archiving on the CAS.
• The period for the entire archive on the OS servers in Tag Logging must be
selected so that it is at least one day longer than the period of temporary
archiving on the CAS.
• The period for all segments of the message archive on the OS servers in
Alarm Logging should be selected so that it is long enough to allow all
historical messages that must still be directly accessible to be kept on the OS
servers.
Operating Systems
StoragePlus can be used with three different Microsoft operating systems.
• Windows Server 2003 (Standard Edition) SP1
• Windows XP SP2
• Windows 2000 SP4
The MS SQL Server software must also be installed.
Note
The updates and service packs for Windows or MS SQL Server and other
software components necessary to install StoragePlus can be found in the
installation instructions. When installing, make sure that you keep to the specified
order.
You will find the relevant documentation on the PCS 7 Toolset DVD in the
"StoragePlus/Install/Documentation" folder.
Note
We recommend that you set up at least two partitions on the hard disk.
Partition C contains the operating system, the StoragePlus software components
and the path for storage of the archive data of the OS servers / SIMATIC Batch
servers.
The second partition should contain the database files created by StoragePlus.
StoragePlus Benutzer
mit Zugriff auf die
StoragePlus Applikation.
- Administrator - Administrator
- Power User - Power User
- User - User
The following default user groups exist in the administrator console of StoragePlus:
• Administrator - full access to the StoragePlus system
• Power user - can read and create StoragePlus views
• User - can read StoragePlus views
• Guest - no rights. Neither access to StoragePlus views nor to the StoragePlus
system
To install StoragePlus, administrator privileges are required at the operating
system level. The user who performs the installation is automatically the default
user who can make the administrative settings for the first time in the administrator
console of StoragePlus.
We recommend that the individual users planned for StoragePlus have equivalent
group rights at the operating system level (see graphic). This ensures that the
functions associated with the rights required or assigned in StoragePlus can be
performed from the perspective of the operating system.
The user rights assigned reflect the maximum access rights. Assuming that a user
is a member of the "Administrator" group and also a member of the "User" group,
the "Administrator" group has greater access rights than the "User" group. In this
case, such a user would always have administrator rights in StoragePlus.
Note
We recommend that users are only assigned to one group.
Note
Do not delete all the groups to which an existing user is assigned in StoragePlus.
There should always be at least one group to which the user belongs.
For more detailed information on user access, management and the Windows
security settings, refer to Section 4.17 "Setting up Access Protection".
Transfer of OS Reports
With the report editor, PCS 7 OS allows configuration and online data to be printed
out in the form of documentation. To make such reports available to StoragePlus
as well, additional output in the form of *.emf files (printer settings) is necessary in
the OS project used for the logging.
For the transfer, there is a C script in Global Script ÆStandard Functions ÆSplit
Screen Manager with the name "StoragePlus_ExportReports". This standard script
must be called by the user with a global action and cyclic trigger.
The destination path for StoragePlus in this case is:
"’\\\<destinationcomputername>\\ArchiveDir\\"
At cyclic intervals, the standard script checks whether a report has been output in
the PRT_OUT folder of the project. Any *.emf files found are transferred and then
deleted in the OS project.
The long-term storage of OS reports would only be useful in the case of one-off
reports that could not be recreated from individual archived events using suitable
views in StoragePlus.
An alternative destination path is not used for the reasons explained in section on
the OS servers.
The backup size in MB relates to the space available on the intended memory
medium such as a CD or DVD. The StoragePlus database than creates the
database segments with approximately this size. A transfer is always
straightforward if, for example, (keeping to the example of a CD) a backup size of
650 MB is selected while the medium to be used has 700 MB available.
The interval for the online archiving segment relates to the part of the database
that integrates and arranges the incoming transferred files of the individual OS
servers. When this time expires, a further database segment is opened until the set
backup size is reached. This is then closed and a new segment created with the
"opened" status. All the database files have the status "connected" to the
StoragePlus database and created Views can access them.
