Please ensure Javascript is enabled for purposes of website accessibility
Powered by Zoomin Software. For more details please contactZoomin

AVEVA™ Recipe Management

Create a Self-Signed OPC UA Compliant Certificate and Key Pair

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
TABLE OF CONTENTS

Create a Self-Signed OPC UA Compliant Certificate and Key Pair

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
  • Last UpdatedMay 17, 2024
  • 2 minute read

To create self-signed OPC UA compliant certificate/key pair

  1. Start the UA Configuration Utility by clicking the Start button on the Windows task bar and pointing to Programs. Point to the OPC Foundation folder that contains the UA Configuration Utility, click UA, and then click UA Configuration Tool.

  2. Click the Manage Application tab, and then click Create Application Certificate. The Create Certificate dialog box appears.

    NOTE: You can use the default server in Application To Manage box.

  3. In the Create Certificate dialog box, do the following:

    1. Store Type: From the Store Type list, select Directory if your UA Client is running on the local computer.

    2. Store Path: It is recommended to create a temporary directory to store and copy the certificate and the private key. For example, C:\Tmp\TestUACert

    3. CA Key File: This field is optional if you are creating a self-signed certificate.

    4. CA Password: This field is optional, if you are creating a self-signed certificate.

    5. Application Name: This field contains the name of your UA Client service. Enter ASB OPC UA Client Service that matches the name used in Subject Name and Application URI.

    6. Application URI: Select the Application URI box, and enter the application URI in the below format: urn:localhost:ASB OPC UA Client Service

    7. Subject Name: Select the Subject Name box and enter the subject name in the below format:
      CN=ASB OPC UA Client Service

    8. Domains: Select the Domains box and enter “localhost” in the Domains box.

    9. Key Format: Select PFX from the list.

    NOTE: Items f, g, and h need to be compliant with the OPC UA standard.

  4. Click OK. The certificate and the private key files are generated under “certs” and “private” subdirectories in the C:\Tmp\TestUACert directory.

    NOTE: To rename the certificate file, and the private key files, do the following:
    In C:\Tmp\TestUACert\certs directory, rename the certificate file as aaUAClient.der.
    In C:\Tmp\TestUACert\private directory, rename the private key file as aaUAClient.pfx.

TitleResults for “How to create a CRG?”Also Available in