Siemens SIMATIC S7 Functional Safety Manual

Hide thumbs Also See for SIMATIC S7:

System manual (866 pages)

User manual (134 pages)

Operating instructions manual (82 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

page of 212

/ 212
Contents
Table of Contents
Bookmarks

Table of Contents

Quick Links

Need help?

Do you have a question about the SIMATIC S7 and is the answer not in the manual?

Questions and answers

Summary of Contents for Siemens SIMATIC S7

Page 1 ___________________ S7-1200 Functional Safety Manual Preface ___________________ Product overview ___________________ SIMATIC Getting started ___________________ Fail-Safe signal module (SM) applications S7-1200 Functional Safety Manual ___________________ Fail-Safe CPU and signal module (SM) installation ___________________ Fail-Safe signal module (SM) I/O configuration Manual ___________________ Fail-Safe signal module (SM) diagnostics ___________________...
Page 2 Note the following: WARNING Siemens products may only be used for the applications described in the catalog and in the relevant technical documentation. If products and components from other manufacturers are used, these must be recommended or approved by Siemens. Proper transport, storage, installation, assembly, commissioning, operation and maintenance are required to ensure that the products operate safely and without any problems.
Page 3: Preface
Preface Purpose of the manual The S7-1200 series is a line of programmable logic controllers (PLCs) that can control a variety of automation applications. Compact design, low cost, and a powerful instruction set make the S7-1200 a perfect solution for controlling a wide variety of applications. The S7-1200 models and Windows-based programming tools give you the flexibility you need to solve your automation problems.
Page 4 S7 products. Because your sales representatives are technically trained and have specific knowledge about your operations, processes, and industry, as well as the individual Siemens products that you are using, they can provide the fastest and most efficient answers to any problems you might encounter.
Page 5 The customer support entry portal (http://support.automation.siemens.com) provides a link to My Documentation Manager under mySupport. ● Siemens also provides online comprehensive support for your use of safety technology. A Safety Evaluation Tool assists you in determining required safety levels, Functional Examples guide you in your safety applications, and SITRAIN classes offer training in safety standards and products.
Page 6 Siemens recommends strongly that you regularly check for product updates. For the secure operation of Siemens products and solutions, it is necessary to take suitable preventive action (e.g. cell protection concept) and integrate each component into a holistic, state-of-the-art industrial security concept.
Page 7: Table Of Contents
Table of contents Preface ..............................3 Product overview ............................. 11 Overview ..........................11 Hardware and software components ..................13 S7-1200 Fail-Safe CPUs ......................14 1.3.1 Behavior differences between standard and fail-safe CPUs ..........15 1.3.1.1 Safety mode ..........................15 1.3.1.2 Fault reactions ........................
Page 8 Table of contents Fail-Safe signal module (SM) applications ....................65 Digital input applications ......................67 3.1.1 Selecting the digital input application ..................68 3.1.2 Applications 1 and 2: 1oo1 evaluation of a single sensor ............69 3.1.3 Applications 3 and 4: 1oo2 evaluation of a single sensor ............70 3.1.4 Applications 5 and 6: 1oo2 evaluation of independent equivalent sensors ......
Page 9 Table of contents Configuring SM 1226 F-DQ 4 x 24 VDC DQ and channel parameters ........ 111 Configuring SM 1226 F-DQ 2 x Relay DQ and channel parameters ........114 Fail-Safe signal module (SM) diagnostics ....................115 Reactions to faults ........................ 115 Fault diagnostics ........................
Page 10 Table of contents A.3.2 SM 1226 F-DI 16 x 24 VDC ....................171 A.3.2.1 Properties ..........................171 A.3.2.2 User data space ........................172 A.3.2.3 Specifications ........................172 A.3.2.4 Wiring diagrams ........................175 A.3.3 SM 1226 F-DQ 4 x 24 VDC ....................177 A.3.3.1 Properties ..........................
Page 11: Product Overview
Product overview Overview SIMATIC Safety fail-safe system The objective of safety engineering is to minimize danger to humans and the environment as much as possible through use of safety-oriented technical installations without restricting industrial production and the use of machines and chemical products any more than necessary.
Page 12 Product overview 1.1 Overview Principles of safety functions in SIMATIC Safety You implement functional safety using the hardware and firmware of the fail-safe CPUs and signal modules (SM) in conjunction with the safety program downloaded by the software (ES). The SIMATIC Safety system executes the safety function to bring the system to a safe state or maintain a safe state in case of a dangerous event.
Page 13: Hardware And Software Components
Product overview 1.2 Hardware and software components Hardware and software components S7-1200 Fail-Safe CPUs and SMs There are four fail-safe CPUs and three fail-safe signal modules (SM) in conjunction with the S7-1200 V4.1 or later release: ● CPU 1214FC DC/DC/DC ●...
Page 14: S7-1200 Fail-Safe Cpus
Product overview 1.3 S7-1200 Fail-Safe CPUs S7-1200 Fail-Safe CPUs The fail-safe CPU executes your safety program along with standard applications programs. Communication between the fail-safe CPU and the fail-safe signal modules is verified using the PROFIsafe protocol. Safety program You can create a safety program using the program editor. You can program fail-safe function blocks (FB) and functions (FC) in the Function Block Diagram (FBD) or Ladder Logic (LAD) programming languages and create fail-safe data blocks (DB).
Page 15: Behavior Differences Between Standard And Fail-Safe Cpus
Product overview 1.3 S7-1200 Fail-Safe CPUs You can exchange data between the safety program and the standard user program in the fail-safe CPU by means of bit memory or data of a standard DB. 1.3.1 Behavior differences between standard and fail-safe CPUs 1.3.1.1 Safety mode Safety mode...
Page 16: Fault Reactions
Product overview 1.3 S7-1200 Fail-Safe CPUs 1.3.1.2 Fault reactions Safe state The fail-safe concept depends on the identification of a safe state for all process variables. The value "0" (de-energized) represents this safe state for digital fail-safe signal modules (SM). This applies to both sensors and actuators. Passivation Passivation applies safe state values to the fail-safe SM or channel(s) instead of process values when the fail-safe system detects faults.
Page 17 Product overview 1.3 S7-1200 Fail-Safe CPUs Detection and response to faults SIMATIC Safety systems detect and respond to faults in several different conditions: ● Faults in the fail-safe CPU hardware and firmware ● Faults in the fail-safe user program ● PROFIsafe communication errors caused by conditions in either the fail-safe CPU or SMs ●...
Page 18: Restart Of Fail-Safe System
You cannot complete re-started FW updates from a web server or the TIA Portal. Refer to the S7-1200 Programmable Controller System Manual (http://support.automation.siemens.com/WW/view/en/91696622) for firmware update procedures. S7-1200 Functional Safety Manual Manual, 02/2015, A5E03470344-AA...
Page 19: S7-1200 Fail-Safe Signal Modules (Sm)
S7-1200 Fail-Safe signal modules (SM) 1.4.1 Overview Siemens intends for the S7-1200 fail-safe products to be used to help solve functional safety in machine applications. There are three fail-safe SMs in conjunction with the S7-1200 V4.1 or later release: ● SM 1226 F-DI 16 x 24 VDC ●...
Page 20: Sm 1226 F-Di 16 X 24 Vdc
The inputs are rated for connec- tion to 24V DC sensors/switches and 3/4-wire proximity switches (for example, BEROs: Siemens line of no-touch sensors) and have an EN61131-2 type 1 input rating. The module has two sensor supply outputs that can each power eight external sensors (inputs).
Page 21: Sm 1226 F-Dq 4 X 24 Vdc
Product overview 1.4 S7-1200 Fail-Safe signal modules (SM) You can achieve Category 4 in 1oo2 configurations if you diagnose external wiring faults or exclude them according to standards. 1.4.3 SM 1226 F-DQ 4 x 24 VDC The SM 1226 F-DQ 4 x 24 VDC is an S7- 1200 signal module (SM) for use in fail-safe applications and is suitable for solenoid valves, DC contactors, and indicator LEDs.
Page 22 Product overview 1.4 S7-1200 Fail-Safe signal modules (SM) Outputs The F-DQ DC consists of four output channels (F-DQ a.0...F-DQ a.3). You can use each output for SIL 3 applications. Each output consists of two switches: ● A P-switch connects 24V positive (L+) to the load. ●...
Page 23: Sm 1226 F-Dq 2 X Relay
Product overview 1.4 S7-1200 Fail-Safe signal modules (SM) 1.4.4 SM 1226 F-DQ 2 x Relay The SM 1226 F-DQ 2 x Relay is an S7-1200 signal module (SM) for use in fail-safe appli- cations. The F-RLY has two output channels (F-DQ a.0 and F-DQ a.1).
Page 24 Product overview 1.4 S7-1200 Fail-Safe signal modules (SM) Outputs You can use each of the two relay output channels for SIL 3 applications. Note Relay contacts of the SM 1226 F-DQ 2 x Relay are designed to Overvoltage Category III. You can use them in AC mains circuits without further overvoltage protection.
Page 25: Getting Started