As of PCS 7 version V6.1, it is possible to add an identifier at the signal source in
the CFC chart or in the process object view of the SIMATIC Manager that indicates
how measured values will be archived.
• No archiving
• Archiving (short-term, storage on OS)
• Long-term archiving (storage on StoragePlus archive computer)
The setting "only long-term data" in StoragePlus filters out only the signals with this
identifier.If this setting is missing, all the data of Tag Logging archived and
transferred by the OS servers is included.
Recommendation
Backup this configuration data regularly, for example each time archive data is
transferred to backup
Process values and control statuses are recorded online. Depending on the
specifications ,the online process values and messages (alarm, warning, system
message, operator messages etc.) are entered in the short-term Tag Logging and
Alarm Logging archive for the defined short-term archiving time and are then
available to be read from the plant management level.
Wechsel-
Gleichrichter Ladung Batterie
richter
The simplest and least expensive UPS systems (according to IEC 62040-3.2.20,
UPS class 3) are standby or offline UPS systems. They protect only against power
outages and brief voltage fluctuations and peaks. Undervoltage and overvoltage
are not compensated. Offline UPS systems switch to battery supply automatically if
there is overvoltage or undervoltage.
Line-interactive UPS
Elektronischer Umschalter
Eingang Filter Spannungsregulierer
Ausgang
Ladung
Wechselrichter / Wechsel-
Batterie
Ladekontrolle richter
Online UPS
Wechsel-
Gleichrichter Ladung Batterie
richter
Uninterruptible power supplies (UPS) must be configured for the specific case and
described in the URS, DS or FS.
The two screenshots below are examples of the configuration of a UPS in
Windows 2000/2003/XP.
L1
überwachungsmodul
L2
Phasen-
L3
USV-Modul
24V
USV-Modul
220V
Digital Eingangskarte
PS-Baugruppe 24V
AS CPU 41x
Ethernet CP
OS-Server
Caution
! The creation of category 5 software should be avoided because it significantly
increases the test and validation effort.
Note
You will find an overview of the approved SIMATIC PCS 7 add-ons in the current
Add-Ons catalog ST PCS 7.A or CA01 catalog. More detailed information is
available on the Internet at: http://www.siemens.com/simatic-pcs7
5.1 Introduction
The graphic below shows the life cycle model. The focus of this chapter, selection
criteria, is typified by system test / qualification.
The aim of qualification is to provide documented proof that the system was set up
according to the specifications and that all specified requirements have been met.
The qualification describes, executes and finally evaluates all the activities
necessary for this. Various standard functionalities of SIMATIC PCS 7 can be used
as support in qualification during IQ and OQ.
Note
The asset management of SIMATIC PCS 7 can be used in support to verify that
the hardware used matches the Design Specifications. A visual inspection of the
field device can be performed at the same time.
Note
The hardware configuration (HW Config) can be printed out and used to verify
qualification (IQ/OQ) of the installed hardware components. A visual check of the
installed hardware can be made at the same time. The hardware used must
match the switching cabinet documentation.
Note
The SIMATIC NetPro configuration can be printed out and used to verify
qualification (IQ/OQ) of the configured network structure. A visual check of the
configured network structure can be made at the same time.
Note
The PC pass can be printed out and used to verify qualification (IQ/OQ) of the PC
hardware used. A visual check can be performed at the same time.
In the qualification of the standard software used, checks are necessary to ensure
that the requirements defined in the Software Design Specification were
implemented. This includes:
• Operating system
• SIMATIC IT server, SIMATIC PCS 7 standard basic packages (OS server, OS
client, CAS, Engineering system, BATCH server, BATCH client etc.)
• SIMATIC standard options (SIMATIC PDM, SIMATIC Logon, SFC Visualization
etc.)
• Standard libraries
The installed licenses can be printed and used as documentation for the
qualification (IQ/OQ). For more information, refer to Section 5.3.3 Installed
Authorizations of SIMATIC PCS 7.
