Search

30 result(s) for SecurityAdmin Role

• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.4 Push Management
  PushManagement model requires an encrypted channel and a Client with access to the SecurityAdmin Role . For example, SecurityAdmin Role could be mapped to user credentials for an administrator
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.7.2 Update Certificates Workflow
  ApplicationCertificateType Purpose are considered. The CertificateManager needs credentials that will have access to the SecurityAdmin Role on the Server . Connect The CertificateManager creates a secure connection using encryption ... Session with the Server . The Session requires access to the SecurityAdmin Role or equivalent. Possible credentials used to authenticate the CertificateManager are: CertificateManager ApplicationInstance Certificate ; UserIdentityToken provided in ActivateSession . Update
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.8.2.1 TrustListType
  defined in 7.8.2.10 . This Property may be updated by Clients with access to the SecurityAdmin Role . If auditing is supported, the CertificateManager shall generate the TrustListUpdated AuditEventType (see 7.8.2.13 ) when
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.8.2.3 OpenWithMasks
  from an authenticated SecureChannel and from a Client that has access to the CertificateAuthorityAdmin Role, the ApplicationSelfAdmin Privilege, or the ApplicationAdmin Privilege (see 7.2 ). For PushManagement , this Method shall ... called from an authenticated SecureChannel and from a Client that has access to the SecurityAdmin Role (see 7.2 ). Signature OpenWithMasks( [in] UInt32 Masks [out] UInt32 FileHandle ); Argument Description Masks
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.8.2.5 CloseAndUpdate
  from an authenticated SecureChannel and from a Client that has access to the CertificateAuthorityAdmin Role, the ApplicationSelfAdmin Privilege, or the ApplicationAdmin Privilege (see 7.2 ). For PushManagement , this Method shall ... called from an authenticated SecureChannel and from a Client that has access to the SecurityAdmin Role (see 7.2 ). Signature CloseAndUpdate( [in] UInt32 FileHandle [out] Boolean ApplyChangesRequired ); Argument Description FileHandle
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.8.2.6 AddCertificate
  called from an authenticated SecureChannel and from a Client that has access to the SecurityAdmin Role (see 7.2 ). Signature AddCertificate( [in] ByteString Certificate [in] Boolean IsTrustedCertificate ); Argument Description Certificate
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.8.2.7 RemoveCertificate
  called from an authenticated SecureChannel and from a Session that has access to the SecurityAdmin Role (see 7.2 ). Signature RemoveCertificate( [in] String Thumbprint [in] Boolean IsTrustedCertificate ); Argument Description Thumbprint
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.8.3.2 GetRejectedList
  called from an authenticated SecureChannel and from a Client that has access to the SecurityAdmin Role (see 7.2 ). Signature GetRejectedList( [out] ByteString[] Certificates ); Argument Description Certificates The DER encoded form
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.10.3 ServerConfigurationType
  completed transaction. The TransactionDiagnostics Object is only visible to Clients with access to the SecurityAdmin Role . The ConfigurationFile Object allows the current configuration to be read and updated
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.10.4 ServerConfiguration
  CertificateGroups Object should only be visible to Clients with access to the SecurityAdmin Role . Its representation in the AddressSpace is formally defined in Table 88 . Table 88 - ServerConfiguration Object Definition
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.10.5 UpdateCertificate
  called from an encrypted SecureChannel and from a Client that has access to the SecurityAdmin Role (see 7.2 ). Signature UpdateCertificate( [in] NodeId CertificateGroupId [in] NodeId CertificateTypeId [in] ByteString Certificate
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.10.6 CreateSelfSignedCertificate
  called from an authenticated SecureChannel and from a Client that has access to the SecurityAdmin Role (see 7.2 ). Signature CreateSelfSignedCertificate ( [in] NodeId CertificateGroupId [in] NodeId CertificateTypeId [in] String SubjectName
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.10.7 DeleteCertificate
  called from an authenticated SecureChannel and from a Client that has access to the SecurityAdmin Role (see 7.2 ). Signature DeleteCertificate( [in] NodeId CertificateGroupId [in] NodeId CertificateTypeId ); Argument Description CertificateGroupId
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.10.8 GetCertificates
  called from an authenticated SecureChannel and from a Client that has access to the SecurityAdmin Role (see 7.2 ). Signature GetCertificates( [in] NodeId CertificateGroupId [out] NodeId[] CertificateTypeIds [out] ByteString[] Certificates ); Argument
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.10.9 ApplyChanges