Getting started Introduction to example 2.1.1 Instructive, interactive animation files The "Getting Started" chapter contains two animation files: ● "Procedure" (Page 28) shows a wiring overview of the S7-1200 Fail-Safe application example. ● "Step 13: Downloading the complete safety program to the fail-safe CPU and activating safety mode"...
Page 26: Requirements For Configuring And Programming
"SIMATIC, Industrial Software, SIMATIC Safety - Configuring and Programming, Programming and Operating Manual" (http://support.automation.siemens.com/WW/view/en/54110126/0/en). The warnings and other notes contained in that manual must be heeded at all times even if they are not repeated in this document! Serious injury and damage to machines and equipment may result if these regulations are ignored.
Page 27: Example Structure And Task Definition
Getting started 2.1 Introduction to example 2.1.3 Example structure and task definition Production cell with access protection ① Emergency stop (E-STOP) ② Laser scanner ③ Safety door ④ Control panel with start and acknowledgement pushbuttons ⑤ Conveyor motor A laser scanner monitors the entry to the production area. A safety door secures the service area.
Page 28: Procedure
Getting started 2.1 Introduction to example 2.1.4 Procedure The example in these Getting Started instructions consists of the following sections: Configuring For this example, you must configure the following S7-1200 fail-safe CPUs and SMs: ● Fail-safe CPU (CPU 1214FC or CPU 1215FC) ●...
Page 29 Getting started 2.1 Introduction to example Operating the Getting Started example This interactive graphic gives you the opportunity to become familiar with how the example functions in this Getting Started. Note Before you try to operate the example, ensure that you have loaded the required Adobe software (Page 26) on your computer.
Page 30: Configuring
The installation and wiring of the S7-1200 fail-safe CPU is described in the S7-1200 Programmable Controller System Manual (http://support.automation.siemens.com/WW/view/en/91696622). Configuring the Hardware In STEP 7 Safety, you configure the following S7-1200 components: ● Fail-safe CPU ●...
Page 31: Step 1: Configuring The S7-1200 Cpu 1214Fc Or Cpu 1215Fc
Getting started 2.2 Configuring 2.2.2 Step 1: Configuring the S7-1200 CPU 1214FC or CPU 1215FC In this step, you create a new project, add a fail-safe CPU, and assign parameters. Click the "Play" button to start the animation file. Click the other control elements to rewind, pause, go back, or go forward.
Page 32 Getting started 2.2 Configuring 3. Locate the "Fail-safe: F-parameters" area. You can change the following parameters or accept the default setting: – "Basis for PROFIsafe addresses": Any value is suitable for a stand-alone fail-safe S7- 1200 CPU with local fail-safe SMs. –...
Page 33 Getting started 2.2 Configuring Access protection for the fail-safe CPU The fail-safe CPU provides five levels of security for restricting access to specific functions. When you configure the security level and password for a fail-safe CPU, you limit the functions and memory areas that can be accessed without entering a password. Each level allows certain functions to be accessible without a password.
Page 34: Step 2: Configuring Fail-Safe Cpu Standard Digital Inputs For User Acknowledgement, Feedback Circuit, And Start Pushbutton
Getting started 2.2 Configuring 2.2.3 Step 2: Configuring fail-safe CPU standard digital inputs for user acknowledgement, feedback circuit, and start pushbutton In this step, you assign parameters of fail-safe CPU standard digital inputs for the non-fail- safe signals (user acknowledgement, feedback loop, and start pushbutton). Procedure 1.
Page 35: Step 3: Configuring An Sm1226 F-Di 16 X 24 Vdc For Connecting An Emergency Stop Switch, Position Switches, And The Laser Scanner
Getting started 2.2 Configuring 2.2.4 Step 3: Configuring an SM1226 F-DI 16 x 24 VDC for connecting an emergency stop switch, position switches, and the laser scanner In this step, you configure an F-DI for connecting an emergency stop switch, the position switches for monitoring a safety door, and the laser scanner for monitoring the entry area.
Page 36 Getting started 2.2 Configuring 3. Return to the "Device view" and select the F-DI 8/16x24VDC_1. Under the "Properties" tab, select the "IO tags" tab. This action displays the "Process value" and "Quality" bits for the fail-safe module. Here, you can define tags for each channel: Each Process value bit has an associated Quality bit that reports whether the corresponding process value is valid or passivated.
Page 37 Getting started 2.2 Configuring To check the Process value bits and the Quality bits, you must know where these bits are mapped in the module. For an F-DI 8/16x24VDC_1, the first two bytes of the input (I) image register are the Process value bits, and the next two bytes of the input (I) image register are the Quality bits.
Page 38 (network and CPU-wide). Refer to the "SIMATIC, Industrial Software, SIMATIC Safety - Configuring and Programming, Programming and Operating Manual" (http://support.automation.siemens.com/WW/view/en/54110126/0/en) for procedures to set and verify unique PROFIsafe addresses in networked systems. Leave the settings unchanged for the F-parameters for this example.
Page 39 Getting started 2.2 Configuring 6. In this example, a two-channel emergency stop switch (emergency stop) is connected to channels 0 and 8. In our example, these channels are wired to Process value bits I8.0 and I9.0. The first of the two inputs, I8.0, conveys the signal in this 1oo2 configuration. Expand "DI parameters"...
Page 40 Getting started 2.2 Configuring 7. In this example, the laser scanner for monitoring the accessible entry area is connected to channels 1 and 9. Make the settings as shown in the following figure: S7-1200 Functional Safety Manual Manual, 02/2015, A5E03470344-AA...
Page 41 Getting started 2.2 Configuring 8. In this example, the position switches for monitoring a two-channel safety door are connected to channels 2 and 3. Make the settings as shown in the following figure: S7-1200 Functional Safety Manual Manual, 02/2015, A5E03470344-AA...
Page 42 Getting started 2.2 Configuring 9. Disable the following unused DI channels by clearing the "Activated" check box: • 10 • • 11 • • 4 • 12 • 5 • 13 • 6 • 14 • 7 • 15 Result The configuration of the F-DI is now complete.
Page 43: Step 4: Configuring An Sm 1226 F-Dq 4 X 24 Vdc For Connecting A Motor
Getting started 2.2 Configuring 2.2.5 Step 4: Configuring an SM 1226 F-DQ 4 x 24 VDC for connecting a motor In this step, you configure an F-DQ DC for indirect connection of a motor to channel 0, using 2 contactors. Procedure 1.
Page 44 (network and CPU-wide). Refer to the "SIMATIC, Industrial Software, SIMATIC Safety - Configuring and Programming, Programming and Operating Manual" (http://support.automation.siemens.com/WW/view/en/54110126/0/en) for procedures to set and verify unique PROFIsafe addresses in networked systems. Leave the settings unchanged for the F-parameters for this example.
Page 45: Summary: Configuring The Hardware
Getting started 2.2 Configuring 5. Select the "DQ parameters" area. Here, you can change channel-specific parameters or apply the default settings. Enter the settings for the example as shown in the following figure: 6. Disable the unused DQ channels 1, 2, and 3 by clearing the "Activated" check box. Result The configuration of the F-DQ DC is now complete.
Page 46: Programming
Getting started 2.3 Programming Programming 2.3.1 Introduction In this example, a fail-safe function block (F-FB) will be programmed with a safety door function, an emergency stop function (safety circuit for switch-off in case of emergency stop, open safety door, or someone entering the protected area monitored by the laser scanner), a feedback circuit (as protection against reclosing in case of faulty load), a user acknowledgement for reintegration, and indirect switching of a motor using two contactors.
Page 47 (see the "Programming" chapter, "Overview of programming" section of the SIMATIC, Industrial Software, SIMATIC Safety - Configuring and Programming, Programming and Operating Manual (http://support.automation.siemens.com/WW/view/en/54110126/0/en)). The FBD programming language is used in this example. Note "...
Page 48: Step 5: Specifying The Centralized Settings For The Safety Program
Getting started 2.3 Programming 2.3.2 Step 5: Specifying the centralized settings for the safety program When the fail-safe CPU is inserted, an F-runtime group and the associated main safety block are created by default and assigned to the CPU. An F-runtime group consists of an F-OB (cyclic interrupt OB) that calls a main safety block FB.
Page 49 For additional information on the Safety Administration editor, refer to the SIMATIC, Industrial Software, SIMATIC Safety - Configuring and Programming, Programming and Operating Manual (http://support.automation.siemens.com/WW/view/en/54110126/0/en). Numbering ranges of fail-safe system blocks When the safety program is compiled, F-blocks are automatically added in order to generate an executable safety program.
Page 50 Getting started 2.3 Programming Specifying inputs and outputs for the safety program After configuring the hardware as described in Steps 1 to 4, the following fail-safe CPU and SM DBs are available for programming the example: Configured hardware Start input Symbolic name address Fail-safe CPU standard digital inputs CPU...
Page 51: Step 6: Creating An F-Fb
Getting started 2.3 Programming 2.3.3 Step 6: Creating an F-FB In this step, you create the F-FB where you will program the safety functions for this example. Click the "Play" button to start the animation file. Click the other control elements to rewind, pause, go back, or go forward.
Page 52: Step 7: Programming The Safety Door Function
