Opcua Self-Signed Certificate Management - Honeywell CIU 888 Configuration Manual
Hide thumbs
Also See for CIU 888:
- Migration manual (110 pages) ,
- Troubleshooting and maintenance manual (52 pages) ,
- Protocol manual (44 pages)
Table of Contents
Advertisement
Part No.: 4417584_Rev12
Commissioning of a Standalone System Setup
4.8.1 OPCUA Self-Signed Certificate Management
Self-signed certificate security flow involves the user trust the
certificates manually.
That is, OPC client certificate needs to be trusted in CIU 888 and CIU
888 server certificate needs to be trusted in OPC client application.
When OPCUA server is enabled, CIU creates the self-signed server
certificate (if not available) at the start up. The validity of the server
certificate is 2 years from the creation date. Generated self-signed
certificate would be of the format application_rsa_sha256_UniqueId.der
(example:application_rsa_sha256_23B922307EE1EEFF765DEE2E6E
886CD2914C82EF.der).
OPC client certificate management can be done via Manage Certificate
option (or) Upload Certificate option.
4.8.1.1 Download Server Certificate:
The user shall use this option to download the CIU 888 server self-
signed certificate.
1. Under OPC UA Self Signed Certificate section, click "Download
Server Certitificate" option and certificate gets downloaded.
4.8.1.2 Upload Certificate:
The user can upload the client certificate to CIU through this option if it
is available. On upload, CIU adds the client certificate to the trusted
certificate store.
Configuration Manual
CIU 888
4 - 9
Hide quick links:
Advertisement
Table of Contents