When SIMATIC PCS 7 is installed, the current status of the installed system
programs is saved in the "citamis.str" file. Reinstallations are also documented.
The "citamis.str" file is located in the WINNT folder. The following screenshot
shows an excerpt of the "citamis.str" file.
The file is structured so that the product name is recorded first. This is followed by
the version, the time, and the date stamp of the installation. The ----> symbol
means that the installation was completed successfully. If this symbol is missing,
installation was not completed successfully and must be repeated.
In the qualification of application software, checks are necessary to ensure that the
requirements defined in the Software Design Specification were implemented. Test
descriptions must be agreed with the user (for example for FAT/SAT) and
generated. These test descriptions must be created individually to meet the
software design stipulations.
As a minimum, the following must be checked and tested and can be used as a
reference for the qualification:
• Checking the name of the application software
• Checking the plant hierarchy (process cell, unit, equipment module, single
control element etc.)
• Software module test (typical test)
• Checking communication with other nodes (third-party controllers, MES
systems etc.)
• Checking all inputs and outputs
• Checking all control modules (control module level)
• Checking all equipment phases and equipment operations (equipment phase)
• Checking the relationships between modes (MANUAL/AUTOMATIC changes,
interlocks, start, running, held, aborting, completed, etc.)
• Checking the process tag names
• Checking the visualization structure (P&I representation)
• Checking the operator input philosophy (access control, group permissions,
user rights)
• Checking archiving concepts (short-term archives, long-term archives)
• Checking the message concept
• Checking trends, graphs
• Checking time synchronization
Note
! When using time signals (GPS or DCF77) with automatic daylight-saving /
standard time adjustment, the automatic daylight saving / standard time
adjustment must also be activated in the operating system of the process control
computer so that all messages are archived with the correct time stamps. This
adjustment must be activated in the Control Panel > Date/Time > Time Zone tab.
Hardware Components
Special solutions are required to interface hardware components that do not exist
in the SIMATIC hardware manager. These components can be integrated using
specially created device master data (GSD). Examples of the integration of these
hardware components include:
• Integration of weighing modules (SIWAREX)
• Integration of frequency converters for drives (master drives, micromaster etc.)
• Integration of user-specific field devices
To keep the validation effort to a minimum, tested and described hardware
components from the PCS 7 Add-on catalog should be given preference.
Software Packages
For the configuration phase, a variety of blocks are available in the PCS 7 standard
libraries. If additional blocks are necessary to configure special processes or
functions, whenever possible, the block libraries (function blocks FBs, functions
FCs and data blocks DBs) from the PCS 7 Add-on catalog should be used.
Compared with user-created blocks, these significantly reduce the validation effort.
The PCS 7 block libraries for technological functions are examples of software
packages of the PCS 7 Add-on catalog. These blocks cover a wide spectrum and
were developed specially for the requirements of the pharmaceutical and chemical
branches. Among other things, the block library provides functions for controlling
valves, motors and closed-loop controllers.
Note
! The "SIMATIC PCS 7 Add-ons for the Process Control System SIMATIC PCS 7"
catalog, contains solutions for various areas of application such as the
pharmaceutical industry. If special solutions are required that cannot be handled
by these functions, you will find addresses of persons to contact in the catalog.
The scope of validation of SIMATIC PCS 7 add-on products in terms of validation
stability must be checked and specified in cooperation with the system user.
Access Protection
Access protection involves the enabling or disabling of certain functions for the
user at the operator stations of the process control system.
Audit trail
The audit trail is a system control mechanism that monitors access to data. Every
access must be documented.
Block
Blocks are separate parts of a user program that are distinguished by their
function, their structure or purpose.
CFC operates with "off the peg" block types that can be inserted in a CFC chart.
When you insert the block, an instance of the block type is created. These block
instances and their graphic representation are blocks in the sense of CFC.
Bus
A path for electrical systems allowing the exchange of data and control information
between various components of a computer architecture.