Getting started 2.3 Programming 2.3.4 Step 7: Programming the safety door function In this step, you program the safety door function for this example. The safety door secures the application's service area. Opening the safety door results in a stop or shutdown of the production cell similar to an emergency stop. Click the "Play"...
Page 53 Getting started 2.3 Programming Parameter assignment of the "SFDOOR" instruction Inputs/outputs Parameter Data type Description Default "Safety_Door_SW1" (I8.2) Bool Input 1 FALSE "Safety_Door_SW2" (I8.3) Bool Input 2 FALSE "Quality_In1" (I10.2) QBAD_ IN1 Bool Quality bit signal for input IN1 TRUE "Quality_In2"...
Page 54: Step 8: Programming The Emergency Stop Function
Getting started 2.3 Programming 2.3.5 Step 8: Programming the emergency stop function In this step, you program the emergency stop function for this example. Used for emergencies only, the emergency stop button is a safety measure to immediately shut down all machine functions. An emergency stop button must be highly visible in color and shape and must be easy to operate in emergency situations.
Page 55 Getting started 2.3 Programming 4. Insert a third input to the "AND logic operation" instruction and initialize the inputs of the instruction with parameters as described in the table below. 5. Insert the "ESTOP1" instruction from the "Safety functions" subfolder of the "Instructions" task card.
Page 56: Step 9: Programming The Feedback Monitoring
Getting started 2.3 Programming 2.3.6 Step 9: Programming the feedback monitoring In this step, you program the feedback circuit monitoring for this example. The feedback circuit provides protection against restarting normal operations while unsafe conditions still exist. The system can only be restarted when the emergency stop is cancelled, the safety door is closed, and the laser scanner detects no one in the protected area.
Page 57 Getting started 2.3 Programming Parameter assignment of the "AND logic operation" instruction Inputs Parameter Data type Description Default "Start" (I0.2) Input 1 Bool TRUE = Switch on output FALSE #EN_Safety Input 2 Bool Enable safety circuit FALSE Parameter assignment of the "FDBACK" instruction Inputs/outputs Parameter Data type...
Page 58: Step 10: Programming The User Acknowledgment For Reintegration Of The Fail-Safe Sm
Getting started 2.3 Programming 2.3.7 Step 10: Programming the user acknowledgment for reintegration of the fail- safe SM In this step, you program the user acknowledgement for reintegration of the fail-safe signal module I/O for this example. The user must acknowledge that conditions have returned to a safe state before production operations can be restarted.
Page 59: Step 11: Programming Of The Main Safety Block
Getting started 2.3 Programming Parameter assignment of the "ACK_GL" instruction Input Parameter Data type Description Default "Acknowledge" (I0.0) ACK_GLOB Bool Acknowledgement for reintegration FALSE 2.3.8 Step 11: Programming of the main safety block In this step, you program the main safety block for this example. Click the "Play"...
Page 60: Step 12: Compiling The Safety Program
Getting started 2.3 Programming 2.3.9 Step 12: Compiling the safety program In this step, you compile the safety program and the hardware configuration. A consistency check is performed on the execution-relevant F-blocks when the safety program is compiled, that is, the safety program is checked for errors. Any error messages are output in an error window.
Page 61: Step 13: Downloading The Complete Safety Program To The Fail-Safe Cpu And Activating Safety Mode
Getting started 2.3 Programming 2.3.10 Step 13: Downloading the complete safety program to the fail-safe CPU and activating safety mode In this step, you download the hardware configuration and the safety program to the fail-safe CPU. Click the "Play" button to start the animation file. Click the other control elements to rewind, pause, go back, or go forward.
Page 62 "Safety Mode Status". Note Once a safety program has been created, you must perform a full function test according to your automation task (see SIMATIC Safety Configuring and Programming Manual (http://support.automation.siemens.com/WW/view/en/54110126/0/en)). S7-1200 Functional Safety Manual Manual, 02/2015, A5E03470344-AA...
Page 63 Getting started 2.3 Programming Result of programming You have now finished creating the safety program according to the task definition of the example. In this interactive graphic, you can become familiar with the functions you just programmed. Click the "Play" button to start the animation file and the control elements to operate the example.
Page 64 Getting started 2.3 Programming S7-1200 Functional Safety Manual Manual, 02/2015, A5E03470344-AA...
Page 65: Fail-Safe Signal Module (Sm) Applications
Fail-Safe signal module (SM) applications This chapter presents typical application examples for connection of functional safety input and output channels, with a statement of the safety performance (SIL/Category/PL) that is possible for each example. The PLC system typically contributes only a small part of the total probability of dangerous failure.
Page 66 Fail-Safe signal module (SM) applications ● The SM 1226 F-DQ 4 x 24 VDC provides ON test pulses to OFF switches, and OFF test pulses to ON switches, to test that the P and M switches respond. The OFF test pulse duration can be as long as your configured "Maximum readback time".
Page 67: Digital Input Applications
Fail-Safe signal module (SM) applications 3.1 Digital input applications Digital input applications You should consider the application modes presented here along with the features of the SM 1226 F-DI 16 x 24VDC as described in the overview. Refer to "SM 1226 F-DI 16 x 24 VDC" (Page 20).
Page 68: Selecting The Digital Input Application
Fail-Safe signal module (SM) applications 3.1 Digital input applications 3.1.1 Selecting the digital input application Input architectures for achieving Safety Integrity Level (SIL)/Category/Performance Level (PL) Table 3- 1 Safety Integrity Level (SIL)/Category/Performance Level (PL) requirements Application Sensor Sensor eval- Channel Type of sensor Achievable supply...
Page 69: Applications 1 And 2: 1Oo1 Evaluation Of A Single Sensor
Fail-Safe signal module (SM) applications 3.1 Digital input applications 3.1.2 Applications 1 and 2: 1oo1 evaluation of a single sensor If short circuit detection is used, VS1 must be used with a.x inputs and VS2 must be used with b.x inputs. Figure 3-1 F-DI Application mode 1: Internal sensor supply Figure 3-2...
Page 70: Applications 3 And 4: 1Oo2 Evaluation Of A Single Sensor
Fail-Safe signal module (SM) applications 3.1 Digital input applications 3.1.3 Applications 3 and 4: 1oo2 evaluation of a single sensor You cannot configure short-circuit detection for this type of connection. Vs1 testing causes F- DI b.x inputs to fail. Figure 3-3 F-DI Application mode 3: Internal sensor supply Figure 3-4 F-DI Application mode 4: External sensor supply...
Page 71: Applications 5 And 6: 1Oo2 Evaluation Of Independent Equivalent Sensors
Fail-Safe signal module (SM) applications 3.1 Digital input applications 3.1.4 Applications 5 and 6: 1oo2 evaluation of independent equivalent sensors S0 and S8 can be dual contacts of a single sensor. Figure 3-5 F-DI Application mode 5: Internal sensor supply Figure 3-6 F-DI Application mode 6: External sensor supply S7-1200 Functional Safety Manual...
Page 72: Applications 7 And 8: 1Oo2 Evaluation Of 3-Wire, Non-Equivalent Sensor Circuit
Fail-Safe signal module (SM) applications 3.1 Digital input applications 3.1.5 Applications 7 and 8: 1oo2 evaluation of 3-wire, non-equivalent sensor circuit In non-equivalent mode, short-circuit testing can be enabled on a 3-wire circuit. The module expects that the logic "0" circuit will not change with the sensor dark test. Figure 3-7 F-DI Application mode 7: Internal sensor supply Figure 3-8...
Page 73: Applications 9 And 10: 1Oo2 Evaluation Of 4-Wire Non-Equivalent Sensor Circuit
Fail-Safe signal module (SM) applications 3.1 Digital input applications 3.1.6 Applications 9 and 10: 1oo2 evaluation of 4-wire non-equivalent sensor circuit S0 and S8 can be dual contacts of a single sensor. Figure 3-9 F-DI Application mode 9: Internal sensor supply Figure 3-10 F-DI Application mode 10: External sensor supply S7-1200 Functional Safety Manual...
Page 74: Digital Output Applications
To reach Category 4, external contactors must be SIL-rated with sense contacts. You must read the sense contacts back and confirm the external relay response in your program. Siemens recommends using an F-DI input for sense contact and other safety diagnostic inputs.
Page 75: Selecting The Digital Output Application
Fail-Safe signal module (SM) applications 3.2 Digital output applications 3.2.1 Selecting the digital output application Application Module Description Directly-connected SIL-rated actuator External contactors: Separate P and M controlled contactors External contactors: Parallel connected between P and M External contactors: Separate output channels for each contac- Relay External contactors: Separate circuits of one output channel Relay...
Page 76: Application 2: Wiring External Contactors: Separate P And M Controlled Contactors
Fail-Safe signal module (SM) applications 3.2 Digital output applications 3.2.3 Application 2: Wiring external contactors: Separate P and M controlled contactors A short-circuit between the P and the M output can immediately lead to dangerous failure. You must prevent this failure mode by proper separation and protection of conductors. 3.2.4 Application 3: Wiring external contactors: Parallel connected between P and M S7-1200 Functional Safety Manual...
