Page 1 of 1

External PKI Certificate Manager Integration

Posted: 14 Mar 2024, 09:05
by ich.bin.kumar
HI,
Greetings !!!

I am new to OPCUa GDS and was looking for support for integrating external PKI certificate manager like OpenXPKI.

Requesting your guidance on the same.

Regards
Kumar

Re: External PKI Certificate Manager Integration

Posted: 08 May 2024, 16:07
by Support Team
Hi,

this is not (yet) possible with the UaGDS, the UaGDS is a CA (certificate authority) by itself. This has the advantage that the certificates created, signed and rolled out by the UaGDS fully comply to the OPC UA standard (addtional extension fields, content filled out correctly, etc.). Second advantange is that you can build up your chain of trust without any (external) connectivity required (e.g. inside your machine).

We are in contact with companies running external CA to get the requirements for OPC UA certificates (and automatic revocation roll out) ligned up.