OPC UA Safety supports Operator Acknowledgment both on the SafetyProvider side and on the SafetyConsumer side. For this purpose, both the interface of the SafetyProvider and the SafetyConsumer comprise a Boolean input called OperatorAckProvider and OperatorAckConsumer, respectively. The safety application can get the values of these parameters on the consumer side via the Boolean outputs OperatorAckRequested and OperatorAckProvider on the SafetyConsumers SAPI (see Clause 7.4.1).

The following clauses show some examples on how to use these inputs and outputs. Dashed lines indicate that the corresponding input or output is not used in the use case. For details, see Clause 7.3and Clause 7.4.

image039.png

Figure B.1– OA in unidirectional safety communication

In the scenario shown in Figure B., operator acknowledgment must be done on the SafetyConsumer side, operator acknowledgment on the SafetyProvider side is not possible.

image040.png

Figure B.2– Two-sided OA in bidirectional safety communication

In the scenario shown in Figure B.2, operator acknowledgment is done independently for both directions.

image041.png

Figure B.3– One sided OA in bidirectional safety communication

In the scenario of Figure B.3, an operator acknowledgment activated at controller A suffices for re-establishing the bidirectional connection. Both sides will cease delivering fail-safe values and continue sending process values. This is accomplished by connecting OperatorAckProvider with OperatorAckConsumer at the SafetyConsumer of controller B. Activating operator acknowledgment at controller B is not possible in this scenario.

image042.png

Figure B.4– One sided OA on each side is possible

Figure B.4shows a scenario where an operator acknowledgment activated at controller A or controller B suffices for re-establishing the bidirectional connection. Both sides will cease delivering fail-safe values and continue sending process values. This is accomplished by the logic circuits shown in the safety applications.