The first time you try to connect an OPC UA client to an OPC UA server, a certificate exchange must take place in order for the two applications to be able to connect and share data.
The OPC UA server must have the OPC UA client's certificate The exact behavior of the certificate exchange will vary between servers. The server will either:
- proceed with the certificate exchange and add it to its trusted store,
- proceed with the certificate exchange, but not accept the certificate and place it in its accepted store,
- ignore the attempt to connect, until you
manually exchange the certificates.
Please refer to the OPC UA Server's documentation for information on how to proceed with the certificate exchange.
In the first case:
- You have only to accept certificates, otherwise is nothing to do.
In the second case:
- Administrator need to move certificates from accepted store to trusted store.
Additional help for you: Move Certificates [
^]
In the third case:
- To become client certificate
manually in OPC UA server you need to do four simple steps:
1) Create certificate on a client machine.
2) Export certificate in a file.
3) Copy certificate file to an OPC UA server machine.
4) Import certificate from the file.
Additional help for you: Import or export certificates and private keys[
^]
Submit an article or tip