Siemens SIMATIC ET 200AL - Page 855

Siemens SIMATIC ET 200AL

1585 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

OPC UA communication

9.3 Using the S7-1500 as an OPC UA server

Communication

Function Manual, 12/2017, A5E03735815-AF

169

Announcing client certificates to the server

You need to send client certificates to the server to allow a secure connection to be

established.

To do so, proceed as follows:

1. Select the "Use global security settings for certificate manager" option in the local

certificate manager of the server. This makes the global certificate manager available.

You will find this option under "Protection & Security > Certificate manager" in the

properties of the CPU that is acting as server.

If the project is not yet protected, select "Security settings > Settings" in the STEP 7

project tree, click the "Protect this project" button and log on.

The "Global security settings" item is now displayed under "Security settings" in the

STEP 7 project tree.

2. Double click "Global security settings".

3. Double click "Certificate manager".

STEP 7 opens the global certificate manager.

4. Click the "Device certificates" tab.

5. Right-click in the tab on a free area (not on a certificate).

6. Select the "Import" command from the shortcut menu.

The dialog for importing certificates is displayed.

7. Select the client certificate that the server is to trust.

8. Click "Open" to import the certificate.

The certificate of the client is now contained in the global certificate manager.

Note the ID of the client certificate just imported.

9. Click the "General" tab in the properties of the CPU that is acting as server.

10.Click "OPC UA > Server > Security > Secure Channel".

11.Scroll down in the "Secure Channel" dialog to the section "Trusted clients".

12.Double-click in the table on the empty row with "<add new>". A browse button is

displayed in the row.

13.Click this button.

14.Select the client certificate that you have imported.

15.Click the button with the green check mark.

16.Compile the project.

17.Load the configuration onto the S7-1500 CPU.

Result

The server now trusts the client. If the server certificate is also considered trusted, the server

and client can establish a secure connection.

Table of Contents

Other manuals for Siemens SIMATIC ET 200AL

Equipment Manual46 pages

Related product manuals

Preview: Siemens SIMATIC ET 200M

Siemens SIMATIC ET 200M

Preview: Siemens SIMATIC ET 200S

Siemens SIMATIC ET 200S

Preview: Siemens SIMATIC ET 200SP

Siemens SIMATIC ET 200SP

Preview: Siemens simatic ET 200MP

Siemens simatic ET 200MP

Preview: Siemens SIMATIC ET 200pro

Siemens SIMATIC ET 200pro

Siemens SIMATIC S5 ET 200U

Preview: Siemens SIMATIC ET 200SP HA

Siemens SIMATIC ET 200SP HA

Preview: Siemens SIMATIC ET 200eco PN

Siemens SIMATIC ET 200eco PN

Preview: Simatic S7-1500 / ET 200MP

Simatic S7-1500 / ET 200MP

Preview: SIMATIC ET 200SP DI 8x24VDC ST

SIMATIC ET 200SP DI 8x24VDC ST

Preview: SIMATIC ET 200SP 6ES7134-6GD01-0BA1

SIMATIC ET 200SP 6ES7134-6GD01-0BA1

Preview: SIMATIC ET 200SP HA DQ 32x24VDC/0.5A HA

SIMATIC ET 200SP HA DQ 32x24VDC/0.5A HA