Bus system
Generic term for hardware components and the transmission specification for
buses.
Chart
Software object in which continuous automation functions can be created with the
CFC configuration tool or sequential control systems with SFC.
CFC
Continuous Function Chart.
1. Continuous function chart (CFC chart)with the graphic interconnection of
technological functions (blocks).
A software package (CFC editor) for plant-oriented, graphic configuration of an
automation task. Using CFC, ready-made blocks are put together to form an entire
software structure (CFC chart).
CFR
Code of Federal Regulations. The Code of Federal Regulations is the statute book
of the United States of America. Title 21 (abbreviated to 21 CFR) deals in particular
with the regulations for the branches foodstuffs, drugs, and cosmetics.
21 CFR Part 11 that deals with electronic records and electronic signatures is
particularly important for process control engineering.
Cycle time
The cycle time is the time that the operating system requires to execute the
program once; in other words, one OB 1 run through – and all the interrupting
program sections and system activities.
Component View
Device-oriented view in the SIMATIC Manager. The project is displayed with its
components (station, module, program ...); alternative to the plant view.
CPU
Central Processing Unit - Module in a programmable controller or automation
system with control and arithmetic unit, memory and operating system. The user
programs are stored and executed in the central processing unit.
DCF 77
Time transmitter in Frankfurt/Mainflingen. This provides the highly accurate official
time for the Federal Republic of Germany based on a cesium clock.
Electronic records
Electronic records are recordings that are stored in electronic form.
Electronic signature
Electronic signatures are computer-generated characters or strings that count as
the legal equivalent of a handwritten signature.
ES
Engineering Station. Station for configuring an automation process.
ET 200M
This is a modular I/O system for single-tier configuration with the degree of
protection IP 20. The ET 200M can be extended with the signal, function and
communication modules of the S7-300 programmable controller. Communication
between ET 200M and the AS is over PROFIBUS DP.
Faceplate
A software block written in Visual Basic or Visual C that allows a block instance to
be controlled and monitored during run-time on an operator station.
FAT
Factory Acceptance Test. The factory acceptance test is an initial verification of the
automation system at the system provider's premises . The test is carried out prior
to commissioning so that bugs can be fixed before starting the installation.
FDA
Food and Drug Administration. The Food and Drug Administration (FDA) is the
organization responsible for regulations regarding food and medicines in the United
States of America.
Fault-tolerant connection
An AS (S7-400H) in which all the essential components exist twice. If one of the
subsystems fails (for example a component failure) the other takes over
automation of the plant without any interruption.
Function (FC)
According to IEC 1131-3, functions are logic blocks without memory. A function
allows parameters to be passed on in the user program. Functions are ideally
suited for programming commonly occurring complex functions, for example
calculations. Note: As there is no memory available, the calculated values must be
processed immediately following the FC call.
GAMP
Good Automated Manufacturing Practice. The GAMP 4 guideline for validation of
automated systems provides instructions and templates to help and support
companies from the pharmaceutical, biotechnical and medical equipment
industries to set up qualified or validated automation systems.
GMP
Good Manufacturing Practice Good manufacturing practice ensures that products
are produced and tested according to consistent quality standards.
GPS
Global Positioning System – satellite system for precise localization of positions on
the earth. GPS satellites orbit the earth at a height of approximately 20.000 km in
different orbits. Each satellite has a highly accurate atomic clock.
Hot Restart
When an S7 CPU starts up ( for example after changing the mode selector from
STOP to RUN or when the power supply is turned ON), before cyclic program
execution (OB1) is started either the organization block OB 100 ( warm restart) or
organization block OB 101 (hot restart, only on the S7-400) or OB102 (cold
restart) is executed (( Startup of an S7-CPU). In a warm restart the process image
of the inputs in read in and execution of the STEP 7 user program is continued at
the point at which it was last stopped (STOP, power down ).
The "hot restart" is only possible when the CPU is battery-backed.
