Black Horse F2 DO 8 01 Safety Outputs Not Activating – Feedback Loop Mismatch and EDM Diagnostic Procedure in HIMatrix Systems - Excellent PLC

Fault Overview

In a HIMatrix-based safety application, the Black Horse F2 DO 8 01 Safety-Related Controller refused to activate safety outputs, despite correct program logic.

Observed symptoms:

Safety conditions satisfied
No SAFE state triggered
Output command TRUE in logic monitor
Physical safety outputs remain OFF
Diagnostic message: “Feedback inconsistency detected”

This indicated a closed-loop safety validation failure rather than hardware damage.

Understanding Safety Output Architecture

Safety outputs in the F2 DO 8 01 controller typically include:

Dual-channel switching
Cross-monitoring between channels
External Device Monitoring (EDM) feedback
Contactor feedback verification
Short-circuit detection

For safety compliance, the controller verifies that commanded state matches physical feedback.

Step 1 – Verify EDM Wiring

EDM_TEST:

Identify feedback terminals.

Measure feedback signal state.

Compare with output command.

Confirm no inversion or wiring swap.

Findings:

Controller commanded ON
Feedback input remained OFF
No change in state detected

This caused controller to block output activation.

Step 2 – Inspect External Contactor Feedback

The safety output controlled a dual-channel contactor set.

Inspection revealed:

One auxiliary contact mechanically stuck
Feedback contact not closing
Slight mechanical wear visible

Controller correctly detected inconsistency.

Why Outputs Stayed Disabled

Safety logic requires:

Output command sent
Physical contactor closes
Feedback confirms closure
Both channels match expected state

If mismatch occurs, controller prevents energization to maintain safe state.

Step 3 – Channel Consistency Verification

DUAL_CHANNEL_TEST:

Measure voltage on both safety channels.

Verify symmetry.

Check cross-short detection status.

Channels were electrically healthy, confirming issue external to controller.

Root Cause – External Feedback Contact Failure

Auxiliary feedback contact inside contactor assembly failed due to:

Mechanical wear
Oxidation
High switching frequency
Lack of preventive maintenance

Controller hardware operated correctly.

Step 4 – Confirmation Test

CONFIRMATION:

Simulate correct feedback (temporary jumper for test only).

Observe controller output activation.

Remove jumper immediately after test.

With simulated correct feedback, outputs activated normally.

Corrective Action Plan

CORRECTIVE_ACTION:

– Replace defective contactor.

– Verify auxiliary contact functionality.

– Perform full safety loop validation.

– Remove temporary test jumper.

After replacing contactor, safety outputs activated as expected.

Engineering Best Practices

Regularly inspect contactor auxiliary contacts.
Avoid excessive switching cycles beyond rating.
Validate EDM wiring during commissioning.
Document safety feedback loop clearly.

Safety controllers block outputs by design when feedback mismatch occurs.

Conclusion

When safety outputs on the Black Horse F2 DO 8 01 Safety-Related Controller cannot be activated despite correct logic, feedback loop inconsistency is often the root cause. Structured EDM verification ensures accurate diagnosis and maintains HIMatrix system safety integrity.