Read-only PROFINET

Read-only PROFINET

The read-only PROFINET feature is a configuration mode that prevents modifications to critical network parameters, including IP address, subnet mask, gateway, device name, and factory reset settings. While write operations are restricted, the feature still allows read and identification functions. Additionally, it preserves existing configurations for LLDP, SNMP, and CDP, ensuring these services remain fully operational.

Configure read-only PROFINET

Enable read-only PROFINET.

Procedure

Step 1

Use the configure terminal command to enter configuration mode.

Example:

Switch# configure terminal

Step 2

Use the profinet read-only command to enable PROFINET as read-only.

Example:

Switch(config)# profinet read-only

Use the no profinet read-only command to disable this feature.

Step 3

(Optional) Use the Show profinet status command to monitor PROFINET status.

Example:

Switch# show profinet status 
Profinet                        : Enabled
Connection Status               : Disconnected
Vlan                            : 1
Profinet ID                     : 
GSD version                     : Unknown
Reduct Ratio                    : 128
MRP                             : Enabled
MRP License Status              : Not Applicable
MRP Max Rings Allowed           : 3
Profinet read-only              : Enabled

Feature history for Read-only PROFINET

Table 1. Feature history

Feature Name

Releases

Description

Read-only PROFINET

Cisco IOS XE 26.1.1

This feature increases device security and network flexibility by placing Discovery and Configuration Protocol (DCP) operations in read‑only mode. It:

  • Protects the IP address, gateway, and device name from changes.

  • Protects critical network settings and prevents unexpected loss of connectivity.

  • Maintains compatibility with LLDP, SNMP, and CDP.

  • Allows devices to perform identification and basic network discovery.