Securing CIMPLICITY OPC UA Endpoints

About this task

Certificates are strongly recommended for production environments. You can configure certificates manually or you can set up automatic management by enabling the Global Discovery Server for your CIMPLICITY project.
Note: This section provides basic information for setting up your endpoint security. For comprehensive information on the OPC UA Server security options, navigate to Communications Equipment > CIMPLICITY OPC UA Security Configuration > OPC UA Server Certificate Configuration.

Procedure

  1. In Workbench, from the tree on the left, select  Project > Security > OPCUA Security Configuration.
  2. In the CIMPLICITY OPC UA Certificate Configuration dialog: if you are configuring GDS as part of the OPC UA endpoint security, ensure the Use GDS check box is selected.  If you are managing certificates manually, clear the check box.
  3. Click Enable Security. One of the following occurs:

    If you are using a self-signed certificate (manual certificate management), the shorter validation sequence appears immediately in the Certificate Configuration dialog.  

    If you are using GDS, a login screen appears for the GDS endpoint, and you must enter the user name and password for the Global Discovery Server.

  4. Click OK to continue. The validation sequence for accessing the GDS server begins.
  5. When all operations show as complete in the Status column (green check mark), click Close.
  6. Start or restart your CIMPLICITY project.