Security policy
In this window, the user can define whether the Lumia product's OPC server should provide a security policy for access and the required security level.
Configurable end-to-end security levels ensure the encryption and integrity of every single message.
Once the security policy is enabled, the server validates the client's certificate and vice versa.
|
Security mode
|
|
|
None
|
Connection without certificates is allowed
|
|
Sign
|
The OPC UA client must provide its own certificate. Communication via signed messages is permitted.
|
|
Sign and Encrypt
|
The OPC UA client must provide its own certificate. Communication via signed and encrypted messages is permitted.
|
|
Security Policy
|
|
|
Basic256Sha256
|
Encryption level accepted by the server
|
|
Aes128Sha256RsaOaep
|
Encryption level accepted by the server
|
|
Aes128Sha256RsaPss
|
Encryption level accepted by the server
|
|
Parameters
|
|
|
Accept certificates automatically
|
All certificates provided by an OPC client are accepted
|
|
Personalized certificate
|
Accepted certificates can be added manually.
They must be provided by the OPC client.
Both binary and ASCII certificates are accepted.
|
|
|
|