Server with SecurityPolicy None disabled by default|OPC UA Standard|Forum|OPC Foundation

Avatar
Search
Forum Scope


Match



Forum Options



Minimum search word length is 3 characters - maximum search word length is 84 characters
Lost password?
sp_Feed sp_PrintTopic sp_TopicIcon
Server with SecurityPolicy None disabled by default
Avatar
Jonas Green
Halmstad, Sweden
Member
Members
Forum Posts: 23
Member Since:
05/24/2017
sp_UserOfflineSmall Offline
1
12/13/2018 - 00:46
sp_Permalink sp_Print

Hi,

I’m developing a product where I would like to keep the SecurityPolicy None disabled by default (as recommended in Part 2, chapter 4.7). To my understanding I still need to support a “Discovery endpoint” to allow clients performing the Discovery services GetEndpoints, FindServers and FindServersOnNetwork without security.

I have a couple of questions that I can’t sort out in the specifications:

  1. Shall the Discovery Endpoint be listed among the EndpointsDescriptions in the GetEndpoints response and in the CreateSession response?
  2. Shall the CreateSession request be denied when using the Discovery Endpoint or is it enough to deny the client to activate a session on the Discovery Endpoint?
Avatar
Randy Armstrong
Admin
Forum Posts: 1579
Member Since:
05/30/2017
sp_UserOnlineSmall Online
2
12/14/2018 - 09:27
sp_Permalink sp_Print

This feature is usually handled by the stack.

The typical implementation checks the security policy on the open secure channel request.

If the policy is None and None is not allowed a special securechannel is opened that will only allow the FindServers and GetEndpoints requests and returns BadSecurityPolicyRejected for other request types.

The application layer would never receive notifications that a CreateSession request was received.

See:

https://github.com/OPCFoundati…..Channel.cs

Search for “DiscoveryOnly”.

Forum Timezone: America/Phoenix
Most Users Ever Online: 510
Currently Online: Randy Armstrong
Guest(s) 51
Currently Browsing this Page:
1 Guest(s)
Top Posters:
Forum Stats:
Groups: 2
Forums: 10
Topics: 1445
Posts: 4889