15:13, EET
February 21, 2014
Greetings,
we would like to use CA signed certificates for our ProsysOPC OPC UA Clients and Servers. The certificates (and the issuer certificate/key) will be created outside of the application. Will the application handle CA certificates “automatically” during the certificate validation? If so, where would the expected default location of the CA cert be? Or, if the former is not possible, will I have to provide a custom CA validator?
Thanks, Hans-Uwe
NB: The only documentation I found on this subject is §3.1.3 in the Server Tutorial. Maybe I overlooked some other places
16:46, EET
April 17, 2013
Greetings Hans-Uwe,
You can trust CA certificates in the same way as self-signed certificates; by placing them into “PKI/CA/certs” folder. Let us know if you experience any issues with the certificate validation.
P.s. The server tutorial chapter 3.1.3 discussses loading a CA certificate in order to use them to sign more certificates. This is not related to your use case. The chapter “3.3 Validating Client Applications via Certificates” discusses the certificate validation, although you’re correct that it doesn’t mention CA certificates explicitly.
Most Users Ever Online: 1919
Currently Online:
24 Guest(s)
Currently Browsing this Page:
1 Guest(s)
Top Posters:
Heikki Tahvanainen: 402
hbrackel: 144
rocket science: 88
pramanj: 86
Francesco Zambon: 83
Ibrahim: 78
Sabari: 62
kapsl: 57
gjevremovic: 49
Xavier: 43
Member Stats:
Guest Posters: 0
Members: 730
Moderators: 7
Admins: 1
Forum Stats:
Groups: 3
Forums: 15
Topics: 1529
Posts: 6471
Newest Members:
toneylapham544, rondawolinski7, Marypof5711, roycedelargie91, kourtneyquisenbe, ellis87832073466, zkxwilliemae, gabriellabachus, Deakin, KTP25ZofModerators: Jouni Aro: 1026, Pyry: 1, Petri: 0, Bjarne Boström: 1032, Jimmy Ni: 26, Matti Siponen: 349, Lusetti: 0
Administrators: admin: 1