Configuring with the WBM
7.3 The menu items of the WBM
SIMATIC RF185C, RF186C, RF188C, RF186CI, RF188CI
90
Operating Instructions, 04/2020, C79000-G8976-C512-03
Parameter
Description
Validate certificates If the check box is selected, the communication module generally checks the
certificate of the communication partner. If the partner certificate is invalid or
not trustworthy, communication is aborted.
Accept
expired
certificates
The communication module generally checks the period of validity of the
communication partner certificate. When the check box is selected, certificates
are accepted and communication is set up even if the current internal commu-
nication module time is outside the period of validity of the partner certificate.
No strict
validation
If the check box is selected, the communication module also allows communi-
cation in the following situations:
•
If the IP address of the communication partner is not identical to the IP
address in its certificate.
Note: The OPC UA server does not check the IP address of its communi-
cation partner (client).
•
If no blacklist is stored on the communication module for the CA of the
partner certificate.
Regardless of these exceptions, to establish a connection at least the follow-
ing requirements must be met:
•
If the partner certificate is not trustworthy, the communication module must
at least have stored a self-signed certificate of the partner.
•
If the partner certificate was issued by several CAs (Certification Authori-
ties), all CA root certificates must be stored in the certificate store of the
reader.
Generate OPC UA
server certificate
Button for creating an OPC UA server certificate.
Among other things, the server certificate serves to identify the OPC UA serv-
er to the OPC UA client.
The OPC UA server certificate contains the application name, the security
profile and the IP address of the communication module. If any part of this
information is changed, the server certificate needs to be recreated.
Note: Note that the procedure can take several minutes.