Sign in with
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
SOLVED

Generate OPC UA client certificate

Go to solution

Generate OPC UA client certificate

Go to solution
teracloud
Member

‎08-09-2023 01:59 PM

Hi,

We are trying to create a valid certificate for authentication an OPC UA client with the Bosch CtrlX OPC UA server. We've tried the OPC UA test client, and it can generate a valid certificate just fine (after trusting the certificate in CtrlX), but obviously this has limitations, so we would like to be able to create our own certificates for this purpose.

However, we've had no luck so far. The server rejects every certificate we've tried without any details on what's wrong. There is nothing the Logbook as far as we can see (yes, we tried enabling settings to see trace messages). Are there any instructions on how to create a valid certificate?

Regards

0 Likes
Reply
2 REPLIES 2

Go to solution
smueller
Established Member

‎08-22-2023 05:49 PM

Hi teracloud,

we want to invesetigate the issue. Can please help us with the following points:

  • Can you please provide us the certificate. Thus we can proof it.
  • How did you provide the certificate to ctrlX?
  • How does the ctrlX certificate manager for the opcua server look like?
  • Which version of the opc ua server app do you use?

Best regards,

smueller

0 Likes
Reply

Go to solution
teracloud
Member
In response to smueller

‎09-06-2023 12:04 PM

Hi,

Sorry for the late reply. I didn't get a notification that someone had replied.

After some more trial and error, we managed to generate a valid certificate that the CtrlX OPC UA server accepts. What we did was generate it using OpenSSL, then just configure out client with the certificate and connect to the server. This caused the server to automatically reject the certificate, and we were able to go into the certificates in the PLC and mark it as trusted. Then everything worked.

We use version 1.20.1. I am attaching a generated certificate so you can look at it. We don't know if it has additional fields/privileges missing or that don't need to be there.

Regards

OPC UA client.zip
0 Likes
Reply

OK
OK
Icon--AD-black-48x48Icon--address-consumer-data-black-48x48Icon--appointment-black-48x48Icon--back-left-black-48x48Icon--calendar-black-48x48Icon--center-alignedIcon--Checkbox-checkIcon--clock-black-48x48Icon--close-black-48x48Icon--compare-black-48x48Icon--confirmation-black-48x48Icon--dealer-details-black-48x48Icon--delete-black-48x48Icon--delivery-black-48x48Icon--down-black-48x48Icon--download-black-48x48Ic-OverlayAlertIcon--externallink-black-48x48Icon-Filledforward-right_adjustedIcon--grid-view-black-48x48IC_gd_Check-Circle170821_Icons_Community170823_Bosch_Icons170823_Bosch_Icons170821_Icons_CommunityIC-logout170821_Icons_Community170825_Bosch_Icons170821_Icons_CommunityIC-shopping-cart2170821_Icons_CommunityIC-upIC_UserIcon--imageIcon--info-i-black-48x48Icon--left-alignedIcon--Less-minimize-black-48x48Icon-FilledIcon--List-Check-grennIcon--List-Check-blackIcon--List-Cross-blackIcon--list-view-mobile-black-48x48Icon--list-view-black-48x48Icon--More-Maximize-black-48x48Icon--my-product-black-48x48Icon--newsletter-black-48x48Icon--payment-black-48x48Icon--print-black-48x48Icon--promotion-black-48x48Icon--registration-black-48x48Icon--Reset-black-48x48Icon--right-alignedshare-circle1Icon--share-black-48x48Icon--shopping-bag-black-48x48Icon-shopping-cartIcon--start-play-black-48x48Icon--store-locator-black-48x48Ic-OverlayAlertIcon--summary-black-48x48tumblrIcon-FilledvineIc-OverlayAlertwhishlist