Configuration
4.8 OPC UA
SIMATIC CC7
70 Operating Instructions, 10/2019, C79000-G8976-C503-02
4.8.2 OPC UA Security
Security mechanisms
The gateway supports the following security profiles in accordance with the OPC UA
specification:
●
SecurityPolicy
It determines the signing and encryption of the transferred data.
●
UserToken
Enables authentication using certificates.
●
Authentication of the communications partners with user name and password
See section Authentication (Page 73) for more on this.
For information on the OPC UA profiles of the OPC Foundation, see:
Profiles (https://apps.opcfoundation.org/ProfileReporting)
Server security
First you specify with the first two options whether the OPC UA server of the gateway is to
use a self-signed or an imported certificate.
●
Use self-signed certificate
Select this option when the gateway is to use a self-signed server certificate.
When the option is enabled, the corresponding GUI elements are shown:
–
Created server certificate
Shows the name of the created certificate.
–
+
Opens the following dialog for configuring the certificate to be created:
"Create new certificate"
In this dialog, you configure the parameters of the certificate you are going to create.
Note:
Ensure the consistency with the configuration data of the OPC UA server in section OPC
UA server (Page 68).
– Issuer
Issuer of the certificate. Default: Siemens
– Common name of subject (CN)
Application name of the gateway
– Signing Algorithm
Select the required hash algorithm and the encryption method.
For possible options, see the topic "Security Policy" below.
– Validity period (days)
Enter the required period of validity.
To Next Page
Loading...