Page 77: Application 4: Wiring External Contactors: Separate P And M Output Channels For Each Contactor
Fail-Safe signal module (SM) applications 3.2 Digital output applications 3.2.5 Application 4: Wiring external contactors: Separate P and M output channels for each contactor 3.2.6 Application 5: Separate circuits of a relay channel controlling external contactors Redundant external relays or contactors are controlled by independent electrical circuits that are switched as a single process variable channel.
Page 78: Application 6: Wiring A Directly-Connected Sil-Rated Actuator
Fail-Safe signal module (SM) applications 3.2 Digital output applications 3.2.7 Application 6: Wiring a directly-connected SIL-rated actuator A short-circuit from 1L to A or equivalent fault can lead immediately to a dangerous failure. You must prevent this failure mode by proper separationand protection of conductors. ①...
Page 79: Fail-Safe Cpu And Signal Module (Sm) Installation
Fail-Safe CPU and signal module (SM) installation S7-1200 Fail-Safe modules installation and removal 4.1.1 Mounting dimensions for S7-1200 Fail-Safe modules S7-1200 Functional Safety Manual Manual, 02/2015, A5E03470344-AA...
Page 80: Guidelines For Installing S7-1200 Fail-Safe Devices
The S7-1200 fail-safe CPUs do not support PROFIBUS or PROFINET distributed fail-safe I/O. Electrical equipment standards classify the SIMATIC S7-1200 system as Open Equipment. You must install the S7-1200 in a housing, cabinet, or electric control room. You should limit entry to the housing, cabinet, or electric control room to authorized personnel.
Page 81 Fail-Safe CPU and signal module (SM) installation 4.1 S7-1200 Fail-Safe modules installation and removal If you locate the PLC in an area where conductive contamination may be present, the PLC must be protected by an enclosure with appropriate protection rating. IP54 is one rating that is generally used for electronic equipment enclosures in dirty environments and may be appropriate for your application.
Page 82 Fail-Safe CPU and signal module (SM) installation 4.1 S7-1200 Fail-Safe modules installation and removal When planning your layout for the S7-1200 system, allow enough clearance for the wiring and communications cable connections. ① ③ Side view Vertical installation ② ④ Horizontal installation Clearance area S7-1200 Functional Safety Manual...
Page 83: Installation And Removal Safety Rules
Fail-Safe CPU and signal module (SM) installation 4.1 S7-1200 Fail-Safe modules installation and removal 4.1.3 Installation and removal safety rules Installing and removing the S7-1200 devices The CPU can be easily installed on a standard DIN rail or on a panel. DIN rail clips are provided to secure the device on the DIN rail.
Page 84 Fail-Safe CPU and signal module (SM) installation 4.1 S7-1200 Fail-Safe modules installation and removal Always ensure that whenever you replace or install an S7-1200 device you use the correct module or equivalent device. WARNING Incorrect installation of an S7-1200 module may cause the program in the S7-1200 to function unpredictably.
Page 85: Installing And Removing An S7-1200 Fc Cpu
Fail-Safe CPU and signal module (SM) installation 4.1 S7-1200 Fail-Safe modules installation and removal 4.1.4 Installing and removing an S7-1200 FC CPU You can install the CPU on a panel or on a DIN rail. Note Attach any communication modules to the CPU and install the assembly as a unit. Install signal modules separately after the CPU has been installed.
Page 86 Fail-Safe CPU and signal module (SM) installation 4.1 S7-1200 Fail-Safe modules installation and removal Table 4- 1 Installing the CPU on a DIN rail Task Procedure 1. Install the DIN rail. Secure the rail to the mounting panel every 75 mm. 2.
Page 87: Installing And Removing A Signal Module (Sm)
Fail-Safe CPU and signal module (SM) installation 4.1 S7-1200 Fail-Safe modules installation and removal 4.1.5 Installing and removing a signal module (SM) Table 4- 3 Installing an SM Task Procedure Install your SM after installing the CPU. 1. Ensure that the CPU and all S7-1200 equipment are discon- nected from electrical power.
Page 88 Fail-Safe CPU and signal module (SM) installation 4.1 S7-1200 Fail-Safe modules installation and removal Table 4- 4 Removing an SM Task Procedure You can remove any SM without removing the CPU or other SMs in place. 1. Ensure that the CPU and all S7-1200 equipment are disconnected from electri- cal power.
Page 89: Removing And Reinstalling The S7-1200 Terminal Block Connector
Fail-Safe CPU and signal module (SM) installation 4.1 S7-1200 Fail-Safe modules installation and removal 4.1.6 Removing and reinstalling the S7-1200 terminal block connector CPUs, signal boards (SB) and signal modules (SM) have removable connectors to make wiring easy. Table 4- 5 Removing terminal blocks (CPU example) Task Procedure...
Page 90: Fail-Safe System Electrical Design Rules
Fail-Safe CPU and signal module (SM) installation 4.2 Fail-Safe system electrical design rules Fail-Safe system electrical design rules 4.2.1 Safe functional extra low voltage requirement (power supplies and other system components) WARNING Fail-safe modules must be operated with safe functional extra-low voltage (SELV, PELV) power sources.
Page 91: Power Budget
Fail-Safe CPU and signal module (SM) installation 4.2 Fail-Safe system electrical design rules WARNING All power supply and fail-safe signal module circuits must be connected together to a common voltage reference or must be isolated SELV circuits. The power supply M terminals on the fail-safe CPU and the fail-safe SMs must be connected together or isolated as SELV.
Page 92 Fail-Safe CPU and signal module (SM) installation 4.2 Fail-Safe system electrical design rules Refer to the technical specifications for information about power input requirements (CPUs, SMs, SBs, and CMs) and CPU power output limits (5 VDC and 24 VDC). Refer to the "Calculating a power budget" (Page 94) to determine CPU power output capability.
Page 93 Fail-Safe CPU and signal module (SM) installation 4.2 Fail-Safe system electrical design rules Some of the 24 VDC power inputs in an S7-1200 system are interconnected, with a common logic circuit connecting multiple M terminals. For example, the following circuits are interconnected when designated as "not isolated"...
Page 94: Calculating A Sample Power Requirement
Fail-Safe CPU and signal module (SM) installation 4.2 Fail-Safe system electrical design rules 4.2.2.2 Calculating a sample power requirement CPU power budget calculation for example system The following example shows the power requirements for a system that includes: Quantity Module Module type CPU 1214FC DC/DC/Relay Fail-safe CPU with 14 standard (not fail-safe) digital inputs and...
Page 95 Fail-Safe CPU and signal module (SM) installation 4.2 Fail-Safe system electrical design rules Table 4- 7 Sample power budget 5 VDC distributed by 24 VDC distributed by connec- 24 VDC supplied by connection to internal bus when tion to fail-safe CPU terminals external power supply (separate modules are installed L+ and M, (identified by arrow...
Page 96: Calculating Your Power Requirement
(SM 1226 F-DI 16 x 24 VDC (Page 172), SM 1226 F- DQ 4 x 24 VDC (Page 178), or SM 1226 F-DQ 2 x Relay (Page 185)). Refer to the technical specifications in the S7-1200 Programmable Controller System Manual (http://support.automation.siemens.com/WW/view/en/91696622) for details about standard S7-1200 modules. Table 4- 8...
Page 97: Fail-Safe Module Electrical Characteristics And Terminal Assignments
Fail-Safe CPU and signal module (SM) installation 4.2 Fail-Safe system electrical design rules 4.2.3 Fail-Safe module electrical characteristics and terminal assignments Refer to the respective technical specifications chapter for details about electrical characteristics and terminal assignments. CPU 1214FC CPU1215FC Specifications (Page 149) Specifications (Page 160) Wiring diagram (Page 156) Wiring diagram (Page 168)
Page 98: Control System Wiring Guidelines
Fail-Safe CPU and signal module (SM) installation 4.3 Control system wiring guidelines Control system wiring guidelines 4.3.1 Guidelines for grounding and wiring Proper grounding and wiring of all electrical equipment is important to provide electrical noise protection for your application and the S7-1200. Refer to the technical specifications (Page 132) for the S7-1200 wiring diagrams.
Page 99: Grounding An S7-1200 System
Fail-Safe CPU and signal module (SM) installation 4.3 Control system wiring guidelines You must evaluate every control point for the threat level and consequences of failure. Your installation can require safeguards that are independent of the S7-1200 to achieve an appropriate level of risk for personal injury or equipment damage.
Page 100: Wiring An S7-1200 System
Fail-Safe CPU and signal module (SM) installation 4.3 Control system wiring guidelines 4.3.3 Wiring an S7-1200 system Guidelines for wiring the S7-1200 system When designing the wiring for your S7-1200, provide a single disconnect switch that simultaneously removes power from the fail-safe CPU power supply, from all input circuits, and from all output circuits.
Page 101: Guidelines For Lamp Loads
Fail-Safe CPU and signal module (SM) installation 4.3 Control system wiring guidelines To help prevent unwanted current flows in your installation, the S7-1200 provides isolation boundaries at certain points. When you plan the wiring for your system, you should consider these isolation boundaries.
Page 102 Fail-Safe CPU and signal module (SM) installation 4.3 Control system wiring guidelines A well-controlled turn-off transient will have a ring frequency of no more than 10KHz, with less than 1KHz preferred. Peak voltage for AC lines should be within +/- 1200V of ground. The data sheets list voltage thresholds for the internal suppression circuits on DC outputs.
