Dear Community User! We have started the migration process.
This community is now in READ ONLY mode.
Read more: Important information on the platform change.

cancel
Showing results for 
Search instead for 
Did you mean: 
SOLVED

Generate OPC UA client certificate

Generate OPC UA client certificate

teracloud
Member

Hi,

We are trying to create a valid certificate for authentication an OPC UA client with the Bosch CtrlX OPC UA server. We've tried the OPC UA test client, and it can generate a valid certificate just fine (after trusting the certificate in CtrlX), but obviously this has limitations, so we would like to be able to create our own certificates for this purpose.

However, we've had no luck so far. The server rejects every certificate we've tried without any details on what's wrong. There is nothing the Logbook as far as we can see (yes, we tried enabling settings to see trace messages). Are there any instructions on how to create a valid certificate?

Regards

2 REPLIES 2

smueller
Established Member

Hi teracloud,

we want to invesetigate the issue. Can please help us with the following points:

  • Can you please provide us the certificate. Thus we can proof it.
  • How did you provide the certificate to ctrlX?
  • How does the ctrlX certificate manager for the opcua server look like?
  • Which version of the opc ua server app do you use?

Best regards,

smueller

Hi,

Sorry for the late reply. I didn't get a notification that someone had replied.

After some more trial and error, we managed to generate a valid certificate that the CtrlX OPC UA server accepts. What we did was generate it using OpenSSL, then just configure out client with the certificate and connect to the server. This caused the server to automatically reject the certificate, and we were able to go into the certificates in the PLC and mark it as trusted. Then everything worked.

We use version 1.20.1. I am attaching a generated certificate so you can look at it. We don't know if it has additional fields/privileges missing or that don't need to be there.

Regards

Icon--AD-black-48x48Icon--address-consumer-data-black-48x48Icon--appointment-black-48x48Icon--back-left-black-48x48Icon--calendar-black-48x48Icon--center-alignedIcon--Checkbox-checkIcon--clock-black-48x48Icon--close-black-48x48Icon--compare-black-48x48Icon--confirmation-black-48x48Icon--dealer-details-black-48x48Icon--delete-black-48x48Icon--delivery-black-48x48Icon--down-black-48x48Icon--download-black-48x48Ic-OverlayAlertIcon--externallink-black-48x48Icon-Filledforward-right_adjustedIcon--grid-view-black-48x48IC_gd_Check-Circle170821_Icons_Community170823_Bosch_Icons170823_Bosch_Icons170821_Icons_CommunityIC-logout170821_Icons_Community170825_Bosch_Icons170821_Icons_CommunityIC-shopping-cart2170821_Icons_CommunityIC-upIC_UserIcon--imageIcon--info-i-black-48x48Icon--left-alignedIcon--Less-minimize-black-48x48Icon-FilledIcon--List-Check-grennIcon--List-Check-blackIcon--List-Cross-blackIcon--list-view-mobile-black-48x48Icon--list-view-black-48x48Icon--More-Maximize-black-48x48Icon--my-product-black-48x48Icon--newsletter-black-48x48Icon--payment-black-48x48Icon--print-black-48x48Icon--promotion-black-48x48Icon--registration-black-48x48Icon--Reset-black-48x48Icon--right-alignedshare-circle1Icon--share-black-48x48Icon--shopping-bag-black-48x48Icon-shopping-cartIcon--start-play-black-48x48Icon--store-locator-black-48x48Ic-OverlayAlertIcon--summary-black-48x48tumblrIcon-FilledvineIc-OverlayAlertwhishlist