Post by kjubidoo on OPCUA Ctrl-Node fehlt ^{CODESYS Forge talk (Post)}
Perfekt, das war es. Node ist zu sehen. Es hat mich schon etwas gewundert, dass die Zertifikatverwaltung zwischen Codesys und WBM auseinander lief. D.h. der OPCUA Server, den man im WBM konfigurieren kann, ist (in diesem Fall mit einem 750-8202) der WAGO OPCUA-Server?
Last updated: 2023-12-05

Codesys OPC-UA access with only user/pass DESPITE certificate is quarantined ^{CODESYS Forge talk (Thread)}
Codesys OPC-UA access with only user/pass DESPITE certificate is quarantined
Last updated: 2021-01-11

Post by anoori on Setting up Raspberry pi as an Opc ua Server with UaExpert as Client ^{CODESYS Forge talk (Post)}
I am trying to set up my Raspberry Pi as an OPC UA server and use UaExpert on my Pc as the OPC UA client.However, Im encountering some certificate-related errors in UaExpert: 1.Unable to get local issuer certificate. 2. Unable to get certificate CRL. 3. Unable to verify the first certificate.
Last updated: 2024-09-11

Post by anoori on setting up Raspberry pi as an opc ua Server with UaExpert as Client ^{CODESYS Forge talk (Post)}
I am trying to set up my Raspberry Pi as an OPC UA server and use UaExpert on my Pc as the OPC UA client.However, Im encountering some certificate-related errors in UaExpert: 1.Unable to get local issuer certificate. 2. Unable to get certificate CRL. 3. Unable to verify the first certificate.
Last updated: 2024-09-11

Post by kjubidoo on OPCUA Ctrl-Node fehlt ^{CODESYS Forge talk (Post)}
Hallo allerseits, ich habe eine OPCUA-Verbindung zu meinem PFC200 Controller eingerichtet und vermisse die Ctrl-Node unter "DeviceSet". Ich nutze Codesys 3.5 SP19 Patch 4, Runtime V4.10, Firmware 03.10.08(22) und UaExpert 1.71. Hat jemand eine Idee? Beste Grüße
Last updated: 2023-12-04

Post by gurkan on OPCUA array max length? ^{CODESYS Forge talk (Post)}
2000 works. When testing with UA Expert there is a timeout from the OPCUA Server when trying to subscribe to the variable CPU do not seems to be to affected. The memory(RAM) however is building up
Last updated: 2024-02-19

Not able to create an OPC UA certificate in my Beaglebone Black (linux Debian) on CODESYS 3.5 SP19 ^{CODESYS Forge talk (Thread)}
Not able to create an OPC UA certificate in my Beaglebone Black (linux Debian) on CODESYS 3.5 SP19
Last updated: 2023-05-28

Post by ryusoup on OPC UA Client certificate for datasource link ^{CODESYS Forge talk (Post)}
Hello, I'm looking for a way to set my client certificate, not one which self-signed cert generated with CODESYS, for OPC UA connection via datasource linking. Does anyone know how to archive that? BR,
Last updated: 2024-03-08

Post by lordsteve on OPC UA certificate upgrade ^{CODESYS Forge talk (Post)}
Hi, I have the same issue. It should be possible to create a certificate without using Codesys IDE. The functionality of the security agent could be handled in some fb. Can anyone here give the right hint?
Last updated: 2024-03-15

Post by eschwellinger on OPCUA Ctrl-Node fehlt ^{CODESYS Forge talk (Post)}
.. du schreibst Runtime 4.10 damit meinst du die PFC200 SL Runtime aus dem CODESYS Store?
Last updated: 2023-12-04

Post by mos89p on Codesys Soft PLC OPC UA server ^{CODESYS Forge talk (Post)}
Hi did you check the log of OPCUA expert Client?
Last updated: 2024-06-27

Post by t-probst on Strong Private Key Protection for Encryption Certificates ^{CODESYS Forge talk (Post)}
Hello, We are trying to implement an automated method of adding of a certificate and private key to the Windows certificate store for encrypting CODESYS projects. We want to do this so that users do not have to deal with details of certificates at all and to prevent user error. We are keen on enforcing strong private key protection since it ensures that a password is required for the certificate to be used to decrypt a CODESYS project. When we add a certificate to the certificate store and enable strong key protection using the Microsoft Management Console Certificates snap-in, it works as expected. However, through this method the user may mistakenly not enable strong private key protection. For the certificates we create programmatically (using Microsoft’s Cryptography Next Generation API in .Net 7) bag attributes are added to the certificate and key by the API. These bag attributes are as follows: Bag Attributes localKeyID: 01 00 00 00 subject=C = xx, ST = xxx, O = xxx, OU = xxx, CN = xxx issuer=C = xx, ST = xxx, L = xxx, O = xxx, OU = xxx, CN = xxx -----BEGIN CERTIFICATE----- [encoded certificate] -----END CERTIFICATE----- After using this certificate with bag attributes to encrypt a CODESYS project, it can’t be decrypted, showing this error: "The specified project could not be loaded. Possible reasons might be: - The project file is corrupted or invalid - The project has been saved with a newer version of the programming system. If this is the case, you can open the project in the corresponding version. Choose "Save as..." with the appropriate storage version, and retry again. - You may not have the necessary permissions to lad the project" We know that the bag attributes are causing the issue because if we manually edit the certificate file to remove them before using the certificate to encrypt a project, the project can be decrypted as expected. However, we are unable to automatically enforce strong key protection using this method. Here is a link to a StackOverFlow question that we have posted recently for this issue: https://stackoverflow.com/questions/76922355/enforcing-strong-private-key-protection-for-x509certificate2-objects-in-net-mod Any help is greatly appreciated.
Last updated: 2023-08-22