Page 103 Fail-Safe CPU and signal module (SM) installation 4.3 Control system wiring guidelines Typical suppressor circuit for relay outputs that switch AC inductive loads Ensure that the working voltage of the MOV is at least 20% greater than the nominal line voltage. Choose pulse-rated, non-inductive resistors, and capacitors recommended for pulse applications (typ- ically metal film).
Page 104: Maintenance Guidelines
Fail-Safe CPU and signal module (SM) installation 4.4 Maintenance guidelines Maintenance guidelines Each S7-1200 module and CPU is a factory-assembled unit that contains no user replaceable components or repairable components, except for removeable terminal blocks and memory cards. Maintenance of an S7-1200 system consists of the following: ●...
Page 105: Fail-Safe Signal Module (Sm) I/O Configuration
Fail-Safe signal module (SM) I/O configuration All connected fail-safe SM I/O must have their operating properties configured by the STEP 7 Safety configuration software. You have the responsibility to ensure that no unconfigured SMs are connected in a fail-safe automation system. Configuring fail-safe SM I/O properties To configure fail-safe SM I/O properties, follow these steps: 1.
Page 106: Configuring Common F-Parameters
F-monitoring time in each fail-safe SM unless you select the check box for "Manual Assignment of F- monitoring time" in that module configuration and assign a different time. Refer to the SIMATIC, Industrial Software, SIMATIC Safety - Configuring and Programming, Programming and Operating Manual (http://support.automation.siemens.com/WW/view/en/54110126/0/en) for further F-parameter information S7-1200 Functional Safety Manual Manual, 02/2015, A5E03470344-AA...
Page 107: Configuring Sm 1226 F-Di 16 X 24 Vdc Di And Channel Parameters
Fail-Safe signal module (SM) I/O configuration 5.3 Configuring SM 1226 F-DI 16 x 24 VDC DI and channel parameters Configuring SM 1226 F-DI 16 x 24 VDC DI and channel parameters Table 5- 2 SM 1226 F-DI 16 x 24 VDC DI parameters DI parameters Description Default...
Page 108: Sm 1226 F-Di 16 X 24 Vdc Channel
Fail-Safe signal module (SM) I/O configuration 5.3 Configuring SM 1226 F-DI 16 x 24 VDC DI and channel parameters Table 5- 3 SM 1226 F-DI 16 x 24 VDC channel parameters Channel parameters Description Default Options Activated Select the check box to activate the channel. Check box selected Check box: You must activate both required channels Selected...
Page 109 Fail-Safe signal module (SM) I/O configuration 5.3 Configuring SM 1226 F-DI 16 x 24 VDC DI and channel parameters Channel parameters Description Default Options Type sensor connection 1 channel: One sensor is connected to one 1 channel 1 channel • channel.
Page 110 Fail-Safe signal module (SM) I/O configuration 5.3 Configuring SM 1226 F-DI 16 x 24 VDC DI and channel parameters Note Safety program access to 1oo2 input data For 1oo2 evaluation, two paired input channels (for example, F-DI a0.0 and F-DI b0.0) are connected to one or two sensors.
Page 111: Configuring Sm 1226 F-Dq 4 X 24 Vdc Dq And Channel Parameters
Fail-Safe signal module (SM) I/O configuration 5.4 Configuring SM 1226 F-DQ 4 x 24 VDC DQ and channel parameters Configuring SM 1226 F-DQ 4 x 24 VDC DQ and channel parameters Table 5- 4 SM 1226 F-DQ 4 x 24 VDC DQ parameters DQ parameters Description Default...
Page 112: Sm 1226 F-Dq 4 X 24 Vdc Channel
Fail-Safe signal module (SM) I/O configuration 5.4 Configuring SM 1226 F-DQ 4 x 24 VDC DQ and channel parameters Table 5- 5 SM 1226 F-DQ 4 x 24 VDC channel parameters Channel parameters Description Default Options Activated Select the check box to activate the channel. Check box select- Check box: Deselect the check box and the unused...
Page 113 Fail-Safe signal module (SM) I/O configuration 5.4 Configuring SM 1226 F-DQ 4 x 24 VDC DQ and channel parameters WARNING In the presence of a single fault, the bit pattern tests can apply energy to the load for a duration up to the configured "Maximum readback time switch on test". If the load can respond dangerously within the configured readback time, it can respond to bit pattern tests in the presence of a single fault, resulting in death or serious injury to personnel and/or property damage.
Page 114: Configuring Sm 1226 F-Dq 2 X Relay Dq And Channel Parameters
Fail-Safe signal module (SM) I/O configuration 5.5 Configuring SM 1226 F-DQ 2 x Relay DQ and channel parameters Configuring SM 1226 F-DQ 2 x Relay DQ and channel parameters Table 5- 6 SM 1226 F-DQ 2 x Relay DQ parameters DQ parameters Description Default...
Page 115: Fail-Safe Signal Module (Sm) Diagnostics
Fail-Safe signal module (SM) diagnostics Reactions to faults Reactions to startup of the fail-safe system and to faults The fail-safe concept depends on the identification of a safe state for all process variables. The value "0" (de-energized) represents this safe state for digital fail-safe signal modules (SM).
Page 116 Fail-Safe signal module (SM) diagnostics 6.1 Reactions to faults Time-out of the PROFIsafe message (F-monitoring time exceeded) passivates all module channels. Table 6- 1 Signal module type and passivation result Signal module type Passivation result SM 1226 F-DI 16 x 24 VDC Tests are evaluated per channel, in order to allow chan- •...
Page 117 Fail-Safe signal module (SM) diagnostics 6.1 Reactions to faults Reintegration of a fail-safe signal module A channel or module can be reintegrated after successful diagnostics determine that a fault has cleared. You can configure reintegration as automatic or manual. You can make this selection on a per channel or module basis in the Device Configuration.
Page 118 Do not depend on deactivation or unconfiguration to maintain safe state in any circumstances. Additional information on passivation and reintegration For further information about fail-safe SM access, refer to the SIMATIC, Industrial Software, SIMATIC Safety - Configuring and Programming, Programming and Operating Manual (http://support.automation.siemens.com/WW/view/en/54110126/0/en). S7-1200 Functional Safety Manual Manual, 02/2015, A5E03470344-AA...
Page 119: Fault Diagnostics
Fail-Safe signal module (SM) diagnostics 6.2 Fault diagnostics Fault diagnostics Diagnostics detect faults that can affect the integrity of safety-related I/O. The faults can be in the fail-safe SM, communication with the CPU, or external circuits. Diagnostic information is assigned either to a single channel or to the entire fail-safe SM. Most diagnostics operate without user selection.
Page 120: Diagnostics By Led Display
Fail-Safe signal module (SM) diagnostics 6.2 Fault diagnostics 6.2.1 Diagnostics by LED display The fail-safe SMs have the following types of LEDs: ● Module DIAG LED: – Dual color (green / red) LED indicates the operating state and fault status of the module.
Page 121 Fail-Safe signal module (SM) diagnostics 6.2 Fault diagnostics SM 1226 F-DI 16 x 24 VDC Table 6- 2 Module DIAG and 1oo1 input channel LEDs Description DIAG LED Input Fault LED Status LED LED color Green / red Green I/O bus power off Module hardware fault Flashing red PROFIsafe error...
Page 122 Fail-Safe signal module (SM) diagnostics 6.2 Fault diagnostics Description DIAG LED Input Fault LED Status LED LED color Green / red Green Firmware update in progress Flashing green - Off; - On; - Flashing (Flashing frequency: 2.0 Hz) All channels passivated indicates a module-wide fault occurred. This could be an external condi- tion such as supply voltage low or a detected internal module defect.
Page 123 Fail-Safe signal module (SM) diagnostics 6.2 Fault diagnostics SM 1226 F-DQ 4 x 24 VDC Table 6- 4 Module DIAG and output channel LEDs Description DIAG LED Output Fault LED Status LED LED color Green / red Green I/O bus power off Module hardware fault Flashing red PROFIsafe error...
Page 124 Fail-Safe signal module (SM) diagnostics 6.2 Fault diagnostics SM 1226 F-DQ 2 x Relay Table 6- 5 Module and output channel LEDs Description DIAG LED Output Fault LED Status LED LED color Green / red Green I/O bus power off Module hardware fault Flashing red PROFIsafe error...
Page 125: Fault Types, Causes, And Corrective Measures
Fail-Safe signal module (SM) diagnostics 6.2 Fault diagnostics 6.2.2 Fault types, causes, and corrective measures The "Fault types, causes, and corrective measures" table below lists the messages of the S7-1200 fail-safe SMs. These messages are displayed in the TIA Portal under "Online & diagnostics"...
Page 126 Fail-Safe signal module (SM) diagnostics 6.2 Fault diagnostics Event ID Diagnostic mes- Fail-safe signal Description Possible causes Corrective measures sage module 0x004E PROFIsafe Monitoring time ex- F-monitoring time Adjust F-monitoring • communication ceeded for data exceeded time. failure (timeout) message frame Check Safety program •...
Page 127 Fail-Safe signal module (SM) diagnostics 6.2 Fault diagnostics Event ID Diagnostic mes- Fail-safe signal Description Possible causes Corrective measures sage module Short-circuit sors are mounted and • 0x0302 Discrepancy fail- SM 1226 F-DI External discrepancy aligned to be activated ure, 16 x 24 VDC failure: Channel state Sensor mechan-...
Page 128 Fail-Safe signal module (SM) diagnostics 6.2 Fault diagnostics Event ID Diagnostic mes- Fail-safe signal Description Possible causes Corrective measures sage module 0x0313 Failure in the input SM 1226 F-DI Internal fault at the The input SM de- If intermittant, probably •...
Page 129 Fail-Safe signal module (SM) diagnostics 6.2 Fault diagnostics Event ID Diagnostic mes- Fail-safe signal Description Possible causes Corrective measures sage module SM 1226 F-DQ Relay state does not Relay faulty Replace the fail-safe SM. 2 x Relay agree with com- manded value.
