Search

15 result(s) for KeyCredentials

• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  3.1.12 KeyCredentialService
  KeyCredentialService a software application that provides KeyCredentials needed to access an AuthorizationService or a Broker
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.1 Overview
  Overview KeyCredential management functions allow the management and distribution of KeyCredentials which OPC UA Applications use to access AuthorizationServices and/or Brokers . An application that provides the KeyCredential management functions ... Client and uses the Methods on the KeyCredentialService to request and update KeyCredentials . The application is responsible for ensuring the KeyCredentials are kept up to date. In PushManagement the application
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.2 Roles and Privileges
  ApplicationSelfAdmin This Privilege grants an OPC UA Application the right to request its own KeyCredentials . The Certificate used to create the SecureChannel is used to determine the identity ... Application. ApplicationAdmin This Privilege grants rights to request KeyCredentials for one or more OPC UA Applications. The Certificate used to create the SecureChannel is used to determine the identity
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.3 Pull Management
  starting up the application or interacting with a UI element such as a button. KeyCredentials shall only be returned to applications which are authorized by the KeyCredentialService . Security in PullManagement
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.4 Push Management
  Push Model for KeyCredential Management The Administration Component may use internal APIs to manage KeyCredentials or it could be a standalone utility that uses OPC UA to communicate with ... application could be built and are not a requirement. To ensure security of the KeyCredentials, the KeyCredentialService component can require that secrets be encrypted with a key only known
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.5.1 Overview
  Clients interact with the Nodes defined in this model when they request or revoke KeyCredentials for themselves or for another application. The KeyCredentialManagement Folder is a well-known Object that
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.5.4 KeyCredentialServiceType
  KeyCredentialServiceType This ObjectType is the TypeDefinition for an Object that allows the management of KeyCredentials . It is defined in Table 125 . Table 125 - KeyCredentialServiceType Definition Attribute Value BrowseName 2:KeyCredentialServiceType ... Model for KeyCredential Service The ResourceUri Property uniquely identifies the resource that accepts the KeyCredentials provided by the KeyCredentialService Object . The ProfileUris Property specifies URIs assigned
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.5.5 StartRequest
  RequestedRoles [out] NodeId RequestId ); Argument Description ApplicationUri The ApplicationUri of the application receiving the KeyCredentials . The request is rejected ApplicationUri does not uniquely identify an application known ... SecurityPolicies this is an ephemeral key created by the owner of the KeyCredentials . Not specified if no encryption is required. If the SecurityPolicyUri is provided this field shall be provided
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.5.6 FinishRequest
  previous call to StartRequest. CancelRequest If TRUE the request is cancelled and no KeyCredentials are returned. If FALSE the normal processing proceeds. CredentialId The unique identifier for the KeyCredential . CredentialSecret
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.5.7 Revoke
  Revoke Method is used to revoke a KeyCredential used by a Client or Server . KeyCredentials shall be deleted when revoked. This Method shall be called from an encrypted SecureChannel
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.5.8 KeyCredentialAuditEventType
  KeyCredentialAuditEventType This abstract event is raised when an operation affecting KeyCredentials occur This Event and it subtypes are security related and Servers shall only report them to users authorized
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.6.1 Overview
  Clients interact with the Nodes defined in this model when they update the KeyCredentials used by a Server to access resources such as Brokers or Authorization Servers . The KeyCredentialConfiguration Folder
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.6.3 CreateCredential
  Object . ResourceUri The ResourceUri uniquely identifies the resource that accepts the KeyCredentials . A valid URI shall be provided. ProfileUri The specified URI assigned in OPC 10000-7 to the protocol
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.6.5 KeyCredentialConfigurationType
  KeyCredentialConfigurationType This ObjectType is the TypeDefinition for an Object that allows the configuration of KeyCredentials used by the Server . It also includes basic status information which report problems accessing ... resource that might be related to bad KeyCredentials . It is defined in Table 136 . Table 136 - KeyCredentialConfigurationType Definition Attribute Value BrowseName 0:KeyCredentialConfigurationType IsAbstract False References NodeClass BrowseName DataType TypeDefinition
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  9.7.1 Overview
  Server is also a Client that has to access the AuthorizationService, the necessary KeyCredentials can be provided with the push configuration management model