Register Workflow Certificates with Global Discovery Server (GDS)
You can use the OPC UA Configuration tool to connect to the Global Discover Service (GDS) server, sign a self-signed Workflow security certificate, and automatically register the application with GDS.
About this task
Registering the Workflow security certificate with GDS makes the certificate trusted by other applications which are registered in GDS and allows you to add a CA certificate in Workflow.
Other Actions
- Click Update Trust List to replace the trust certificates with the ones provided by the GDS.
- Click View to view information about the certificate in the Certificate Details dialog box.
- Click Add to select a certificate to trust from a folder.
- Click Make Issuer to make a CA certificate untrusted, but still trust the certificate signed by this CA certificate.
- Click Reject to make the selected certificate untrusted. The certificate is moved to the C:\ProgramData\Proficy\OpcUaCertificate\pki\certs\rejected folder.
- When a certificate is rejected, you can click Trust, then click Yes in the Trust Certificate dialog box to make the selected certificate trusted again.
- Click Delete to remove the selected certificate from the C:\ProgramData\Proficy\OpcUaCertificate\pki\certs\trusted folder.
Procedure
-
From the OPC UA server, click
.The Configure OPC UA tool appears.
-
Click Configure GDS.
The Select Certificate Management Service (GDS) dialog box appears.
-
Enter the following information:
-
Click Generate Self-Signed.
The following actions occur:
- Configuration saved.
- Created <Workflow certificate name>.
- Skipping: Certs do not register with LDS.
The Workflow security certificate is stored in the C:\ProgramData\Proficy\OpcUaCertificate\own\certs folder but is untrusted.
-
Click Request from GDS.
The following actions occur:
- Configuration saved.
- Selected GDS at <certificate directory used>. Configure GDS appears if GDS is not configured yet or the GDS connection has failed.
- Registered <application certificate>.
- Sent certificate request.
- Checking if certificate request has completed.
- Replaced trusts list with the one provide by the certificate directory.
- Skipping: Certs do not register with LDS.
The Workflow security certificate is moved to the C:\ProgramData\Proficy\OpcUaCertificate\pki\certs\trusted folder and is now trusted.