Page 130 Fail-Safe signal module (SM) diagnostics 6.2 Fault diagnostics S7-1200 Functional Safety Manual Manual, 02/2015, A5E03470344-AA...
Page 131: Technical Specifications
It is the user's responsibility to determine applicable certifications by referring to the ratings marked on the product. Consult your local Siemens representative if you need additional information related to the latest listing of exact approvals by part number.
Page 132: General Certifications
S7-1200 products that are marked with the ATEX symbol are suitable for ATEX classified hazardous locations as marked. The CE Declaration of Conformity is held on file available to competent authorities at: Siemens AG Sector Industry DF FA AS DH AMB...
Page 133 Failure to comply with these guidelines could cause damage or unpredictable operation which could result in death or severe personal injury and/or property damage. Repair of units should only be performed by an authorized Siemens Service Center. IECEx approval EN 60079-0: Explosive Atmospheres – General Requirements EN60079-15: Electrical Apparatus for Potentially Explosive Atmospheres;...
Page 134 Maritime approval The S7-1200 products are periodically submitted for special agency approvals related to specific markets and applications. Consult your local Siemens representative if you need additional information related to the latest listing of exact approvals by part number. Classification societies: ●...
Page 135: Industrial Environments
Technical specifications A.1 General technical specifications A.1.5 Industrial environments The S7-1200 automation system is designed for use in industrial environments. Table A- 1 Industrial environments Application field Emission requirements Immunity requirements Industrial EN 61000-6-4 EN 61000-6-2 A.1.6 Electromagnetic compatibility Electromagnetic Compatibility (EMC) is the ability of an electrical device to operate as intended in an electromagnetic environment and to operate without emitting levels of electromagnetic interference (EMI) that may disturb other electrical devices in the vicinity.
Page 136: Surge Immunity
Technical specifications A.1 General technical specifications A.1.7 Surge immunity Wiring systems subject to surges from lightning strike coupling must be equipped with external protection. One specification for evaluation of protection from lightning type surges is found in EN 61000-4-5, with operational limits established by EN 61000-6-2. S7-1200 DC CPUs and signal modules require external protection to maintain safe operation when subject to surge voltages defined by this standard.
Page 137: Environmental Conditions
Technical specifications A.1 General technical specifications A.1.8 Environmental conditions Table A- 5 Transport and storage Environmental conditions - Transport and storage EN 60068-2-2, Test Bb, Dry heat and -40 °C to +70 °C EN 60068-2-1, Test Ab, Cold EN 60068-2-30, Test Db, Damp heat 25 °C to 55 °C, 95% humidity EN 60068-2-14, Test Na, temperature shock -40 °C to +70 °C, dwell time 3 hours, 5 cycles...
Page 138: Protection Class
Technical specifications A.1 General technical specifications A.1.9 Protection class Protection Class II according to EN 61131-2: ● S7-1200 is open equipment and must be enclosed in additional protection as described in Section 4.1.2: "Guidelines for installing S7-1200 Fail-Safe devices" (Page 80). ●...
Page 139: Rated Voltages
Technical specifications A.1 General technical specifications A.1.11 Rated voltages Rated voltage Tolerance 24 VDC 20.4 VDC to 28.8 VDC When you suddenly apply 24 VDC power to the S7-1200 CPU or digital I/O signal modules (SM), including fail-safe SM, short-term current flows can occur which briefly mimic the effect of "1"...
Page 140: Reverse Voltage Protection
Technical specifications A.1 General technical specifications A.1.12 Reverse voltage protection Reverse voltage protection circuitry is provided on each terminal pair of +24 VDC power or user input power for CPUs, signal modules (SM), and signal boards (SB). It is still possible to damage the system by wiring different terminal pairs in opposite polarities.
Page 141: Relay Electrical Service Life
Technical specifications A.1 General technical specifications A.1.14 Relay electrical service life The typical performance data estimated from sample tests is shown below. Actual performance may vary depending upon your specific application. An external protection circuit that is adapted to the load will enhance the service life of the contacts. N.C. contacts have a typical service life of about one-third that of the N.O.
Page 142: Internal Cpu Memory Retention
Technical specifications A.1 General technical specifications Data for selecting an actuator At lamp load Max. 1Hz A.1.15 Internal CPU memory retention ● Lifetime of retentive data and data log data: 10 years ● Power down retentive data, Write cycle endurance: 2 million cycles ●...
Page 143: Overvoltage Category Iii
Technical specifications A.1 General technical specifications A.1.16 Overvoltage Category III Relay contacts of the SM 1226 F-DQ 2 x Relay (6ES7 226 6RA32 0XB0) are designed to Overvoltage Category III and may be used in AC mains circuits without further overvoltage protection.
Page 144: Fail-Safe Cpu Technical Specifications
Technical specifications A.2 Fail-Safe CPU technical specifications Fail-Safe CPU technical specifications A.2.1 Fail-Safe additions/exceptions The following sections discuss exceptions and additions for the CPU 1214FC and CPU1215FC that differentiates them from the standard CPU 1214C and CPU 1215C. A.2.1.1 Areas of application The S7-1200 fail-safe CPUs are intended for applications including Functional Safety requirements.
Page 145: Web Server
Technical specifications A.2 Fail-Safe CPU technical specifications A.2.1.5 Web server The S7-1200 fail-safe CPUs show you the following information on the "Start Page" of the web server: ● TIA Portal and STEP 7 Safety versions ● Safety mode enabled/disabled ● Overall signature ●...
Page 146 Technical specifications A.2 Fail-Safe CPU technical specifications Each F-I/O shows you the following information on the "Module information" page in the "Safety" tab: ● F_Par_CRC (w addresses) (F-parameter signature) ● Safety mode ● F-monitoring time ● F-source address ● F-destination address You do not have write access to F-blocks.
Page 147: Using A Memory Card With The S7-1200 Fail-Safe Cpu
ILM is empty, and there is no program in the PLC. Refer to the S7-1200 Programmable Controller System Manual (http://support.automation.siemens.com/WW/view/en/91696622) for general instructions for creating and using transfer cards and memory cards. The S7-1200 fail-safe CPU behavior when using a memory card has some differences from the standard CPU: ●...
Page 148 A.2 Fail-Safe CPU technical specifications Refer to the SIMATIC, Industrial Software, SIMATIC Safety - Configuring and Programming, Programming and Operating Manual (http://support.automation.siemens.com/WW/view/en/54110126/0/en), Section 10.4: "Function test of safety program and protection through program identification" for instructions on transferring programs. WARNING Loading an incorrect user program into a fail-safe CPU results in incorrect execution and total or partial loss of the safety function.
Page 149: Cpu 1214Fc
Technical specifications A.2 Fail-Safe CPU technical specifications A.2.2 CPU 1214FC A.2.2.1 General specifications and features Table A- 9 General Technical data CPU 1214FC CPU 1214FC DC/DC/Relay DC/DC/DC Article number 6ES7 214-1HF40-0XB0 6ES7 214-1AF40-0XB0 Dimensions W x H x D (mm) 110 x 100 x 75 Shipping weight 435 grams...
Page 150 Technical specifications A.2 Fail-Safe CPU technical specifications Technical data Description Time delay interrupts 4 total with 1 ms resolution Cyclic interrupts 4 total with 1 ms resolution Edge interrupts 12 rising and 12 falling (16 and 16 with optional signal board) Memory card SIMATIC Memory Card (optional) Real time clock accuracy...
Page 151: Performance
Technical specifications A.2 Fail-Safe CPU technical specifications A.2.2.2 Performance Table A- 11 Performance Type of instruction Execution speed Boolean 0.08 μs/instruction Move Word 1.7 μs/instruction Real math 2.3 μs/instruction A.2.2.3 Timers, counters and code blocks supported Table A- 12 Blocks, timers and counters supported by CPU 1214FC Element Description Blocks...
Page 152 Technical specifications A.2 Fail-Safe CPU technical specifications Element Description Storage Structure in DB, size dependent upon count type SInt, USInt: 3 bytes • Int, UInt: 6 bytes • DInt, UDInt: 12 bytes • Table A- 13 Communication Technical data Description Number of ports Type Ethernet...
Page 153: Digital Inputs And Outputs
Technical specifications A.2 Fail-Safe CPU technical specifications A.2.2.4 Digital inputs and outputs Table A- 16 Digital inputs Technical data CPU 1214FC CPU 1214FC DC/DC/Relay DC/DC/DC Number of inputs Type Sink/Source (IEC Type 1 sink) Rated voltage 24 VDC at 4 mA, nominal Continuous permissible voltage 30 VDC, max.
Page 154 Technical specifications A.2 Fail-Safe CPU technical specifications Technical data CPU 1214FC CPU 1214FC DC/DC/Relay DC/DC/DC Isolation groups Isolation (group-to-group) 1500 VAC Inductive clamp voltage L+ minus 48 VDC, 1 W dissipation Switching delay (Qa.0 to Qa.3) 10 ms max. 1.0 μs max., off to on 3.0 μs max., on to off Switching delay (Qa.4 to Qb.1) 10 ms max.
Page 155: Analog Inputs
Technical specifications A.2 Fail-Safe CPU technical specifications A.2.2.5 Analog inputs Table A- 18 Analog inputs Technical data Description Number of inputs Type Voltage (single-ended) Full-scale range 0 to 10 V Full-scale range (data word) 0 to 27648 Overshoot range 10.001 to 11.759 V Overshoot range (data word) 27649 to 32511 Overflow range...
