OPC UA client can not connect
CODESYS Forge
talk
(Thread)
OPC UA client can not connect
Last updated: 2021-10-19
CANopen und (nur) CAN Teilnehmer mischen
CODESYS Forge
talk
(Thread)
CANopen und (nur) CAN Teilnehmer mischen
Last updated: 2009-04-29
SoftMotionLight can not select RampType
CODESYS Forge
talk
(Thread)
SoftMotionLight can not select RampType
Last updated: 2018-06-17
Analogklemme Beckhoff KL3002 über CAN ansprechen
CODESYS Forge
talk
(Thread)
Analogklemme Beckhoff KL3002 über CAN ansprechen
Last updated: 2010-04-04
Wago750-338 PC RTE via CAN
CODESYS Forge
talk
(Thread)
Wago750-338 PC RTE via CAN
Last updated: 2011-01-05
Possible to use both CAN interfaces?
CODESYS Forge
talk
(Thread)
Possible to use both CAN interfaces?
Last updated: 2019-03-12
CAN OPEN RxPDO 3S library document?
CODESYS Forge
talk
(Thread)
CAN OPEN RxPDO 3S library document?
Last updated: 2016-01-06
Can Codesys report its installation directory?
CODESYS Forge
talk
(Thread)
Can Codesys report its installation directory?
Last updated: 2013-12-06
function that can handle step dir
CODESYS Forge
talk
(Thread)
function that can handle step dir
Last updated: 2015-12-15
EDS-datei für CAN-Open
CODESYS Forge
talk
(Thread)
EDS-datei für CAN-Open
Last updated: 2006-10-18
Can only start codesyscontrol manually
CODESYS Forge
talk
(Thread)
Can only start codesyscontrol manually
Last updated: 2019-12-19
WAGO with CAN-Open
CODESYS Forge
talk
(Thread)
WAGO with CAN-Open
Last updated: 2009-06-16
daten lesen von can-slave
CODESYS Forge
talk
(Thread)
daten lesen von can-slave
Last updated: 2011-04-10
CAN CL2 Library Flaws
CODESYS Forge
talk
(Thread)
CAN CL2 Library Flaws
Last updated: 2019-07-10
can´t find raspberry device
CODESYS Forge
talk
(Thread)
can´t find raspberry device
Last updated: 2015-12-27
Recipe exception. Can you help me?
CODESYS Forge
talk
(Thread)
Recipe exception. Can you help me?
Last updated: 2019-09-06
PFC200 (8208) CAN and ProfiBus
CODESYS Forge
talk
(Thread)
PFC200 (8208) CAN and ProfiBus
Last updated: 2022-09-21
CAN 3s open slave stack?
CODESYS Forge
talk
(Thread)
CAN 3s open slave stack?
Last updated: 2022-06-28
PLC IFMCR2532 <-CAN-> CR0451
CODESYS Forge
talk
(Thread)
PLC IFMCR2532 <-CAN-> CR0451
Last updated: 2018-08-25
Can Open mit Raspberry Pi
CODESYS Forge
talk
(Thread)
Can Open mit Raspberry Pi
Last updated: 2014-12-07
displaying all incoming CAN bus messages
CODESYS Forge
talk
(Thread)
displaying all incoming CAN bus messages
Last updated: 2024-07-22
CAN Open Manager - varible of SYNC
CODESYS Forge
talk
(Thread)
CAN Open Manager - varible of SYNC
Last updated: 2024-10-26
RS485 CAN HAT to Cosesys
CODESYS Forge
talk
(Thread)
RS485 CAN HAT to Cosesys
Last updated: 2024-10-28
CAN Open Manager - varible of SYNC
CODESYS Forge
talk
(Thread)
CAN Open Manager - varible of SYNC
Last updated: 2024-11-05
Post by t-probst on Strong Private Key Protection for Encryption Certificates
CODESYS Forge
talk
(Post)
Hello, We are trying to implement an automated method of adding of a certificate and private key to the Windows certificate store for encrypting CODESYS projects. We want to do this so that users do not have to deal with details of certificates at all and to prevent user error. We are keen on enforcing strong private key protection since it ensures that a password is required for the certificate to be used to decrypt a CODESYS project. When we add a certificate to the certificate store and enable strong key protection using the Microsoft Management Console Certificates snap-in, it works as expected. However, through this method the user may mistakenly not enable strong private key protection. For the certificates we create programmatically (using Microsoft’s Cryptography Next Generation API in .Net 7) bag attributes are added to the certificate and key by the API. These bag attributes are as follows: Bag Attributes localKeyID: 01 00 00 00 subject=C = xx, ST = xxx, O = xxx, OU = xxx, CN = xxx issuer=C = xx, ST = xxx, L = xxx, O = xxx, OU = xxx, CN = xxx -----BEGIN CERTIFICATE----- [encoded certificate] -----END CERTIFICATE----- After using this certificate with bag attributes to encrypt a CODESYS project, it can’t be decrypted, showing this error: "The specified project could not be loaded. Possible reasons might be: - The project file is corrupted or invalid - The project has been saved with a newer version of the programming system. If this is the case, you can open the project in the corresponding version. Choose "Save as..." with the appropriate storage version, and retry again. - You may not have the necessary permissions to lad the project" We know that the bag attributes are causing the issue because if we manually edit the certificate file to remove them before using the certificate to encrypt a project, the project can be decrypted as expected. However, we are unable to automatically enforce strong key protection using this method. Here is a link to a StackOverFlow question that we have posted recently for this issue: https://stackoverflow.com/questions/76922355/enforcing-strong-private-key-protection-for-x509certificate2-objects-in-net-mod Any help is greatly appreciated.
Last updated: 2023-08-22
To search for an exact phrase, put it in quotes. Example: "getting started docs"
To exclude a word or phrase, put a dash in front of it. Example: docs -help
To search on specific fields, use these field names instead of a general text search. You can group with AND or OR.