Safety Integrated - Industry - Siemens

More documents

Recommendations

Info

Safe Standstill Detection and Safely Reduced Speed with F-CPU and MASTERDRIVES in Category 3 of EN 954-1 or SIL 2 of IEC 62061 Ex. No. 12 Automation Function Description of the functionality Introduction To ensure, that a drive is not causing any hazards, it must be detected safely when it is in standstill mode (speed n=0). Only when the state of safe standstill is reached, must actions be performed, as during normal operation they would otherwise be detected as hazard and cause the actuator to be switched off. Such actions may consist of: ■ Entering a danger zone ■ Opening a safety door ■ Enabling further technological processes Apart from safe standstill and normal operation this example also illustrates the "safely reduced speed" (Sicher reduzierte Geschwindigkeit = SG) operating mode (in this document referred to as "safe speed (SG)"). When does a "safe standstill" take place? Within an applicative solution a safe standstill is referred to if ■ a speed n=0 of the drive is recognized and ■ this result is confirmed by a further evaluation of the operating mode of the drive (independent of the first evaluation). Functional example This functional example illustrates two independent methods of determining drive speed, and safe standstill in comparison with speed n=0. ■ Method 1: Determining speed via PROFIBUS ■ Method 2: Determining speed via standard count module ■ The following overall functionalities are prepared: ■ Emergency stop 364 Functional Example No. AS-FE-I-012-V10-EN ■ Simulation of a safety door ■ Operating modes normal, "safe speed" (SG) and "drive standstill" The actual speed value is determined in two different ways. The speed values determined this way are checked for plausibility in the operating modes "normal" and "safe speed" (SG). If one or several errors occur in "safe speed" (SG) mode, the drive is switched off fail-safe. The plausibility check includes: ■ the actual speed value determined in two different ways ■ the comparison of the actual speed value with the N_MAX speed value, whose value must not be exceeded. ■ To illustrate these functionalities, the example consists mainly of three parts: ■ DP master CPU ■ DP slave (I-Slave) ■ DP slave (MASTERDRIVES) These three blocks as well as the mentioned functionalities are described in greater detail below. Note The PFH-Calculation is not a part of this example. DP master CPU Determining speed with PROFIBUS (method 1) A CPU S7-400, connected with MASTERDRIVES via PROFIBUS, is used as DP master. In the master CPU the operation related switching is realized: ■ Start the drive ■ Stop the drive ■ Acknowledgement (e.g. after an error) To forward these commands to MASTERDRIVES, the master CPU describes the bits of the control word. To detect the state of MASTERDRIVES, the master CPU reads the bits of the control word.
This communication is realized via PROFIBUS. This enables ■ transferring the setpoint speed value to MASTERDRIVES ■ detecting the actual speed value of MASTERDRIVES. DP slave (I-Slave) An ET 200S with intelligent and fail-safe interface (IM 151-7F- CPU) is used. Note In this example, the IM 151-7F CPU has already been configured as DP slave. However, if you require information for integrating an intelligent IM 151 interface as DP slave, please refer to the manual "ET 200S - Interface Module IM 151-7 CPU" (Entry-ID: 12714722) The I-Slave realizes the following functionalities: Safe drive shut down The drive is switched off safely for ■ Triggered emergency stop ■ Opening the safety door in normal operation ■ Error during speed monitoring in "safe speed" (SG) mode If one of these cases occurs, the drive is stopped immediately: The fail-safe output of the F-DO is connected with the OUT3 contact at MASTERDRIVES. At negative edge, OUT3 switches off the operation as fast as possible (fast stop). Note Fast stop is generally no