Connecting the OPC UA Gateway to Servers with Security Policies

3 posts / 0 new
Last post
Offline
Last seen: 11 months 3 weeks ago
Joined: 08/13/2021
Posts: 2
Connecting the OPC UA Gateway to Servers with Security Policies

When trying to connect the OPC UA Gateway (with the config XML file) to a server with security policies set up, It is rejecting the connection saying that the security policy not available. Couldn't find any information about setting the security certificate in the XML file. Any suggesions will be highly appreciated.

 

 

Organization:
Fernando Garcia's picture
Offline
Last seen: 2 months 3 weeks ago
Joined: 05/18/2011
Posts: 200

Hi Lushee,

That is indeed a limitation of the OPC UA/DDS Gateway. We have created a feature request on GitHub to expose configuration parameters, so you can provide the following parameters when creating an OPC UA Connection to a Server via XML:

  • Username
  • Password
  • Client Certificate
  • Client Private Key
  • Security Mode
  • Security Policy URI

Do these paramters cover the requirements of your Server? What do you need to provide to connect to the server when using a generic client?

Note that for now, the only workaround for now would be to provide identity tokens programatically, probably when configuring the underlying OPC UA Client in this file https://github.com/rticommunity/rticonnextdds-gateway-opcua/blob/master/src/opcUaSdk/OpcUaSdkClientProperty.hpp, following this example. Note that in that case, open62541 may need to be recompiled with encryption support.

Best regards,
Fernando

Offline
Last seen: 11 months 3 weeks ago
Joined: 08/13/2021
Posts: 2

Hi Fernando,

Thank you for the answer. The parameters you mentioned do cover our requirement (for this case). But since we need an urgent solution at this stage, we will attempt the alternative method you suggested and post the outcomes here for community reference.

Thank you.