ApplicationConfiguration.SaveToFile() removes "RejectSHA1SignedCertificates" | OPC UA Implementation: Stacks, Tools, and Samples | Forum

Avatar
Search
Forum Scope


Match



Forum Options



Minimum search word length is 3 characters - maximum search word length is 84 characters
Lost password?
sp_Feed sp_PrintTopic sp_TopicIcon
ApplicationConfiguration.SaveToFile() removes "RejectSHA1SignedCertificates"
Avatar
sudhakar@softwaretoolbox.com
New Member
Members
Forum Posts: 2
Member Since:
05/01/2014
sp_UserOfflineSmall Offline
1
06/06/2019 - 06:17
sp_Permalink sp_Print

Hi Team,

We are using Opc.Ua.Core.dll and Opc.Ua.Client.dll ( Version 1.4.354 )  in our application . Our application is targeted to .NET framework 4.6. Basically we have upgraded the OPC foundation SDK from Version 1.3.342  to version 1.04.354.

 

 Problem :
When we try to communicate our OPC UA client application to any OPC UA server with any security mode ( Basic128Rsa15 , Basic 256 ) We are getting the  error message
“SHA1 signed certificates are not trusted” .

It works fine with NONE security .

based on the reference https://github.com/OPCFoundati.....issues/306,
We have added below nodes under  ‘SecurityConfiguration’ in   our configuration file
  <RejectSHA1SignedCertificates>false</RejectSHA1SignedCertificates>
  <MinimumCertificateKeySize>1024</MinimumCertificateKeySize>

But the ApplicationConfiguration.SaveToFile() function removes the node "RejectSHA1SignedCertificates" from the configuration file .
Could you please advice us any solution for this?

 

Thanks
Antoni

Avatar
Randy Armstrong
Admin
Forum Posts: 270
Member Since:
05/30/2017
sp_UserOfflineSmall Offline
2
06/10/2019 - 07:58
sp_Permalink sp_Print

SHA1 is no longer permitted for X509 signatures because of known security exploits.

The SDK has been updated to prevent users from compromising their applications intentionally or accidentally.

Forum Timezone: America/Phoenix
Most Users Ever Online: 143
Currently Online:
12
Guest(s)
Currently Browsing this Page:
1 Guest(s)
Top Posters:
Newest Members:
andre.broering@stud.th-owl.de
Forum Stats:
Groups: 2
Forums: 9
Topics: 565
Posts: 1611

 

Member Stats:
Guest Posters: 1
Members: 98700
Moderators: 10
Admins: 3
Administrators: michael.bryant@opcfoundation.org, thomas.burke@opcfoundation.org, Randy Armstrong
Moderators: matthias.damm@ascolab.com, s.hoppe@beckhoff.com, paul.hunkar@dsinteroperability.com, jouni.aro@prosys.fi, tim.fortin@honeywell.com, Jim.Luth@Schneider-Electric.com, Karl-Heinz Deiretsbacher, stefan.hoppe@opcfoundation.org, alexander.allmendinger@opcfoundation.org, Karl Deiretsbacher