Certificate does not have a security Policy defined in CTT|OPC Certification and Interoperability Testing|Forum|OPC Foundation

Avatar
sp_LogInOut Log In
sp_Search Search
Advanced Search
Search
Forum Scope


Match



Forum Options



Minimum search word length is 3 characters - maximum search word length is 84 characters
sp_Search Search
Lost password?
sp_Feed sp_PrintTopic sp_TopicIcon
Certificate does not have a security Policy defined in CTT
Avatar
Mohammad Rahil Quazi
Member
Members
Forum Posts: 8
Member Since:
04/08/2025
sp_UserOfflineSmall Offline
1
08/20/2025 - 23:07
sp_Permalink sp_Print

Hi Everyone,

I am New to CTT tool, I am running OPC UA server(open62541) and Using CTT tool to connect to it , below are things which I found during my experimentation: 

1. On the project settings tab I am able to do open Browse and also I am able to see the objects created by me. (hence Iam assuming, Iam able to establish connection with the server).

2. In CTT settings tab only I set both message security mode and requested security policy Uri as None.

3. Iam trying to run companion spec (OPC UA FX) , in this iam trying to execute UAFX Asset Connector Id, But iam failing at beforeTest.js itself with errors as Ceritificate does not have a security policy Uri defined.

Below is the error:

Warning:

GetEndpoints.Response.Endpoints[0].UserIdentityTokens[1].Certificate does not have a security policy Uri defined, the secure channel doesn't either

Error:

Part 4 section 7.36.4 states "the server should specify a security policy for the user token policy if the secure channel has security policy of none"

can someone pls guide me how to resolve this issue, if some changes need to be done on server side then where to do those changes in open62541.

Thanks in advance

Regards,

Rahil

Avatar
Alexander Allmendinger
Germany
Moderator
Members

Moderators

Moderators-Specifications

Moderators-Companion

Moderators-Implementation

Moderators-Certification

Moderators-ProductsServices
Forum Posts: 76
Member Since:
07/11/2017
sp_UserOfflineSmall Offline
2
08/25/2025 - 12:57
sp_Permalink sp_Print

Dear Rahil,

from the CTT errors you provided it sounds like you are running your server with an invalid configuration or invalid certificate. Since the open62541 is not an OPC Foundation offering you will potentially get a faster feedback when you use the issues in the open62541 GitHub project.

Since the demo server included in the GitHub project just last year has successfully passed certification, you may be able to check its configuration and adopt it to your machine and application accordingly to solve the issues.

Regards,
Alexander Allmendinger

Avatar
Paul Hunkar
Cleveland, Ohio, USA
Moderator
Members

Moderators-Specifications

Moderators-Companion

Moderators-Implementation

Moderators-Certification

Moderators-COM
Forum Posts: 124
Member Since:
02/24/2014
sp_UserOfflineSmall Offline
sp_UserWebsite
3
08/26/2025 - 18:48
sp_Permalink sp_Print

Rahil,

  In addition to what Alexander said, UAFX does require security and it sounds like you have not configured any security, so that maybe a start to what you need to look at in GitHub for your project.

Paul

Paul Hunkar - DSInteroperability

sp_Feed
Go to top
Forum Timezone: America/Phoenix
Most Users Ever Online: 510
Currently Online:
Guest(s) 18
Currently Browsing this Page:
1 Guest(s)
Top Posters:
Forum Stats:
Groups: 2
Forums: 10
Topics: 1512
Posts: 5119