CIP Error Codes
These are general CIP error codes that can be returned by the Attribute Error Code.
CIP Error Codes
Error Code (hex) | Error Name | Description of Error |
---|---|---|
00 | Success | Service was successfully performed by the object specified. |
01 | Connection failure | A connection related service failed along the connection path. |
02 | Resource unavailable | Resources needed for the object to perform the requested behavior were unavailable. Further object specific information should be supplied in the object specific status field of the response. |
03 | Invalid value in object specific data parameter of a service request | A portion of the data supplied as an object specific data parameter of a service was invalid. The verification of the data is specified in the object definition of the object reporting the error. |
04 | IOI segment error | The IOI segment identifier or the segment syntax was not understood by the processing node. The word offset to the first segment of the IOI that is not understood should be supplied in the first word of the object specific status field of the response. The offset is zero based and calculated from the first word following the IOI Size in the message IOI processing stops when an IOI segment error is encountered. |
05 | IOI destination unknown | The IOI is referencing an object class, instance or structure element that is not known or is not contained in the processing node. The word offset to the first segment component that references something that is unknown or not present in the processing node should be supplied in the first word of the object specific status field of the response. The offset is zero based and calculated from the first word following the IOI Size in the message. IOI processing stops when an IOI destination unknown error is encountered. |
06 | Partial transfer | Only part of the expected data was transferred. |
07 | Connection lost | The messaging connectionErrpr was lost. |
08 | Unimplemented service | The service requested was not implemented or defined for this class or instance object. |
09 | Invalid attribute value | The value of an attribute of the object or class is invalid. The object specific status should report the attribute number and the status code of the first attribute refusing data. |
0A | Attribute list error | An attribute in the Get_Attribute_List or Set_Attribute_List response has a non–zero status. |
0B | Already in requested mode/state | The object is already in the mode/state being requested by the service. The object specific status should report the object's current status. |
0C | Object cannot perform service in its current mode/state | The object cannot perform the requested service in its current mode/state. The object specific status should report the object's current status. For example, this error would be returned if a Transfer Service request was sent to the NVS Object before a Update Service request was received since the Update Service is required before data can be sent using the Transfer Service. |
0D | Object already exists | The requested instance of object to be created already exists. |
0E | Attribute value not settable | The object attribute is not a settable attribute. The object specific status should report the number of the attribute refusing data. |
0F | Access permission does not allow service | The access permissions do not allow the object to perform the service. The access permissions available to the object should be reported in the extended status. |
10 | Device's mode/state does not allow object to perform service | The device containing the object does not allow the object to perform the service in the device's current mode/state. The object specific status should report the device's current status. For example, a controller may have a key switch which when set to the 'hard run' state causes Service Requests to several different objects to fail, for example, program edits. This error code would then be returned. |
11 | Reply data too large | The data to be transmitted in the response buffer is larger than the allocated response buffer, therefore, no data was transferred. |
12 | Fragmentation of a primitive value | The service specified an operation that is going to fragment a primitive data value, for example, halve a REAL data type. |
13 | Not enough data | The service did not supply enough data to perform the specified operation. |
14 | Undefined attribute | The attribute specified is not defined for the class or object. |
15 | Too much data | The service supplied more data than was expected (depending on the service and the object, the service may still be processed). |
16 | Object does not exist | The object specified does not exist in the device. |
17 | Service fragmentation sequence not currently in progress | The fragmentation sequence for this service is not currently active for this data. |
18 | No stored attribute data | The attribute data of this object was not saved prior to the requested service. |
19 | Store operation failure | The attribute data of this object was not saved due to some failure during the attempt. |
1A | Bridging failure, request packet too large for network | The service request packet was too large for transmission on a network in the path to the destination. The bridge device was forced to abort the service. |
1B | Bridging failure, response packet too large for network | The service response packet was too large for transmission on a network in the path from the destination. The bridge device was forced to abort the service. |
1C | Missing attribute list entry data | The service did not supply an attribute in a list of attributes that was needed by the service to perform the requested behavior. |
1D | Invalid attribute value list | The service is returning the list of attributes supplied with status information for those attributes that were invalid. |
1E | Embedded service error | An embedded service resulted in an error. |
1F | Connection Related Failure | A service failed because of an error condition related to the processing of a connection related service. This can occur during connected and unconnected messaging. The same extended status codes used for General Status Error Code 01 are returned for this error's extended status. |
20 | Invalid Parameter | Obsolete. |
21 | Write–once value or medium already written | An attempt was made to write to a write-once medium (for example, WORM drive, PROM) that has already been written, or to modify a value that cannot be changed once established. |
22 | Invalid Reply Received | An invalid reply is received, for example, reply service code does not match the request service code, or reply message is shorter than the minimum expected reply size. This error code can serve for other causes of invalid replies. |
23 | CST not coordinated | The Coordinated System Time (CST) value is not yet within the tolerance where it can accept an update. Try again. |
24 | Connection Scheduling Error | Obsolete. |
25 | Key Failure in IOI | The Key Segment which was included as the first segment in the IOI does not match the destination module. The object specific status will indicate which part of the key check failed. |
26 | IOI Size Invalid | The Size of the IOI which was sent with the Service Request is either not large enough to allow the Request to be routed to an object or too much routing data was included. |
27 | Unexpected attribute in list | An attempt was made to set an attribute that cannot be set at this time. |
28 | DNet Invalid Member ID | See DeviceNet specification for details: http://www.odva.org/. |
29 | DNet Member not settable | See DeviceNet specification for details: http://www.odva.org/. |
32D | No Matching Ingress Rule | This extended status code is returned when a request is rejected due to failure to match an ingress rule. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
32E | Ingress Rule Deny | This extended status code is returned when a request is rejected due to matching an ingress rule with action DENY. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
32F | Ingress Rule Deny Non_Secure | This extended status code is returned when a request is rejected due to matching an ingress rule with action ALLOW_INGRESS_SECURE, but the request was through a non CIP Security port. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
330 | No Matching Egress Rule | This extended status code is returned when a request is rejected due to failure to match an egress rule. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
331 | Egress Rule Deny | This extended status code is returned when a request is rejected due to matching an egress rule with action DENY. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
332 | Egress Rule Cipher Not Allowed | This extended status code is returned when a request is rejected due to matching an egress rule with action ALLOW, but the CIPHER_LIST does not include an allowed cipher suite. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
900 | (D)TLS ALERT 0: Close Notify 1 | One side of the (D)TLS connection has requested that the connection be closed. Check that the model matches the actual communications flow. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
901 | (D)TLS ALERT 10: Unexpected Message | Check that the model matches the actual communications flow. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
902 | (D)TLS ALERT 20: Bad Record MAC | Please contact technical support. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
903 | (D)TLS ALERT 22: Record Overflow | Please contact technical support. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
904 | (D)TLS ALERT 30: Decompression Failure | Please contact technical support. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
905 | (D)TLS ALERT 40: Handshake Failure | Check the configuration. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
906 | (D)TLS ALERT 42: Bad Certification | Please contact technical support. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
907 | (D)TLS ALERT 43: Unsupported Certificate | Please contact technical support. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
908 | (D)TLS ALERT 44: Certificate Revoked | Please contact technical support. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
909 | (D)TLS ALERT 45: Certificate Expired | Please contact technical support. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
90A | (D)TLS ALERT 46: Certificate Unknown | Check the model to see if it matches actual comms flow. If so, contact technical support. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
90B | (D)TLS ALERT 47: Illegal Parameter | Please contact technical support. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
90C | (D)TLS ALERT 48: Unknown CA | Check that the model matches the actual communication flow. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
90D | (D)TLS ALERT 49: Access Denied | Check that the module matches actual communication flow. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
90E | (D)TLS ALERT 50: Decode Error | Please contact technical support. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
90F | (D)TLS ALERT 51: Decrypt Error | Please contact technical support. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
910 | (D)TLS ALERT 70: Protocol Version | Please contact technical support. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
911 | (D)TLS ALERT 71: Insufficient Security | For the cipher suites configured in the module, check that every target for an originator has a matching cipher suite allowed. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
912 | (D)TLS ALERT 80: Internal Error | Please contact technical support. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
913 | (D)TLS ALERT 86: Inappropriate Fallback | Please contact technical support. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
914 | (D)TLS ALERT 110: Unsupported Extension | Please contact technical support. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
915 | (D)TLS ALERT: Unknown PSK Identity | Check that the module matches actual communication flow. If so, contact technical support. Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
916-9FF | CIP Security session error | Verify that the correct device is addressed and that the project configuration includes devices supported by the CIP Security Policy. If this error persists, contact the security administrator or technical support. |
2A - CF | Reserved for future system use | This range of error codes has been reserved for future system use. |
D0 - FF | Reserved for future system use | This range of error codes has been reserved for use by object and class specific services, or for development before registration. |
Provide Feedback