primary safety function. However it enhances safety and helps reduce kinetic energy. OUT3 can also be connected to MASTERDRIVES via a standard module. The reason behind using OUT3 via an F-DO in this example is that otherwise an additional standard output module for ET 200S would be required. Reaching category 3 according to EN 954-1 requires two different methods for safe shut down: ■ Option K80 for MASTERDRIVES ■ Shutdown by contactor Option K80 (shut down method 1) Option K80 for MASTERDRIVES contains a fail-safe relays with positively driven feedback contact, which shuts down power supply for controlling the power transistors (IGBTs). Pulse blocking occurs ■ in case of an error with delay after fast stop (OUT3=0) via the F-DO ■ in operating mode "safe speed" (SG) and drive standstill. Shutdown by line contactor (shutdown method 2) If an error is detected during evaluating the feedback contact of option K80, the contactor disconnects the drive from the network. If there is no readback error at option K80, the drive remains connected to the network; category 3 according to EN 954-1 remains true. Functional Example No. AS-FE-I-012-V10-EN 365 Ex. No. 12
Page 1 and 2:
safety INTEGRATED Safety applicatio
Page 3 and 4:
Safety Integrated Functional Exampl
Page 5 and 6:
42 2.8 E-Stop with monitored start
Page 7 and 8:
Structure and wiring An overview of
Page 9 and 10:
Page 11 and 12:
Page 13 and 14:
Page 15 and 16:
Page 17 and 18:
Page 19 and 20:
Page 21 and 22:
Page 23 and 24:
Page 25 and 26:
Page 27 and 28:
Required components Hardwarekompone
Page 29 and 30:
Required components Hardware compon
Page 31 and 32:
Page 33 and 34:
Page 35 and 36:
Page 37 and 38:
Page 39 and 40:
Page 41 and 42:
Page 43 and 44:
Page 45 and 46:
Page 47 and 48:
Page 49 and 50:
Page 51 and 52:
Page 53 and 54:
Page 55 and 56:
Page 57 and 58:
Emergency Stop with monitored start
Page 59 and 60:
Page 61 and 62:
Page 63 and 64:
Protective door monitoring with aut
Page 65 and 66:
2 safety circuits in a cascade acco
Page 67 and 68:
Components required Hardware compon
Page 69 and 70:
Important hardware component settin
Page 71 and 72:
Note Diagram Overload, thermal moto
Page 73 and 74:
Required Components This chapter co
Page 75 and 76:
Example Code This chapter describes
Page 77 and 78:
Description Parameters The contacto
Page 79 and 80:
Configuration validation Starting t
Page 81 and 82:
Required Components This chapter co
Page 83 and 84:
Page 85 and 86:
Description Parameters For the doub
Page 87 and 88:
Commissioning the AS Interface Safe
Page 89 and 90:
Protective door with door interlock
Page 91 and 92:
Assembly and Wiring Overview of Har
Page 93 and 94:
Page 95 and 96:
Page 97 and 98:
Page 99 and 100:
Page 101 and 102:
Page 103 and 104:
Page 105 and 106:
Page 107 and 108:
Page 109 and 110:
Page 111 and 112:
Page 113 and 114:
Page 115 and 116:
Page 117 and 118:
Page 119 and 120:
Page 121 and 122:
Page 123 and 124:
Page 125 and 126:
Page 127 and 128:
Page 129 and 130:
SIMOCODE pro direct starters with s
Page 131 and 132:
Required Components Hardware compon
Page 133 and 134:
Wiring of Hardware Components
Page 135 and 136:
Note Screenshot SIMOCODE is inserte
Page 137 and 138:
Parameter settings Note Screenshot
Page 139 and 140:
Downloading the SIMOCODE pro projec
Page 141 and 142:
The displayed link is parameterized
Page 143 and 144:
SIMOCODE pro reversing starters wit
Page 145 and 146:
Page 147 and 148:
Page 149 and 150:
Page 151 and 152:
Page 153 and 154:
Page 155 and 156:
Page 157 and 158:
SIMOCODE pro star-delta starters wi
Page 159 and 160:
Page 161 and 162:
Page 163 and 164:
Page 165 and 166:
Page 167 and 168:
Page 169 and 170:
Page 171 and 172:
Fail-safe Controllers SIMATIC Safet
Page 173 and 174:
Page 175 and 176:
L1 N PE Note A connection between t
Page 177 and 178:
Settings of the CPU 315F-2DP The se
Page 179 and 180:
The sample code with the given conf
Page 181 and 182:
Safety Door with Spring-Loaded Enga