Page 156: Cpu 1214Fc Wiring Diagrams
Technical specifications A.2 Fail-Safe CPU technical specifications Measurement ranges of the analog inputs for voltage of the CPU Table A- 21 Analog input representation for voltage of the CPU System Voltage Measuring Range Decimal Hexadecimal 0 to 10 V 32767 7FFF 11.851 V Overflow...
Page 157 Technical specifications A.2 Fail-Safe CPU technical specifications Table A- 23 Connector pin locations for CPU 1214FC DC/DC/Relay (6ES7 214-1HF40-0XB0) X11 (gold) L+ / 24VDC M / 24VDC AI 0 DQ a.0 Functional Earth AI 1 DQ a.1 L+ / 24VDC Sensor Out DQ a.2 M / 24VDC Sensor Out DQ a.3...
Page 158 Technical specifications A.2 Fail-Safe CPU technical specifications Table A- 24 CPU 1214FC DC/DC/DC (6ES7 214-1AF40-0XB0) ① The two rectangular areas are yellow. These are only on the fail-safe CPUs. ② 24 VDC Sensor Power Out For additional noise immunity, connect "M"...
Page 159 Technical specifications A.2 Fail-Safe CPU technical specifications X11 (gold) DI b.2 DI b.3 DI b.4 DI b.5 Note Unused analog inputs should be shorted. S7-1200 Functional Safety Manual Manual, 02/2015, A5E03470344-AA...
Page 160: Cpu 1215Fc
Technical specifications A.2 Fail-Safe CPU technical specifications A.2.3 CPU 1215FC A.2.3.1 General specifications and features Table A- 26 General Technical data CPU 1215FC CPU 1215FC DC/DC/Relay DC/DC/DC Article number 6ES7 215-1HF40-0XB0 6ES7 215-1AF40-0XB0 Dimensions W x H x D (mm) 130 x 100 x 75 Shipping weight 550 grams...
Page 161: Timers, Counters And Code Blocks Supported
Technical specifications A.2 Fail-Safe CPU technical specifications Technical data Description Time delay interrupts 4 total with 1 ms resolution Cyclic interrupts 4 total with 1 ms resolution Edge interrupts 12 rising and 12 falling (16 and 16 with optional signal board) Memory card SIMATIC Memory Card (optional) Real time clock accuracy...
Page 162 Technical specifications A.2 Fail-Safe CPU technical specifications Element Description Timers Type Quantity Limited only by memory size Storage Structure in DB, 16 bytes per timer Counters Type Quantity Limited only by memory size Storage Structure in DB, size dependent upon count type SInt, USInt: 3 bytes •...
Page 163: Digital Inputs And Outputs
Technical specifications A.2 Fail-Safe CPU technical specifications Table A- 32 Sensor power Technical data CPU 1215FC CPU 1215FC DC/DC/Relay DC/DC/DC Voltage range L+ minus 4 VDC min. Output current rating (max.) 400 mA (short-circuit protected) Maximum ripple noise (<10 MHz) Same as input line Isolation (CPU logic to sensor power) Not isolated...
Page 164 Technical specifications A.2 Fail-Safe CPU technical specifications Table A- 34 Digital outputs Technical data CPU 1215FC CPU 1215FC DC/DC/Relay DC/DC/DC Number of outputs Type Relay, mechanical Solid state - MOSFET (sourcing) Voltage range 5 to 30 VDC or 5 to 250 VAC 20.4 to 28.8 VDC Logic 1 signal at max.
Page 165: Analog Inputs And Outputs
Technical specifications A.2 Fail-Safe CPU technical specifications A.2.3.4 Analog inputs and outputs Table A- 35 Analog inputs Technical data Description Number of inputs Type Voltage (single-ended) Full-scale range 0 to 10 V Full-scale range (data word) 0 to 27648 Overshoot range 10.001 to 11.759 V Overshoot range (data word) 27649 to 32511...
Page 166 Technical specifications A.2 Fail-Safe CPU technical specifications Measurement ranges of the analog inputs for voltage of the CPU Table A- 38 Analog input representation for voltage of the CPU System Voltage Measuring Range Decimal Hexadecimal 0 to 10 V 32767 7FFF 11.851 V Overflow...
Page 167 Technical specifications A.2 Fail-Safe CPU technical specifications Measurement ranges of the analog outputs for current of the CPU Table A- 40 Analog output representation for current of the CPU System Current output range Decimal Hexadecimal 0 mA to 20 mA 32767 7FFF See note 1...
Page 168: Cpu 1215Fc Wiring Diagrams
Technical specifications A.2 Fail-Safe CPU technical specifications A.2.3.5 CPU 1215FC wiring diagrams Table A- 41 CPU 1215FC DC/DC/Relay (6ES7 215-1HF40-0XB0) ① The two rectangular areas are yellow. These are only on the fail-safe CPUs. ② 24 VDC Sensor Power Out For additional noise immunity, connect "M"...
Page 169 Technical specifications A.2 Fail-Safe CPU technical specifications X11 (gold) DI b.0 DI b.1 DI b.2 DI b.3 DI b.4 DI b.5 Table A- 43 CPU 1215FC DC/DC/DC (6ES7 215-1AF40-0XB0) ① The two rectangular areas are yellow. These are only on the fail-safe CPUs.
Page 170 Technical specifications A.2 Fail-Safe CPU technical specifications Table A- 44 Connector pin locations for CPU 1215FC DC/DC/DC (6ES7 215-1AF40-0XB0) X11 (gold) L+ / 24VDC M / 24VDC AQ 0 Functional Earth AQ 1 DQ a.0 L+ / 24VDC Sensor Out DQ a.1 M / 24VDC Sensor Out AI 0...
Page 171: Fail-Safe Signal Module (Sm) Technical Specifications
Technical specifications A.3 Fail-Safe signal module (SM) technical specifications Fail-Safe signal module (SM) technical specifications A.3.1 Fail-Safe signal modules (SM) Table A- 45 Fail-Safe signal modules Signal module model Digital inputs Digital outputs Removable con- nector SM 1226 F-DI 16 x 24 VDC 8 x 24 VDC (1oo2), 16 x 24 VDC (1oo1), or a mix...
Page 172: User Data Space
Technical specifications A.3 Fail-Safe signal module (SM) technical specifications A.3.2.2 User data space The SM 1226 F-DI 16 x 24 VDC user data space is 2 bytes (16 bits) of process value input followed by 2 bytes of quality bits. This is the bit structure for an F-DI configured with input start address 8: Input terminal Process value...
Page 173 Technical specifications A.3 Fail-Safe signal module (SM) technical specifications Model SM 1226 F-DI 16 x 24 VDC Module fault display Red / Green LED (DIAG) Diagnostic information can be displayed Possible (TIA Portal, HMI, or Web page) Table A- 47 Performance Model SM 1226 F-DI 16 x 24 VDC...
Page 174 Technical specifications A.3 Fail-Safe signal module (SM) technical specifications Table A- 50 Digital inputs Model SM 1226 F-DI 16 x 24 VDC Number of inputs: 16 maximum 1oo1 evaluation • 8 maximum 1oo2 evaluation • Note: You can individually assign each pair of inputs "a.x" and "b.x"...
Page 175: Wiring Diagrams
Technical specifications A.3 Fail-Safe signal module (SM) technical specifications A.3.2.4 Wiring diagrams Table A- 51 SM 1226 F-DI 16 x 24 VDC (6ES7 226-6BA32-0XB0) ① The two rectangular areas are yellow. These are only on the fail-safe signal modules. ② Two LEDs per input: One for channel status: Green (on = input on, off = input •...
Page 176 Technical specifications A.3 Fail-Safe signal module (SM) technical specifications Table A- 52 Connector pin locations for SM 1226 F-DI 16 x 24 VDC (6ES7 226-6BA32-0XB0) L+ / 24 VDC Functional Earth M / 24 VDC No connection Vs1 / 24VDC Sensor Supply Out- Vs2 / 24VDC Sensor Supply Out- put 1 put 2...
Page 177: Sm 1226 F-Dq 4 X 24 Vdc
Technical specifications A.3 Fail-Safe signal module (SM) technical specifications A.3.3 SM 1226 F-DQ 4 x 24 VDC A.3.3.1 Properties Article number 6ES7 226-6DA32-0XB0 Properties The SM 1226 F-DQ 4 x 24 VDC has the following features: ● Four outputs, P- and M-switching ●...
Page 178: Specifications
Technical specifications A.3 Fail-Safe signal module (SM) technical specifications A.3.3.3 Specifications Table A- 53 General specifications Model SM 1226 F-DQ 4 x 24 VDC Article number 6ES7 226-6DA32-0XB0 Dimensions W x H x D (mm) 70 x 100 x 75 Weight 270 grams Power dissipation...
Page 179 Technical specifications A.3 Fail-Safe signal module (SM) technical specifications Table A- 55 Power supply (L+, M) Model SM 1226 F-DQ 4 x 24 VDC Voltage range 20.4 VDC to 28.8 VDC Surge voltage 35 VDC for 0.5 s Input current 170 mA (does not include current in all P-switch loads) Hold up time (loss of power) None for outputs...
Page 180: Fuse And Electronic Overload Protection
Technical specifications A.3 Fail-Safe signal module (SM) technical specifications Model SM 1226 F-DQ 4 x 24 VDC Switching frequency: 30 Hz symmetrical, maximum With resistive load • 0.1 Hz symmetrical, maximum With inductive load in accordance with IEC 60947-5-1, • DC13 10 Hz symmetrical, maximum With lamp load...
Page 181: Switching Of Loads
Technical specifications A.3 Fail-Safe signal module (SM) technical specifications A.3.3.5 Switching of loads Connecting capacitive loads Load capacitance can delay the voltage response as seen at the P- and M- switches of the SM 1226 F-DQ 4 x 24 VDC. For a capacitive load with capacitance C across P and M, and a parallel load resistance R, the "Maximum readback time"...
Page 182 Technical specifications A.3 Fail-Safe signal module (SM) technical specifications Switching of inductive loads The graph below shows the maximum permitted inductive load and switching frequency allowed using only the internal suppression circuits of the F-DQ DC outputs. You should equip larger or more frequently switched inductive loads with external suppression circuits to avoid early failure of the F-DQ DC output switch.
Page 183: Wiring Diagrams
Technical specifications A.3 Fail-Safe signal module (SM) technical specifications A.3.3.6 Wiring diagrams Table A- 57 SM 1226 F-DQ 4 x 24 VDC (6ES7 226-6DA32-0XB0) ① The two rectangular areas are yellow. These are only on the fail-safe signal modules. ② Two LEDs per output: One for channel status: Green (on = output on, off = •...
Page 184: Sm 1226 F-Dq 2 X Relay
Technical specifications A.3 Fail-Safe signal module (SM) technical specifications A.3.4 SM 1226 F-DQ 2 x Relay A.3.4.1 Properties Article number 6ES7 226-6RA32-0XB0 Properties The SM 1226 F-DQ 2 x Relay has the following features: ● Two relay outputs (each output switches two circuits) ●...
Page 185: Specifications
