Certificate is not yet valid (BadCertificateTimeInvalid

Unified Architecture topics related to OPC UA Specification, compliant behavior and any technical issues of OPC UA, like Security, Information Model, Companion Specs DI, PLCopen, ADI, ...

Moderator: Support Team

Post Reply
gkalipershad
Jr. Member
Jr. Member
Posts: 1
Joined: 04 Jun 2018, 14:29

Certificate is not yet valid (BadCertificateTimeInvalid

Post by gkalipershad »

Hello,

I am working with a customer who is using our SLIK-DA Server Toolkit. He generates his certificate file, but UA Expert shows that the validity of the certificate doesn't start for another 16 hours. He gets the BadCertificateTimeInvalid error. He can easily accept the server certificate temporarily for the session, but we are both still curious about why there would be a delay on the validity and how to ensure that the certificates validity begins immediately.

Thanks,

Ganesh Kalipershad
Applications Consultant
Software Toolbox
704-849-2773

User avatar
Support Team
Hero Member
Hero Member
Posts: 2551
Joined: 18 Mar 2011, 15:09

Re: Certificate is not yet valid (BadCertificateTimeInvalid

Post by Support Team »

This typically happens if the clocks of the different systems are not synchronized.

If certificates are created or verified on different systems and clocks are not in sync, this can always happen.

OPC UA security requires synchronized clocks. The requirements for precision of the synchronization are low but a similar time must be ensured.
Best regards
Unified Automation Support Team

Post Reply