Note: All data areas (timers, counters, memory bits, data blocks) and their contents
are retained.
I/O
Input and output signals of the controller.
Interconnection
(CFC) Connection between an interface I/O and another element. The value of an
interconnected input is fetched from the other end of the interconnection during
runtime.
IQ
Installation Qualification. The purpose of an installation qualification (IQ) is to verify
the correct installation of an automation system.
Library
A folder for objects that can be used more than once and that is not project-related.
Blocks are made available according to certain criteria (block families, alphabetical
arrangement etc.) in block libraries. Different block libraries are used depending on
the target system or particular situation.
Lifebeat Monitoring
Program belonging to the run-time system (operator station) for monitoring the
automation systems, OS servers and OS clients connected to an OS server. The
connected systems are visualized in a plant picture.
Messages
A message system is used for the chronological signaling and archiving of sporadic
events occurring in the process at a central location. The cause of a message can
be an event or a message frame.
In general, a distinction is made between operating messages, fault messages,
and system messages. Operating messages are used to indicate a status in the
process. Fault messages are used to indicate a problem in the process. System
messages are used to indicate error messages from other applications.
In the message system (Alarm Logging), messages that behave in a similar way
(acknowledgment philosophy, color scheme for message states) can be grouped
together in message classes and message types.
MOD
Magneto Optical Disc, storage medium for data archiving of the process control
system
Model
A model consists of hierarchy folders with CFC/SFC charts, pictures, reports, and
additional documents from which any number of replicas can be created.
Multiproject
Folder for all projects of an automation solution. Cross-project functions can be
used in projects that are part of a multiproject.
NAMUR
NAMUR is the process control engineering association of the chemical and
pharmaceutical industry. It is an organization of users in process control
engineering. Manufacturers of process control technology are not represented in
NAMUR.
NAMUR recommendations
The NAMUR recommendations and work sheets are reports of experience and
working documents that the NAMUR association for process control engineering in
the chemical and pharmaceutical industry prepares for its members.
Operating message
Following a change made to a parameter on the operating station, the parameter,
the old value, the new value, and, if applicable, the unit of the value is displayed in
a message page.
Operating System
A collective term for all functions which, in conjunction with the hardware, control
and monitor the execution of the user programs, the distribution of the operational
equipment among the individual user programs, and the maintenance of the
operating mode (for example standard operating systems Microsoft Windows, real-
time operating system M7 RMOS32).
OQ
Operational Qualification. The purpose of the operational qualification (OQ) is to
verify the correct functioning of the automation system.
OS
Operator Station. A station for controlling and monitoring the process. In PCS 7,
the WinCC software system is used for the OS with which all the process
monitoring and control functions can be implemented.
Parameters
A parameter is:
• the value of a CFC block/chart I/O.
• a variable of an S7 logic block (actual parameter, formal parameter)
P&ID
Piping and instrumentation diagram. A diagram in which the components required
for a plant and the connections between them are stipulated.
PCS
Process Control System. A process control system consists of at least one
automation system (AS) and at least one operator station (OS) networked over a
bus system.
Plant View
View in the SIMATIC manager according to technological aspects ( plant, unit,
function ...); an alternative to the component view.
PQ
Performance Qualification. The purpose of the performance qualification (PQ) is to
verify the performance of the automation system.
PROFIBUS
PROcess Field Bus – A fieldbus complying with EN 50170 Vol. 2 PROFIBUS (DIN
19245; bus system for industrial application based on PROFIBUS).
Project
A folder containing all the objects belonging to an automation solution regardless of
the number of stations, modules and how they are networked.
Replicas
During import with the Import/Export Assistant, replicas are created from the
models. Each line in an import file creates a replica in the destination project.
Among other things, a replica differs from the model (or from a copy of the model)
because it has an assignment to a model instead of to an import file.
Runtime
Process control; the operator controls and monitors the process online on the
operator station (OS).
SAT
Site Acceptance Test. The purpose of the site acceptance test is to verify the
automation system at the premises of the system user during the commissioning
phase.