Technical specifications A.3 Fail-Safe signal module (SM) technical specifications A.3.4.3 Specifications Table A- 59 General specifications Model SM 1226 F-DQ 2 x Relay Article number 6ES7 226-6RA32-0XB0 Dimensions W x H x D (mm) 70 x 100 x 75 Weight 340 grams Power dissipation 10 W...
Page 186 Technical specifications A.3 Fail-Safe signal module (SM) technical specifications Table A- 61 Power supply (L+, M) Model SM 1226 F-DQ 2 x Relay Voltage range 20.4 VDC to 28.8 VDC Surge voltage 35 VDC for 0.5 s Input current 300 mA Isolation (L+, M to S7-1200 internal logic and Ground) 500 VAC for 1 min Hold up time (loss of power)
Page 187: Relay Output Circuits
Technical specifications A.3 Fail-Safe signal module (SM) technical specifications Model SM 1226 F-DQ 2 x Relay Off delay time Typically 16 ms to first series contact open, second contact opens approximately 40 ms later. Behavior on RUN to STOP Only 0 (OFF) is allowed. Number of outputs on simultaneously Parallel connection of 2 outputs Allowed for redundant availability.
Page 188: Switching Performance And Service Life Of Contacts
Technical specifications A.3 Fail-Safe signal module (SM) technical specifications WARNING Adjacent relay contacts in the same channel of the SM 1226 F DQ 2 x Relay are not rated to separate AC line from SELV / PELV. Death or serious personal injury and damage to machines and equipment may result if SELV/PELV circuits are wired adjacent to high voltage circuits on this module.
Page 189 Technical specifications A.3 Fail-Safe signal module (SM) technical specifications WARNING Unsuppressed inductive loads can lead to failures. The following failures can result from unsuppressed inductive loads: • Unsuppressed inductive loads can lead to early "stuck-on'" failures of F-DQ and F-relay outputs.
Page 190: Wiring Diagrams
Technical specifications A.3 Fail-Safe signal module (SM) technical specifications A.3.4.6 Wiring diagrams Table A- 64 SM 1226 F-DQ 2 x Relay (6ES7 226-6RA32-0XB0) ① The two rectangular areas are yellow. These are only on the fail-safe signal modules. ② Two LEDs per output: One for channel status: Green (on = output on, off = •...
Page 191 Technical specifications A.3 Fail-Safe signal module (SM) technical specifications Table A- 65 Connector pin locations for SM 1226 F-DQ 2 x Relay (6ES7 226-6RA32-0XB0) L+ / 24VDC No connection M / 24VDC No connection Functional Earth No connection No connection No connection No connection A / DQ a.1...
Page 192: Companion Products
A.4 Companion products Companion products A.4.1 PM1207 power module The PM1207 is a power supply module for the SIMATIC S7-1200. It provides the following features: ● Input: 120/230 VAC, output: 24 VDC/2.5A ● Article number: 6ESP 332-1SH71-4AA0 For more information about this product and for the product documentation, refer to the product catalog web site for the PM1207 (https://eb.automation.siemens.com/mall/en/de/Catalog/Product/6AG1332-1SH71-4AA0)
Page 193: Ordering Information
Ordering information Fail-Safe CPUs Table B- 1 Fail-Safe CPUs Item Article number CPU 1214FC CPU 1214FC DC/DC/DC 6ES7 214-1AF40-0XB0 CPU 1214FC DC/DC/Rly 6ES7 214-1HF40-0XB0 CPU 1215FC CPU 1215FC DC/DC/DC 6ES7 215-1AF40-0XB0 CPU 1215FC DC/DC/Rly 6ES7 215-1HF40-0XB0 Fail-Safe signal modules (SM) Table B- 2 Fail-Safe signal modules (SM) Item...
Page 194: Spare Parts And Other Hardware
Ordering information B.4 Spare parts and other hardware Spare parts and other hardware Table B- 4 Expansion cables, simulators, connector blocks and terminal blocks Item Article number I/O expansion cable I/O Expansion cable, 2 m 6ES7 290-6AA30-0XA0 Input simulator Simulator (1214FC/1215FC - 14 position) 6ES7 274-1XH30-0XA0 Potentiometer module S7-1200 Potentiometer module...
Page 195: Programming Software
Ordering information B.5 Programming software Programming software Table B- 5 Programming software SIMATIC software Article number Programming software STEP 7 Basic V13 SP1 6ES7 822-0AA01-0YA0 STEP 7 Professional V13 SP1 6ES7 822-1AA01-0YA5 STEP 7 Safety Advanced V13 SP1 6ES7 833-1FA12-0YA5 STEP 7 Safety Basic V13 SP1 6ES7 833-1FB13-0YA5 Visualization software...
Page 196 Ordering information B.5 Programming software S7-1200 Functional Safety Manual Manual, 02/2015, A5E03470344-AA...
Page 197: Fail-Safe Response Times
Fail-Safe response times Manual update note Appendix C: "Fail-Safe response times" is not available at the time of manual publication. Refer to the S7-1200 Functional Safety Manual Update (http://support.automation.siemens.com/WW/view/en/105898775)for the fail-safe response time information. S7-1200 Functional Safety Manual Manual, 02/2015, A5E03470344-AA...
Page 198 Fail-Safe response times C.1 Manual update note S7-1200 Functional Safety Manual Manual, 02/2015, A5E03470344-AA...
Page 199: Glossary
Glossary 1oo1 A functional safety architecture with no redundancy. The safety function requires 1 out of 1 provided signal/logic channels for implementation. A single dangerous fault results in dangerous loss of the safety function. 1oo2 A functional safety architecture with two channels. The safety function requires 1 out of 2 provided signal/logic channels for implementation.
Page 200 Glossary Channel fault A fault that causes one process value to be passivated, such as a detected wiring fault on one input. Other channels in the module can continue to support a safety function. See also Module fault: ● SM 1226 DI 16 x 24 VDC: –...
Page 201 Glossary Engineering System (ES): An engineering system is a PC-based configuration system that enables convenient, visual adaptation of the process control system to the task at hand. Fail-safe A system or component designed to reliably provide a defined, safe result in the event of a fault.
Page 202 Glossary Light test / light time The test or time in which a "1" signal is deliberately created to confirm that "1" can be controlled or detected when needed. The signal modules described in this manual do not deliberately conduct light tests that can affect your program or the output load. The SM 1226 F-DQ 4 x 24 VDC produces ON test pulses up to the Maximum readback time switch on test on each of the P and M switches individually, but do not intentionally turn on both P and M switches at once for a test when commanded process value is "0".
Page 203 Glossary PFD_avg Average probability of a dangerous failure on demand (PFD_avg). An estimate of how likely a safety function will fail to perform as expected when required to function only rarely (on demand). PFD is typically used for safety function applications that are required to operate in response to unusual accidental or emergency events occurring less frequently than once per year.
Page 204 Glossary Proof-test / Proof-test interval A proof test is a verification that a safety component or system operates as expected. Immediately after each successful proof test, the safety component or system is considered to have a minimum probability of dangerous failure. The probability of dangerous failure increases with time until the next proof test.
Page 205 Glossary Safety mode 1. Safety mode is the operating mode of the fail-safe signal modules (SM) that allows safety-related communication using safety message frames. S7-1200 fail-safe SMs are designed for safety mode only. 2. Operating mode of the safety program: In safety mode of the safety program, all safety mechanisms for fault detection and fault reaction are activated.
Page 206 Glossary S7-1200 Functional Safety Manual Manual, 02/2015, A5E03470344-AA...
Page 207: Index
Index 1oo1, 20 Category, 11 1oo2, 20 CE approval, 132 Channel deactivated, 115 Channel fault, 115 Channel group fault, 115 Access protection Code block CPU, 33 counters (quantity and memory Analog I/O requirements), 151, 162 step response times (CPU), 155, 165 interrupts, 151, 161 Approvals monitoring, 151, 161...
Page 208 Index CPU 1214FC DC/DC/Relay, 149 Fail-safe system, (See SIMATIC Safety) CPU 1215FC DC/DC/DC, 160 operating modes, 18 CPU 1215FC DC/DC/Relay, 160 Fail-safe value output step response times, 155, 165 for fail-safe modules, 115 CRC, 17 FAQs, 5 C-Tick approval, 134 Fault reaction cULus approval, 133 channel discrepancy errors or wiring shorts, 17...
Page 209 Index supply voltage too low, 125 Mounting undertemperature, 125 CPU, 85 version of F parameter set incorrect, 125 guidelines, 80 watchdog tripped, 125 inductive loads, 102 FM approval, 133 signal module (SM), 87 F-monitoring time, 17 terminal block removal and installation, 89 Fuse and electronic overload protection My Documentation Manager, 5 SM 1226 F-DQ 4 x 24 VDC, 180...
Page 210 CPU, 33 Surge immunity, 136 SELV, 90 Sensor evaluation, 20 Sequence number, 15 Service and support, 4 Siemens technical support, 4 Signal board (SB) power requirements, 92 Signal module (SM) installation and removal, 87 power requirements, 92 S7-1200 Functional Safety Manual...
Page 211 Index Tables common F-parameters, 106 SM 1226 F-DI 16 x 24 VDC channel parameters, 108 SM 1226 F-DI 16 x 24 VDC DI parameters, 107 SM 1226 F-DQ 2 x Relay channel parameters, 114 SM 1226 F-DQ 2 x Relay DQ parameters, 114 SM 1226 F-DQ 4 x 24 VDC channel parameters, 112 SM 1226 F-DQ 4 x 24 VDC DQ parameters, 111...
Page 212 Index S7-1200 Functional Safety Manual Manual, 02/2015, A5E03470344-AA...

This manual is also suitable for:

Simatic s7-1200

Siemens SIMATIC S7 Functional Safety Manual

1 Product Overview

2 Getting Started

3 Fail-Safe Signal Module (SM) Applications

4 Fail-Safe CPU and Signal Module (SM) Installation

5 Fail-Safe Signal Module (SM) I/O Configuration

6 Fail-Safe Signal Module (SM) Diagnostics

Quick Links

Need help?

Questions and answers

Related Manuals for Siemens SIMATIC S7

Summary of Contents for Siemens SIMATIC S7

This manual is also suitable for:

Table of Contents