Please ensure Javascript is enabled for purposes of website accessibility
Powered by Zoomin Software. For more details please contactZoomin

AVEVA™ InTouch HMI

TABLE OF CONTENTS

OPC UA configuration checklist

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
  • Last UpdatedJul 29, 2024
  • 2 minute read

Required tasks for end-to-end configuration of the OPC UA server and OPC UA client

The configuration tasks are shown in the order in which they must be completed.

  1. Configure the System Management Server: The System Management Server is used for establishing a trust relationship between machines, and must be configured to ensure secure communications between nodes. The System Management Server is normally configured during initial System Platform installation. See System Platform Installation, "Configure the System Management Server," for details.

    Note: InTouch HMI must be run in the context of a user with Administrative privileges, which gives InTouch HMI access to the encryption certificates that enable secure communications.

  2. Configure the OPC UA server: Set the configuration options, test the OPC UA Server connection, and activate the Gateway Communication Driver..

  3. IT compliance/firewall validation: Firewall configuration and verification must be completed at this point of the configuration. The node to which the OPC UA Server has been deployed must have Inbound Rules for the firewall configured and verified.

    IMPORTANT! A firewall test must be successfully performed before proceeding with the remaining configuration tasks.

  4. Configure the OPC UA Client: Client configuration may include the following:

    • Define the OPC UA server address (in the format opc.tcp://<ServerName>:<PortNumber>).

    • Select the correct OPC UA server security policy (Basic256Sha256).

    • Add the users to the InTouchHMIOPCUAWriteUsers user group.

    • Enter the configured OPC UA User Credentials (username and password)

    • Anonymous Connections are supported only for reading InTouch tags. To avoids any security risks, it is recommended to access the data using authenticated credentials.

  5. Security Certificate: Download and configure the OPC UA security certificate on the run-time node.

  6. Validate connectivity: Open the OPC UA client and verify that you can connect to the OPC UA Server, and can view items in the namespace.

TitleResults for “How to create a CRG?”Also Available in