CA Certificates |OPC Certification and Interoperability Testing|Forum|OPC Foundation

Avatar
Search
Forum Scope


Match



Forum Options



Minimum search word length is 3 characters - maximum search word length is 84 characters
Lost password?
sp_Feed sp_PrintTopic sp_TopicIcon
CA Certificates
Avatar
Pradeep Patel
Member
Members
Forum Posts: 9
Member Since:
03/31/2020
sp_UserOfflineSmall Offline
1
05/04/2023 - 03:07
sp_Permalink sp_Print

Hi Team,

I have tested my OPC UA client/Application for secure connection using self signed certificates and it works fine. Now I want to try to establish the secure connection using CA signed certificates for that I need help to get trusted certificate via ACME protocol or some other tool to avail free CA signed certificates.  Please share input on this subject.

Thanks, 

Avatar
Randy Armstrong
Admin
Forum Posts: 1498
Member Since:
05/30/2017
sp_UserOfflineSmall Offline
2
05/05/2023 - 03:49
sp_Permalink sp_Print

With OPC UA, you do not generally use global authorities as CA because it is impossible to verify hostnames of devices installed on factory floor with no direct access to the Internet.

It is expected that factory owners will have their own on premise CAs (or at least CAs run by the corporate IT department). The OPC UA specification includes an API designed to allows OPC UA applications to get signed Certificates from the on premise CA. (see https://reference.opcfoundatio.....v105/docs/ )

A sample CertificateManager is here:
https://github.com/OPCFoundati.....amples/GDS

Forum Timezone: America/Phoenix
Most Users Ever Online: 510
Currently Online:
Guest(s) 17
Currently Browsing this Page:
1 Guest(s)
Top Posters:
Forum Stats:
Groups: 2
Forums: 10
Topics: 1381
Posts: 4680