Svein Folkeson
New Member
Members
Forum Posts: 2
Member Since:
11/20/2018
11/20/2018
Offline
I am responsible for more than 200 OPC UA Servers. My job is to keep all certificates and crl’s up to date.
To handle this amount of UA Servers we are using GDS.
If a certificate expires then it is no longer possible to access the UA Server.
I have experienced that expired crls doesnt affect the access to the UA Servers. Is that as it should be?
Is the expire date on a crl just to consider as an information with no other consequences.
Randy Armstrong
Admin
Forum Posts: 1579
Member Since:
05/30/2017
05/30/2017
Offline
OPC UA applications are not required to enforce the expiry dates on CRLs so most do not.
This is not ideal but given the need to maintain copies of CRLs on every device it was something that was seen as more practical.
Once GDS are widely available and deployed the specification could look at this issue.
Forum Timezone: America/Phoenix
Most Users Ever Online: 510
Currently Online: Rafael Silva_1
Guest(s) 25
Currently Browsing this Page:
1 Guest(s)
1 Guest(s)
Top Posters:
Forum Stats:
Groups: 2
Forums: 10
Topics: 1446
Posts: 4890