Configuration
4.8 OPC UA
SIMATIC CC7
72 Operating Instructions, 10/2019, C79000-G8976-C503-02
– Basic256Sha256 (SecurityPolicy [B])
Signing and 256-bit encryption (SHA-256)
The supplementary Conformance Units (Signing / Encryption) mean:
– Sign
The gateway only allows communication with signed frames.
– Sign and encrypt
The gateway only allows communication with signed and encrypted frames.
Trusted clients
● No certificate validation
With this option you disable the validation of the partner certificates.
When this option is enabled, the gateway generally permits communication even if the
criteria of the certificate validation listed below are not met or when the client certificate is
not included in the list of trusted clients.
When the option is disabled, the gateway validates the certificates of its partners, except
if "SecurityPolicy - None" is selected.
For information on the check mechanisms, refer to the "Certificate validation" section
below.
●
Import client certificate > Browse
You use this option to import the certificates of communication partners you trust.
Requirement for import of a certificate is that it is available in the PC file system.
Imported certificates are displayed in a table with their parameters.
●
Imported client certificates
The following parameters are displayed:
–
File
The name and path of the certificate file are displayed.
–
Issuer
Certificate authority that issued the certificate.
–
Certificate owner (CN)
Name of the device (or certificate authority) for which the certificate was issued.
–
Valid from
Start date of the period of validity of the certificate
–
Valid to
End date of the period of validity of the certificate
–
Finger print
Finger print (Digest) of the certification data
To Next Page
Loading...