SCL
High-level language complying with IEC 1131-3 and resembling Pascal for
programming complex tasks on a PLC, for example algorithms, data processing
tasks.
Script
A program written in ANSI-C for solving user tasks. Scripts run cyclically/acyclically
in the background of the OS run-time or following an event (for example mouse
click) on a picture object within a plant picture.
SFC
Sequential Function Chart. An SFC chart represents a sequential control system
that runs as an independent sequence on the programmable logic controller.
Sign-of-life monitoring
see Lifebeat Monitoring
SIMATIC BATCH
Software for automating recipe-controlled batch processes. As a functional unit,
SIMATIC BATCH and SIMATIC PCS 7 fully cover the models described in the ISA
S88.01 standard.
SIMATIC Manager
The SIMATIC Manager is the central engineering tool. With the SIMATIC Manager,
for example, you create projects and access libraries.
Source
Part of a program created with a graphic or textual editor and from which the
executable user program is produced following compilation.
Tag Logging
An editor in the control center of the OS for creating and editing trends.
Time synchronization
An editor in the control center of the OS. Time synchronization makes sure that all
the PLCs and operating stations of the bus operate with the same time of day (
time of day synchronization).
UPS
Uninterruptible Power Supply. An uninterruptible power supply (UPS) is a system
for buffering the main power supply. If there is a power outage, the power supply
remains available for a certain time. Some UPS systems also provide the option of
line voltage monitoring and therefore an output voltage free of interference.
User Administrator
Editor in the control center of the OS for creating and editing access permissions
for operator control and monitoring during runtime.
User program
The user program contains all the statements and declarations and the data
required for signal processing to control a plant or a process. The program is
assigned to a programmable module (for example, CPU, FM) and can be
structured in smaller units.
In S7, the user program on the ES consists of the symbol table, the source files,
the blocks and the charts.
2 D
21 CFR Part 11 1-9 Data display CAS 4-89
Data display StoragePlus 4-101
A Data exchange with the plant management
level 4-104
Access Protection 2-7, 4-42 Design Specification 3-16
Access protection StoragePlus 4-92 Disabling the Windows level 4-62
Access protection under Windows and
SIMATIC PCS 7 4-44
E
Account security setting 4-49
Archiving 2-12 Electronic Signature 2-9, 4-60
Archiving operating system 4-80 Engineering Station (ES) 4-15, 4-54
Audit trail 2-11 EU GMP Guideline 1-9, 1-10
Audit trail CAS 4-88
Audit trail OS 4-64 F
Audit Trail security setting in Windows 4-50
Audit trail StoragePlus 4-94 FAT 1-6
Automation system (AS) 4-15 FDA 1-9
Functional Specification 1-13, 3-15
B
G
Backing up user software 4-80
Backup 2-12 GAMP 1-9, 1-10
Backup process data 2-14
Backup StoragePlus 4-98 H
Backup user software 2-13
Hardware categorization 2-5
Batch report 4-79
Biometric systems 2-8
I
C Implementation 1-5
Import/Export Assistant 3-4, 4-31
CAS access protection 4-87
Industrial Ethernet 4-15
Central archive server 3-12, 4-82
Integration of third-party systems 4-78
Change control 1-12, 2-6
Interfaces to Process Data 3-10
Change Control during Operation 1-8
ISA-88.01 – implementation in
Change control user software 4-22
SIMATIC PCS 7 4-39
Chip card 2-8
ISA-88.01 – software model
Configuration control 2-6
SIMATIC PCS 7 4-38
Configuration identification 2-6
Configuration management 2-5, 4-17
Conformity with ISA-88.01 standard 4-37 L
Connectivity Pack 3-10 Life cycle model 1-2
Criteria for selecting hardware 3-2 Lifebeat Monitoring 4-77
Criteria for selecting software 3-3 Lifebeat Monitoring CAS 4-88
Long-term archiving 4-82