Page 183 and 184:
Page 185 and 186:
L1 N PE PS 307 / CPU 315F L+ M IM 1
Page 187 and 188:
Page 189 and 190:
Basic Performance Data Load and mai
Page 191 and 192:
Note If the above section is not ob
Page 193 and 194:
FB "COORDINATION" (FB1, DB1) After
Page 195 and 196:
Safety Door with Magnetic Engagemen
Page 197 and 198:
Setup and Wiring In order to set up
Page 199 and 200:
Function test After wiring the hard
Page 201 and 202:
Page 203 and 204:
Basic Performance Data Load and mai
Page 205 and 206:
FC "STANDARD" (FC 3) The FC "STANDA
Page 207 and 208:
The safety door locks ("COIL"="1"),
Page 209 and 210:
Safety Door without Guard Locking i
Page 211 and 212:
Page 213 and 214:
Page 215 and 216:
Page 217 and 218:
Sample Code Preliminary Remarks Enc
Page 219 and 220:
The acknowledgement for the enable
Page 221 and 222:
Light Curtain in Category 4 with Mu
Page 223 and 224:
Flow chart The flow chart below sho
Page 225 and 226:
ACK PS 307 START CPU 315F Wiring of
Page 227 and 228:
Page 229 and 230:
Set mode: "Test Mode" During Proces
Page 231 and 232:
Page 233 and 234:
FB "L_CURTAIN" (FB 1, DB 1) FB 1 ha
Page 235 and 236:
Two-Hand Control Panel with Integra
Page 237 and 238:
Page 239 and 240:
L1 N PE PS 307 / CPU 315F L+ M IM 1
Page 241 and 242:
Page 243 and 244:
Settings of the failsafe F-DO The s
Page 245 and 246:
F-CALL (FC1) F-CALL (FC1) is the F
Page 247 and 248:
Integration of the Readback Signal
Page 249 and 250:
Page 251 and 252:
L1 N PE PS 307 / CPU 315F L+ M AUX1
Page 253 and 254:
Page 255 and 256:
Page 257 and 258:
Page 259 and 260:
Warning! When using the F applicati
Page 261 and 262:
Safety Shutdown in the Stop Categor
Page 263 and 264:
G_FB_XX_152 Time sequence for Stop
Page 265 and 266:
Setup and Wiring Regarding the use
Page 267 and 268:
Parameters used Below, some charact
Page 269 and 270:
L1 N PE PS 307 / CPU 315F A4 2 DO H
Page 271 and 272:
Function test The inputs and output
Page 273 and 274:
Set mode: "Test Mode" During Proces
Page 275 and 276:
Page 277 and 278:
Network 2 FB "Safety_PRG" (FB1, DB1
Page 279 and 280:
Single and Group Shutdown of Actuat
Page 281 and 282:
Page 283 and 284:
Note The DP interface of the CPU 31
Page 285 and 286:
The terminal markings of the load c
Page 287 and 288:
Page 289 and 290:
Page 291 and 292:
COND2), which can be changed by the
Page 293 and 294:
Please consider the following notes
Page 295 and 296:
7 Cyclic input data 0 OSSD Warning!
Page 297 and 298:
Time sequence For a better understa
Page 299 and 300:
Advantages/customer benefits ■ Fo
Page 301 and 302:
IM 151 HF IM 151 HF PM-E PM-E 2DI H
Page 303 and 304:
Connection of the LS4 Integrating t
Page 305 and 306:
No. Instruction Note 8 Click "Cance
Page 307 and 308:
Page 309 and 310:
Page 311 and 312:
Settings of the fail-safe F-DO The
Page 313 and 314:
Page 315 and 316: FB "SET_ACT" (FB 3, DB 3) Network 1
Page 317 and 318: #SEN_FIELD 1 #SEN_FIELD 2 #SEN_FIEL
Page 319 and 320: Passivation and Reintegration of F-
Page 321 and 322: Setup and Wiring This chapter descr
Page 323 and 324: Overview of inputs and outputs Over
Page 325 and 326: Important hardware component settin
Page 327 and 328: "Channel 1.5": "Evaluation of the s
Page 329 and 330: Sample Code In this chapter you lea
Page 331 and 332: Scenario: Manual reintegration Disc
Page 333 and 334: Scenario: F-communication error Dis
Page 335 and 336: Overview of buttons and indicator l
Page 337 and 338: Explanations for the STEP 7 program
Page 339 and 340: FB2 / Network 1 DB818.DBX 36.4 Over
Page 341 and 342: Description: FB3, DB4 (REINTEGRATIO
Page 343 and 344: FB3 / Netzwerk 3 Overview of the si
Page 345 and 346: Operation: Normal operation Operati
Page 347 and 348: Operation: Automatic reintegration
Page 349 and 350: Background Knowledge on the Functio
Page 351 and 352: F-I/O-module data block What is an
Page 353 and 354: The user has read and write access
Page 355 and 356: Passivation (of entire module or ch
