The OPC UA server for zenon logic and in the process gateway should no longer check the certificate with security mode none

The OPC UA server for zenon logic and in the process gateway should no longer check the certificate with security mode none

Summary

Since OPC UA specification 1.02 an OPC UA client is no longer required to send its application instance certificate when MessageMode Security "None" is used by the client. Also an OPC UA server is no longer required to send its certificate when a client requests MessageMode security "None"

Description

Since OPC UA specification 1.02 an OPC UA client is no longer required to send its application instance certificate when MessageMode Security "None" is used by the client. Also an OPC UA server is no longer required to send its certificate when a client requests MessageMode security "None"

Solution

The OPC UA server in the process gateway and the zenon logic OPC UA server have changed in a way that when a client uses MessageMode Security "None", the server no longer sends its own application instance certificate.   Also the OPC UA server in the process gateway and the zenon logic OPC UA server no longer check application instance certificates when message mode security is None, effectively granting access to any OPC UA client that connects.   The option "trust all client certificates" in the configuration of the process gateway for the OPC UA server therefore is void.    

Issue Number: 33280
Fixed on Date: 13.11.2016
Versions: 7.60 0 BUILD 36068

    • Related Articles

    • How to setup the zenon OPC UA Process Gateway with a CA-signed certificate

      This article describes how to create a certificate signed by a Certificate Authority (CA) for using it with the zenon OPC UA Process Gateway. For general information about certificate usage for OPC UA security, please refer to the article How to use ...

    • How to setup the zenon OPC UA Process Gateway with a self-signed certificate

      This article describes how to create a self-signed certificate for using it with the zenon OPC UA Process Gateway. For general information about certificate usage for OPC UA security, please refer to the article How to use certificates for OPC UA ...

    • How to use certificates for OPC UA security

      This article provides an overview of how to use X.509 certificates in order to enable OPC UA security. It links to further how-tos that explicitly describe the necessary steps to create certificates and add them to the configuration of either the OPC ...

    • How to setup the zenon OPC UA Driver with a self-signed certificate

      This article describes how to create a self-signed certificate for using it with the zenon OPC UA Driver. For general information about certificate usage for OPC UA security, please refer to the article How to use certificates for OPC UA security. ...

    • zenon Changesets Excel

      Here, you can access a comprehensive list of changes across all maintained versions of the zenon Software Platform as Excel Worksheets. This includes both implemented bug-fixes and new features. Additionally, these lists are available in CSV format ...