Table of Contents
Advertisement
Configuration
4.8 OPC UA
4.8.2
OPC UA Security
Security mechanisms
The gateway supports the following security profiles in accordance with the OPC UA
specification:
● SecurityPolicy
It determines the signing and encryption of the transferred data.
● UserToken
Enables authentication using certificates.
● Authentication of the communications partners with user name and password
See section Authentication (Page 73) for more on this.
For information on the OPC UA profiles of the OPC Foundation, see:
Profiles (https://apps.opcfoundation.org/ProfileReporting)
Server security
First you specify with the first two options whether the OPC UA server of the gateway is to
use a self-signed or an imported certificate.
● Use self-signed certificate
Select this option when the gateway is to use a self-signed server certificate.
When the option is enabled, the corresponding GUI elements are shown:
– Created server certificate
– +
"Create new certificate"
In this dialog, you configure the parameters of the certificate you are going to create.
Note:
Ensure the consistency with the configuration data of the OPC UA server in section OPC
UA server (Page 68).
– Issuer
– Common name of subject (CN)
– Signing Algorithm
– Validity period (days)
70
Shows the name of the created certificate.
Opens the following dialog for configuring the certificate to be created:
Issuer of the certificate. Default: Siemens
Application name of the gateway
Select the required hash algorithm and the encryption method.
For possible options, see the topic "Security Policy" below.
Enter the required period of validity.
Operating Instructions, 10/2019, C79000-G8976-C503-02
SIMATIC CC7
Advertisement
Table of Contents
