ABBMEGADRIVE-LCI water-cooled User manual

– Isolate drive control network (172.16.0.0) from other networks.

– Restrict drive connections to the interfaces in Table 2.

– Scan USB flash drives for viruses/malware before you connect them to the LCT.

– Route Ethernet-based bus communication (if existing) for the plant control system through a 

protected control network infrastructure that is isolated from the Internet.

– Follow the remote access gateway setup recommendations to establish a network connection 

to the ABB Ability platform.

– Restrict physical access to the drive and control network access to authorized personnel.

– Only allow control network access for drive servicing by qualified personnel.

1.7.2. PEC controller security features

The PEC controller software fulfills the minimum cyber-security requirements by using security 

features of AC 800PEC platform. The following Ethernet ports are open by default to ensure that the 

system operates properly

Table 3 – Open Ethernet ports for PEC controller software

Port Service Usage

22/tcp ssh/sftp Secure communication with AC 800PEC controller

(used by AC 800PEC Tool, LCT, Shell Terminal)

8080 / tcp http-proxy, 

gSOAP soap2.8

SOAP communication with AC 800PEC controller

8081 / tcp blackice-icecap, 

gSOAP soap2.8

SOAP communication with AC 800PEC controller

102 / tcp mms/IEC61850 MMS Server (only running with Industrial IT), IEC61850

123 / udp ntp Network Time Protocol: Synchronize computer clock times in a network 

of computers.

5002 / udp rfe/PEC Scanner For scanning controller over network (used by AC 800PEC Tool)

The AC 800PEC controller is also equipped with a serial port that provides a root shell for a user to 

directly change a password. This port must be secured and only made accessible to authorized 

persons.

IMPORTANT! Connecting the serial port to a remote terminal server to gain access the serial port 

remotely can create security risks. Exposure of the Ethernet ports, serial port or controller password 

to unauthorized persons can create significant security risk.

1.7.3. Control terminal (LCT) security features

The LCT Ethernet interface (AC 800PEC) is used for the internal exchange of drive data. 

The main security features of the LCT are:

– System files are write-protected

A few storage locations for user data and settings do not have write protection. 

– LCT regularly reboots from write-protected system storage to restore the original state and 

configuration of the LCT operating system 

– Unused ports (Ethernet and others) are disabled or blocked.

Ports and services that are required by the system are left open and are described in Table 4.

. Quality certificates and applicable standards

The following certificates and conformity declarations are available with ABB:

– ISO 9001 and ISO 14001 certificates stating that ABB Switzerland Ltd has implemented and 

maintains a management system that fulfills the requirements of the normative standards

Table 8 – Standards

Standard Title

ANSI Z535.6 American national standard for product safety information in product manuals, instructions, and 

other collateral materials

ISO 3864-2 2004 (E) - Graphical symbols – Safety colors and safety signs – Part 2: Design principles for product 

safety labels

ISO 7010 2011 (E) - Graphical symbols - Safety colours and safety signs - Registered safety sign

EN 50110 European standard code for electrical work safety

ISO 13849-1 Safety of machinery - Safety-related parts of control systems - Part 1: General principles for design, 

section 6.2.6 Category 3

IEC 60204-1 Safety of machinery - Electrical equipment of machines - Part 1: General requirements

IEC 60721-3-1 Classification of environmental conditions - Part 3-1: Classification of groups of environmental 

parameters and their severities - Storage

IEC 60721-3-2 Classification of environmental conditions - Part 3-2: Classification of groups of environmental 

parameters and their severities - Transportation and Handling

IEC 60721-3-3 Classification of environmental conditions - Part 3: Classification of groups of environmental 

parameters and their severities - Section 3: Stationary use at weather-protected locations

IEC 62477-2 Safety requirements for power electronic converter systems and equipment - Part 2: Power electronic 

converters from 1 000 V AC or 1 500 V DC up to 36 kV AC or 54 kV DC

2.3. Electrical safety

The following electrical safety instructions are based on EN 50110.

2.3.1. General safety instructions

1) Minimize hazards

2) Before energizing the drive:

• Remove all foreign objects are from the drive

• Fasten all internal and external covers securely

• Close, lock, and/or bolt all doors

• Move the release dial of the door safety switches into the locked position

3) Before working on the drive:

• Turn off, lock out, and tag out the main and auxiliary power supplies to the drive 

• De-energize the drive

• Ensure that the safety ground connections are in place

• Ensure that the appropriate personal protective equipment (PPE) is available and used when 

required

• Inform the involved personnel about the potential safety hazards