Page 357 and 358: How is the "passivation of channels
Page 359 and 360: Processes during passivation and re
Page 361 and 362: Process: Channel / module error (ma
Page 363 and 364: Process: Safety program Preconditio
Page 365: Warning Automatic reintegration is
Page 369 and 370: DP Slave (MASTERDRIVES) The descrip
Page 371 and 372: Emergency stop Time Explanation t1
Page 373 and 374: Required Components Hardware compon
Page 375 and 376: Notes on configuring MASTERDRIVES N
Page 377 and 378: Inputs and outputs used for the DP
Page 379 and 380: Overview hardware configuration of
Page 381 and 382: Settings of the fail-safe F-DI The
Page 383 and 384: Basic Performance Data DP Master: L
Page 385 and 386: Program sequence General overview T
Page 387 and 388: Symbol Function Explanation START P
Page 389 and 390: Network 4: Reading in the readback
Page 391 and 392: Variables of FB "STANDSTILL_AND_SAF
Page 393 and 394: Network 10 In this network, the tim
Page 395 and 396: Network 2 With OUT3=0 the drive is
Page 397 and 398: Safety Drives System 1 SAFE STANDST
Page 399 and 400: Behavior when Emergency Stop is iss
Page 403 and 404: Behavior when the protective doors
Page 405 and 406: Function description A structure in
Page 411 and 412: ■ This circuit principle is suita
Page 413 and 414: Certificate The examples shown in t
Page 417 and 418:
Behavior when Emergency Stop is iss
Page 419 and 420:
Behavior when the protective doors
Page 421 and 422:
Behavior when the protective doors
Page 423 and 424:
Page 425 and 426:
Page 427 and 428:
■ This circuit principle is suita
Page 429 and 430:
Certificate The examples shown in t
Page 431 and 432:
"Safe standstill" with SINAMICS usi
Page 433 and 434:
"Safety Integrated" settings The de
Page 435 and 436:
Behavior, when the protective doors
Page 437 and 438:
Behavior at Emergency Stop Emergenc
Page 439 and 440:
The safety requirements are fulfill
Page 441 and 442:
Hardware components for the F-CPU c
Page 443 and 444:
Overview of interfaces and communic
Page 445 and 446:
Overview of the network configurati
Page 447 and 448:
SINAMICS Runtime System Parametizat
Page 449 and 450:
SIMOTION Runtime System Starting up
Page 451 and 452:
SIMATIC Runtime System Function Blo
Page 453 and 454:
Overview of the function block "F_D
Page 455 and 456:
Überwachung auf sicher red. Geschw
Page 457 and 458:
Plausibility check: Motion command
Page 459 and 460:
Porting PROFIsafe to the applicatio
Page 461 and 462:
Input signal conditioning The incom
Page 463 and 464:
TÜV certificate (issued by the TUE
Page 465 and 466:
SINAMICS G120 - controlled via PROF
Page 467 and 468:
Required components An overview of
Page 469 and 470:
Connecting-up the hardware componen
Page 471 and 472:
Fault 395 (acceptance test / acknow
Page 473 and 474:
Overview of inputs and outputs Simu
Page 475 and 476:
Download S7 program To download the
Page 477 and 478:
nels takes approximately 2.4s. This
Page 479 and 480:
Please note that the two actual che
Page 481 and 482:
Key performance data Load memory an
Page 483 and 484:
The individual telegram components
Page 485 and 486:
DB1, axis_DB The axis_DB represents
Page 487 and 488:
SINAMICS G120 parameterization In o
Page 489 and 490:
SINAMICS G120 - controlled via PROF
Page 491 and 492:
Required components An overview of
Page 493 and 494:
Connecting-up the hardware componen
Page 495 and 496:
Fault 395 (acceptance test / acknow
Page 497 and 498:
Overview of inputs and outputs Simu
Page 499 and 500:
■ Then, in the Project Navigator
Page 501 and 502:
Safe Stop 1 (SS1) tab The parameter
Page 503 and 504:
Function test The function test can
Page 505 and 506:
Siemens telegram 352, PZD 6/6 The s
Page 507 and 508:
Principle structure of the FC100 Ne
Page 509 and 510:
Functional Example No. SD-FE-I-002-
Page 511 and 512:
Contact partners Contact partners f
show all

Safety Integrated - Industry - Siemens

Create successful ePaper yourself

Delete template?

Save as template?