Anybus® CompactCom 40 - EtherNet/IP IIoT Secure

Server Configuration

HTTPS is configured in the file http.cfg that is present in the vfs directory. The file can be overridden by creating http.cfg in the system root.

By default the three roles are configured to have HTTPS access according to this:

Role

Description/Default Configuration

administrator

  • session timeout of 15 minutes (900 seconds)

  • full HTTPS access to web and API content

operator

  • session time out of 15 minutes (900 seconds)

  • full HTTPS access to ADI API, meaning that an operator can get and set ADI data

  • access to module and network status information

The operator can view the module and network status information, but not set any system configuration. The operator is not granted any access to the security settings.

user

  • no session timeout

  • access to module and network status information

$all

Reserved role. In order for non-authenticated users to access the login page, access is given to non-authenticated users to access images, stylesheets, some java script functionality, login and logoff pages as well as the first run page.

The default HTTPS configuration is stored in \vfs\http.cfg. It has the following content:

Content

Description

[ServerName]
WebServerName

Configures the web server name included in the HTTP header of the responses from the module.

[FileTypes]
FileType1:ContentType1
FileType2:ContentType2
...
FileTypeN:ContentTypeN

A list of file extensions and their reported content type. The default content types are listed in the table below.

[IndexPage]
\web\index.html

Path to start page that will be returned if the url is empty.

[LoginPage]
\web\login.html

Path to a web page that will be returned if login is required for access to a url.

[FirstRunPage]
\web\firstrun.html

Path to a web page that will be returned if login is required for access to a url, but no accounts are configured.

[SessionTimeout]
administrator:900
operator:900
user:0

Configures the session timeout per role (seconds).

[Access]
administrator:\web
administrator:\api

Configures the access rights for each role. It is possible to give access to specific files or folders. Access to a folder gives access to all contents of the folder and subfolders. The default configuration of the device includes the three roles mentioned here. A custom configuration may change these roles.

operator:\web\
operator:\api\adi\
operator:\api\module\status\
operator:\api\network\status\
user:\web\
user:\api\adi\status\
user:\api\module\status\
user:\api\network\status\
$all:\web\img\
$all:\web\css\
$all:\web\login.html
$all:\web\logoff.html
$all:\web\firstrun.html
$all:\web\js\csrf.js
$all:\web\js\jquery-1.9.1.js
$all:\api\security\config\addfirstaccount.json

$all is used for content that all shall have access to, including non-authenticated users.

See also...

In this section: