Mercedes-Benz has implemented advanced security measures within XENTRY Diagnosis, making online operations even more secure. For professionals utilizing Xentry Mercedes Online for ECU commissioning, programming, and coding (XENTRY Flash), a mandatory second authentication layer has been introduced for each user. This enhanced security protocol mirrors the TAN authentication familiar in online banking, ensuring robust protection for vehicle systems.
To successfully authenticate and access XENTRY Mercedes online functionalities, you will require one of the following two-factor authentication methods:
- Smartphone Authenticator App: Utilize a compatible app such as PingID or Microsoft Authenticator on your smartphone.
OR
- USB Security Key: Employ a USB security key of your choice, provided it adheres to the FIDO2 standard. These keys are readily available from electronics retailers or directly from manufacturers.
We strongly advise setting up both authentication options immediately. This redundancy ensures uninterrupted workflow even if one authentication method becomes inaccessible, allowing you to continue working with XENTRY Mercedes online using the alternative.
To guide you through the setup process, a comprehensive HelpCard is available for download, providing step-by-step instructions.
Downloadable Resource
— HelpCard (PDF)
Managing Your Second Factor Authentication for XENTRY Mercedes Online
In situations where authentication becomes problematic, several recovery options are available to ensure continued access to XENTRY Mercedes online:
-
Alternative Second Factor: If you lose access to your primary authentication method (e.g., smartphone), but have configured a USB security key as a secondary factor, you can seamlessly use the USB key for authentication.
-
Organization Administrator Assistance: If you lack an alternative second factor, reach out to your organization administrator. They possess the authority to reset your second factor, enabling you to set up a new authentication method and regain access to XENTRY Mercedes online. You can identify your Org admin through Alice under your profile data by selecting “Administrators.”
Detailed instructions for organization administrators on resetting the second factor are provided in the following downloadable PDF:
Instructions for org admins on how to reset the second factor (PDF).
Versatile Applications of XENTRY Flash via XENTRY Mercedes Online in Your Workshop
XENTRY Mercedes online with XENTRY Flash offers comprehensive support for a wide range of essential workshop tasks. Whether you are performing flashing, SCN/CVN coding, or inputting equipment codes, XENTRY Flash is compatible with Mercedes-Benz Cars (including smart*, Maybach, and SLR) and Mercedes-Benz Vans. For truck diagnostics, an online parameterization process is available, accelerating data availability within the workshop environment following control unit replacements. Crucially, all these processes are seamlessly integrated within the familiar diagnostics software suite (XENTRY Diagnosis, XENTRY DAS), minimizing manual interventions required from your technicians and optimizing workflow efficiency when working with XENTRY Mercedes online.
* except smart model #1
Streamlined Coding and Documentation with XENTRY Mercedes Online
The efficiency of XENTRY Mercedes online extends beyond programming. After control unit programming, the SCN coding process (if permitted by the control unit) and VeDoc reverse documentation are executed automatically within the VeDoc Vehicle Documentation System. This automated synchronization ensures that any modifications to the vehicle or control unit software are instantly updated on the VeDoc vehicle data card, maintaining accurate and up-to-date vehicle records within XENTRY Mercedes online.
Single Sign-On Convenience with XENTRY Mercedes Online
XENTRY Mercedes online prioritizes user convenience through Single Sign-On (SSO) functionality. Once logged into one Mercedes-Benz workshop application (e.g., XENTRY Flash, WIS), further logins to central online systems are eliminated. This streamlined access significantly enhances workflow efficiency within your workshop, allowing technicians to move seamlessly between applications without repeated authentication steps. For security, users are automatically logged out of the online systems after one hour of inactivity within XENTRY Mercedes online.
Understanding Diagnosis User Rights within XENTRY Mercedes Online
New diagnosis user rights implemented from June 2020
With the introduction of the E-Class facelift and the new S-Class models, Mercedes-Benz implemented a refined security concept that significantly influences the utilization of XENTRY Diagnosis software and XENTRY Mercedes online.
Starting with the June 2020 data release, accessing diagnostics for the new E-Class and S-Class vehicles necessitates entering a personalized username and password. Diagnosing these vehicles without this authentication is no longer possible. This crucial security measure means that repair and diagnostic procedures on these models are restricted without valid diagnosis access authorization within XENTRY Mercedes online. Every user must undergo an identification process to acquire the necessary user rights for the E-Class facelift models and subsequent releases. It’s important to note that diagnosing these model series with a XENTRY Diagnosis Kit 2 is no longer supported. A XENTRY Diagnosis Kit 3 or later is now the minimum requirement for accessing XENTRY Mercedes online for these vehicles.
Two distinct categories of user rights are established within XENTRY Mercedes online:
- XENTRY Standard Diagnosis: Intended for diagnosis users without XENTRY Flash authorization. This level permits operations such as reading and erasing fault memories.
- XENTRY Flash User: Corresponds to the previous XENTRY Flash user role, granting full access to flashing and coding functionalities within XENTRY Mercedes online.
Acquiring User Rights for XENTRY Mercedes Online:
1. XENTRY Flash Authorization: Both XENTRY Flash roles (Standard-Flash role and Extended Flash role for all CeBAS vehicles) can be requested through UMAS (User Management & Authorization System). Each user is required to complete a one-time identification process via UMAS to obtain these Flash roles for XENTRY Mercedes online.
2. XENTRY Standard Diagnosis Rights: Every diagnosis user must independently request Standard Diagnosis rights via https://umas.mercedes-benz.com/umas and complete the one-time identification process. In some cases, market-specific ISP support may need to create the user in GEMS if a user ID is not already present to enable access to XENTRY Mercedes online.
The Necessity of Certificate-Based Diagnosis in XENTRY Mercedes Online
Modern vehicles are evolving into sophisticated “mobile computers,” making them increasingly vulnerable to cyberattacks and unauthorized access. Growing media attention on vehicle hacking underscores this rising threat. Furthermore, UNECE regulations are being implemented to mandate vehicle cybersecurity protection. Mercedes-Benz is proactively introducing robust security measures to mitigate these risks and protect vehicle systems and customer data accessed through XENTRY Mercedes online.
To safeguard against unauthorized diagnosis access, the latest Mercedes-Benz vehicle software architecture incorporates user-related security certificates. This certificate-based diagnosis is integral to maintaining the security and integrity of XENTRY Mercedes online operations.
Vehicle Applicability of Certificate-Based Diagnosis in XENTRY Mercedes Online
Certificate-based diagnosis was initially introduced in E-Class facelift vehicles (model series W213 facelift) with specific control units. The S-Class W223 marked the full-scale implementation of this security protocol. Moving forward, all new Mercedes-Benz model series and facelifts will incorporate certificate-based diagnosis as a standard security feature, ensuring secure interactions via XENTRY Mercedes online.
Diagnostic Procedure Modifications in XENTRY Mercedes Online
With the advent of certificate-based diagnosis, performing diagnostics on affected vehicles now requires a manufacturer-provided certificate. At the initiation of a diagnosis session within XENTRY Mercedes online, this certificate is automatically exchanged between the diagnostic tester and the vehicle in a background process. This seamless certificate exchange ensures secure communication and authorized access to vehicle systems through XENTRY Mercedes online.
Obtaining Certificates for XENTRY Mercedes Online: Registration Process
For Independent Workshops Utilizing XENTRY Mercedes Online:
- If you possess a XENTRY Diagnosis Kit 3 or 4, or utilize XENTRY Pass Thru EU, the necessary certificates are directly provided by Mercedes-Benz AG, simplifying the process of accessing XENTRY Mercedes online.
- If you utilize a diagnosis tool from an independent manufacturer, certificate provision depends on whether the tool manufacturer has established a data agreement with Mercedes-Benz AG. Contact your tool manufacturer to confirm certificate availability for XENTRY Mercedes online access.
For Diagnosis Tool Manufacturers: (Further information for tool manufacturers, technical inspection agencies, and official bureaus would be provided by Mercedes-Benz directly if applicable to the user’s role as content creator for xentryportal.store, but is omitted here as the focus is on end-users of XENTRY Mercedes online).
Cost Implications of Certificates for XENTRY Mercedes Online Users
Mercedes-Benz AG provides these essential security certificates to all customers free of charge. This commitment ensures that enhanced security for XENTRY Mercedes online is accessible to all users without incurring additional costs.
Data Requirements for Certificate Acquisition within XENTRY Mercedes Online
The specific data requirements for certificate acquisition vary depending on the level of access required within XENTRY Mercedes online:
- Read Access Authorizations: These are organization-bound and must be issued for an organization or service operation, simplifying access for workshop personnel.
- Write Access Authorizations: These authorizations are personalized and necessitate prior personal authentication, either through Mercedes-Benz AG or the independent tool manufacturer, ensuring a higher level of security for critical write operations within XENTRY Mercedes online.
OBD-II Functionality and Certificate Requirements in XENTRY Mercedes Online
Standard OBD-II functions (SAE J1979) remain unrestricted and accessible without requiring diagnosis certificates. However, all advanced diagnostic functions beyond OBD-II necessitate valid diagnosis certificates. These certificates are either organization-bound or person-bound, contingent on the level of access authorization required for the specific diagnostic operation within XENTRY Mercedes online.
XENTRY Flash Support for XENTRY Mercedes Online Users
For any assistance or queries regarding XENTRY Flash and XENTRY Mercedes online, you can explore the “Need help?” section within the application to access FAQs. If you cannot find a suitable answer in the FAQs, you can open a support ticket via the provided link at the bottom of the page ticket. The support team is readily available to assist with any technical issues or questions related to XENTRY Mercedes online.
