Configuring DeviceXPlorer OPC Server

For security reasons, OPC UA provides integration with a number of authentication mechanisms as described in OPC Introduction. One of the most usual setups is using the X.509 certificates, either provided by a Certificate Authority (CA) (paid and emitted by an external entity) or self-signed (usually created locally for tests).

This topic describes how to set up an OPC UA connection between GENESIS (through a Workbench configuration) and DeviceXPlorer OPC Server with self-signed certificates.

To set up the DeviceXPlorer OPC Server as an OPC UA server with self-signed certificates:

  1. Open DeviceXPlorer OPC Server.

    Device Explorer

  2. In Project Explorer, expand your project > IoT Interface > OPC UA Server.

  3. Right-click OPC UA Server and select Property.

    Device Explorer - OPC UA Server

  4. In the IoT Interface Property [OPC UA Server] dialog, select Enable OPC UA Server, Enable Anonymous, and Basic256Sha256 / Sign And Encrypt in the SecurityPolicy/SecurityMode section.

    Device Explorer - OPC UA Server properties

  5. Click Generate Certificate and enter the desired data, and then click OK.

    • In Signature Algorithm, enter Sha256.
    • In IP Address, enter 127.0.0.1 since the DeviceXPlorer OPC Server is running in the same environment as GENESIS.

    Device Explorer - Certificate Properties

  6. Click OK in the IoT Interface Property [OPC UA Server] dialog to apply the settings and check the configurations in the Property pane on the right.

    Device Explorer - OPC UA Server Properties

  7. Continue with Configuring an OPC UA Client in Workbench.