External PKI Certificate Manager Integration

Questions regarding the use of UaGDS - the OPC UA Global Discovery and Security Management Server

Moderator: uagds

Post Reply
ich.bin.kumar
Jr. Member
Jr. Member
Posts: 2
Joined: 14 Mar 2024, 08:30

External PKI Certificate Manager Integration

Post by ich.bin.kumar »

HI,
Greetings !!!

I am new to OPCUa GDS and was looking for support for integrating external PKI certificate manager like OpenXPKI.

Requesting your guidance on the same.

Regards
Kumar

User avatar
Support Team
Hero Member
Hero Member
Posts: 3171
Joined: 18 Mar 2011, 15:09

Re: External PKI Certificate Manager Integration

Post by Support Team »

Hi,

this is not (yet) possible with the UaGDS, the UaGDS is a CA (certificate authority) by itself. This has the advantage that the certificates created, signed and rolled out by the UaGDS fully comply to the OPC UA standard (addtional extension fields, content filled out correctly, etc.). Second advantange is that you can build up your chain of trust without any (external) connectivity required (e.g. inside your machine).

We are in contact with companies running external CA to get the requirements for OPC UA certificates (and automatic revocation roll out) ligned up.
Best regards
Unified Automation Support Team

Post Reply