Post by snhatton on OpC UA server on Raspberry Pi 64 SL runtime ^{CODESYS Forge talk (Post)}
Good afternoon, After changing the security settings to: CommunicationPolicy: POLICY_BASICSHA256SHA256 CommunicationMode: ALL Activation: Activated UserAuthentication: ENABLED Then generate a new certificate on the device for the OPC-UA server from Security Agent->Device->OPC UA Server. Restart the runtime using tools->Update Raspberry Pi->Stop->Start for the changes to take effect. It may take a minute for the runtime to start. Initiate the connection from the UA server side. You should see a pop-up asking you to trust the certificate. Click on the button 'Trust Server Certificate'. Next, you should see a certificate in the quarantined folder of the security agent in CODESYS. Click and drag this from quarantined to trusted and then try connecting from UA expert to the device. These steps worked for me and my setup and I hope they can help you!
Last updated: 2023-12-11

Post by bbm1995 on Security Screen - Custom Certificates for OPC UA Server? ^{CODESYS Forge talk (Post)}
Hi everyone, is it possible to use selfsigned/created certificates (eg. with X - Certificate and Key Management) as a OPC UA Server certificate in the Security Screen? As far as I know I can only upload client certificates to the PLC and move it to "Trusted", "Untrusted" and "Quarantined". Same question is on sps-forum.de
Last updated: 2023-08-23

Post by kevinrn on Signing Packages without exposing the password of the certificate ^{CODESYS Forge talk (Post)}
Indeed, I'm also seeking a solution for this issue. The main challenge we face is the requirement to use EV (Extended Validation) Certificates. Due to security considerations, it's not possible—nor is it ever recommended in such cases—to export the certificate with its private key.
Last updated: 2024-08-20

Post by rossanoparis on How to configure CODESYSControl_User.cfg in order to use a specific network card for OPCUA Server ^{CODESYS Forge talk (Post)}
Hello at all I'd like to know how to configure CODESYSControl_User.cfg in order to use a specific network card for OPCUA Server. In the past, I tried to ask in "Forge" about this topic, but I could find neither help nor document informations about it. Reading the file "codesyscontrol.log" I see these logs OPC UA Server Started: Hostname: NTLRPICTRL01, Port: 4840 URL: opc.tcp://NTLRPICTRL01:4840 Loopbackadapter activated. **All available networkadapters are used.** Multithreading activated. 3 workers used. My controller, which is a Linux PC, has got two network cards eth0 and eth1 I whant to use the card with name "eth0" as a server for OPCUA and keep the "eth1" free for other stuffs. Is it possible ? Best regards Rossano
Last updated: 2023-08-25

