Please ensure Javascript is enabled for purposes of website accessibility
Powered by Zoomin Software. For more details please contactZoomin

AVEVA™ Plant SCADA

TABLE OF CONTENTS

Personal Certificates Requirements

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
  • Last UpdatedSep 18, 2024
  • 1 minute read

If you are using certificates from a system administrator, an IT department, or a certified third-party vendor to enable encryption, the personal certificate provided to you needs to meet the following requirements.

Field

Value

Comment

Key Usage

Digital Signature, Key Encipherment, Data Encipherment (b0)

Required.

Enhanced Key Usage

Server Authentication (1.3.6.1.5.5.7.3.1)

Required.

Subject Alternative Name

DNS Name=localhost

Optional.

Only required when your client accesses your web applications via localhost.

DNS Name=[machine name]

Required.

Used by your client to access web applications via the machine name.

For example:

DNS Name=mymachineName

DNS Name=[fully qualified domain name]

Required if you are using AVEVA Industrial Graphics.

The framework uses the FQDN as the endpoint identity to authenticate the web service.

This item needs to be the last entry in the SAN list due to a known Microsoft .Net Framework issue.

For example:

DNS Name=mymachine.mydomain.com

Friendly name

A friendly display name

Required.

Configurator displays the friendly name in the certificate drop-down list.

See Also

Use Externally Provided Certificates for Encryption

TitleResults for “How to create a CRG?”Also Available in