Post by ppix on Establishing TLS Connection with MQTT Broker using MQTT Client SL Package ^{CODESYS Forge talk (Post)}
I’m currently working on establishing a TLS connection with an MQTT broker using the MQTT Client SL package in CODESYS. While I’ve successfully established communication with the broker without TLS, I'm encountering issues when trying to enable TLS. In the 'MQTT Explorer' application, I can easily upload the server certificate (.crt), client certificate (.crt), and client key (.key). However, in CODESYS, I can’t find a way to upload my client key (.key file). Here's a summary of my current setup: Certificates: I have uploaded both the client and server certificates to the certificate store under the 'Trusted Certificates' folder in the security screen. TLS Context Initialization: Despite setting the _sCommonName as the name of my client certificate, a new self-signed certificate is created and placed within the device’s certificates. I then need to manually move this certificate to the trusted certificates folder. This results in three certificates in my trusted certs folder: client cert, server cert, and the newly created cert. _ciDefaultCertInfo : MQTT.NBS.CERT_INFO := (psInfo := ADR(_sCommonName), udiSize := TO_UDINT(LEN(_sCommonName))); // CN of the certificate (common name) _sCipherList : MQTT.NBS.CIPHER_LIST := STRUCT(psList := ADR('HIGH'), udiSize := 4); // Cipher string see https://www.openssl.org/docs/man1.1.1/man1/ciphers.html _tlsContext : MQTT.NBS.TLSContext := ( sUseCaseName := _sCommonName, // A certificate is stored in the certificate store with the use case name. You can choose any name. Here we use the common name. ePurpose := MQTT.NBS.PURPOSE.CLIENT_SIDE, // For client certificates set this to NBS.PURPOSE.CLIENT_SIDE sTLSVersion := '1.3', // The TLS version sCipherList := _sCipherList, // Set the cipher list sHostname := sHostname, // The hostname of the broker udiVerificationMode := 2, // 2 => Active Peer verification ciCertInfo := _ciDefaultCertInfo, // Set the cert info itfCertVerifer := 0); // 0 => No Verifier mqttClient : MQTT.MQTTClient := (xUseTLS:=TRUE, itfTLSContext := _tlsContext, itfAsyncProperty := _asyncProperty); Additional Details: In the client FB, I’ve set uiPort:= 8883, xUseTLS:= TRUE, and configured itfTLSContext as mentioned above. The certificates are encrypted with SHA256RSA. sHostname is the IP address of my broker. I’ve attached a copy of the client FB, which shows straight lines where variables are assigned and boxes where they are not. I am currently trying this on the only 2 compatible versions of COSDESYS with my controller (V3.5.15.20 and V3.5.18.40) My Question: How do I correctly set up this mTLS connection? What might I be missing? Any guidance or suggestions would be greatly appreciated, especially considering I’ve already successfully established a non-TLS connection with the same broker. Thank you in advance for your help!
Last updated: 2024-06-19

Post by rossanoparis on How to configure CODESYSControl_User.cfg in order to use a specific network card for OPCUA Server ^{CODESYS Forge talk (Post)}
Thank you @eschwellinger Even tough I think the content of the link you provided is a bit messy. To bind OPCUA server to a specific adapter, I should have had insert the following section. [CmpOPCUA] NetworkAdapter=eth0 But it doesn't work, I had to insert the following section instead to get the right configuration. [CmpOPCUAServer] NetworkAdapter=eth0 Regards Rossano
Last updated: 2023-08-29

Post by vformanek on OPCUA Datasource, can not login... ^{CODESYS Forge talk (Post)}
Hello? I have a problem with datasource... I am trying to connect to a OPCUA server. I create a datasource, but I can not login into it. I need to use login credentials to login... Everything works fine in UAExpert, but in codesys I cant seem to get in properly using the login credentials... I have tried to configure the datasource initializer but seem to keep failing... Do I need to call it somewhere ? Will the find endpoints work with this configured to store my password ? !
Last updated: 2023-11-20

Post by tomas111 on OPC UA Client API ^{CODESYS Forge talk (Post)}
I ran into a problem. Uploaded an example (https://content.helpme-codesys.com/en/CODESYS%20Examples/_ex_uacapi_example.html) After launch. on the emulator. I see that I am having problems: - UaExpert does not connect. There are many servers but no connection. - I can’t transfer the certificate from quarantine to trusted ones. There is some problem with creating the certificate. CS 19.2. If anyone has had similar problems, please give me advice. Thank you.
Last updated: 2024-05-20

Post by eschwellinger on How to configure CODESYSControl_User.cfg in order to use a specific network card for OPCUA Server ^{CODESYS Forge talk (Post)}
check this faq section here: https://faq.codesys.com/plugins/servlet/mobile?contentId=102137886#content/view/102137886
Last updated: 2023-08-25

Post by eschwellinger on How to configure CODESYSControl_User.cfg in order to use a specific network card for OPCUA Server ^{CODESYS Forge talk (Post)}
Hi Rossano, thank you for the feedback, you are right this need to be changed in the faq section. Regards Edwin
Last updated: 2023-08-28

Post by eschwellinger on OPCUA Ctrl-Node fehlt ^{CODESYS Forge talk (Post)}
..dann mal im WBM alles deaktivieren, da der OPC UA Server ja direkt im PFC200 SL RUntime integriert ist und nicht über die WBM Oberfläche zu konfigurieren ist.
Last updated: 2023-12-05

Post by paro on OPCUA array max length? ^{CODESYS Forge talk (Post)}
I think the amount of data is already relatively high and maybe it has something to do with that? Maybe also the CPU load of your device? an array with string(5000)? and have you tested with how many array elements it still works?
Last updated: 2024-02-17

Post by rmaas on RevPi CONNECT+, CODESYS, EtherCAT master "Filedbus lost synchronicity" ^{CODESYS Forge talk (Post)}
Hi Rossano, Did you ever find a solution to this issue? It seems i am facing the same issue but i do not use OPCUA... Best Regards, Rinie Maas
Last updated: 2024-04-11

Sort by relevance or date