  SecureChannel and from the Session that created the transaction and has access to the SecurityAdmin Role (see 7.2 ). Signature ApplyChanges(); Method Result Codes (defined in Call Service) Result Code Description
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.10.10 CreateSigningRequest
  called from an encrypted SecureChannel and from a Client that has access to the SecurityAdmin Role (see 7.2 ). Signature CreateSigningRequest( [in] NodeId CertificateGroupId [in] NodeId CertificateTypeId [in] String SubjectName
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.10.11 CancelChanges
  SecureChannel and from the Session that created the transaction and has access to the SecurityAdmin Role (see 7.2 ). Signature CancelChanges(); Method Result Codes (defined in Call Service) Result Code Description
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.10.12 GetRejectedList
  called from an authenticated SecureChannel and from a Client that has access to the SecurityAdmin Role (see 7.2 ). Signature GetRejectedList( [out] ByteString[] Certificates ); Argument Description Certificates The DER encoded form
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.10.13 ResetToServerDefaults
  called from an authenticated SecureChannel and from a Client that has access to the SecurityAdmin Role (see 7.2 ). Signature ResetToServerDefaults (); Method Result Codes (defined in Call Service) Result Code Description
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  7.10.20 ApplicationConfigurationFileType
  called from an authenticated SecureChannel and from a Client that has access to the SecurityAdmin Role (see 7.2 ). Table 107 - ApplicationConfigurationFileType Definition Attribute Value BrowseName 0:ApplicationConfigurationFileType IsAbstract False References
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.4 Push Management
  using the PushManagement model, requires an encrypted channel and Clients with acccess to the SecurityAdmin Role
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.6.3 CreateCredential
  called from an encrypted SecureChannel and from a Client that has access to the SecurityAdmin Role (see 8.2 ) . Signature CreateCredential ( [in] String Name [in] String ResourceUri [in] String ProfileUri
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.6.6 GetEncryptingKey
  called from an encrypted SecureChannel and from a Client that has access to the SecurityAdmin Role (see 8.2 ) . Signature GetEncryptingKey( [in] String CredentialId [in] String RequestedSecurityPolicyUri [out] ByteString PublicKey
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.6.7 UpdateCredential
  called from an encrypted SecureChannel and from a Client that has access to the SecurityAdmin Role (see 8.2 ) . Signature UpdateCredential( [in] String CredentialId [in] ByteString CredentialSecret [in] String CertificateThumbprint
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  8.6.8 DeleteCredential
  called from an encrypted SecureChannel and from a Client that has access to the SecurityAdmin Role (see 8.2 ) . Signature DeleteCredential(); Method Result Codes (defined in Call Service) Result Code Description
• OPC-10000-12 – OPC Unified Architecture - Part 12: Discovery and Global Services
  G.2 Application setup with the PushManagement
  file that defaults to ON; Always allow Clients to connect securely and assign the SecurityAdmin Role to Anonymous user if the TrustList is empty; Connect to the Server after toggling ... device which enables access for a short period. Add Client ApplicationUri to SecurityAdmin Role , remove Anonymous from SecurityAdmin Role ; Provide a new Certificate and TrustList ; Set the configuration flag
• OPC-10000-18 – OPC Unified Architecture - Part 18: Role-Based Security
  4.2.2 AddRole Method
  RoleSet Object . If the optional Properties EndpointsExclude and ApplicationsExclude are available on the Role Object created with this Method , the initial values of the EndpointsExclude and ApplicationsExclude Properties shall ... shall use an encrypted channel and shall provide user credentials with administrator rights like SecurityAdmin Role when invoking this Method on the Server . OPC 10000-3 defines well-known Roles
• OPC-10000-18 – OPC Unified Architecture - Part 18: Role-Based Security
  4.2.3 RemoveRole Method
  Server to function. If a Role is removed all Permissions associated with the Role shall be deleted. Ideally these changes should take effect immediately; however, some lag may occur ... shall use an encrypted channel and shall provide user credentials with administrator rights like SecurityAdmin Role when invoking this Method on the Server . Signature RemoveRole ( [in] NodeId RoleNodeId ); Argument Description
• OPC-10000-18 – OPC Unified Architecture - Part 18: Role-Based Security
  4.4.5 AddIdentity Method
  shall use an encrypted channel and shall provide user credentials with administrator rights like SecurityAdmin Role when invoking this Method on the Server . Signature AddIdentity ( [in] IdentityMappingRuleType Rule ); Argument Description
• OPC-10000-21 – OPC Unified Architecture - Part 21: Device Onboarding
  9.3.5 SetRegistrarEndpoints
  automatically. This Method shall be called from a Session that has access to the SecurityAdmin Role (see 4.2.6 ). Signature SetRegistrarEndpoints ( [in] 0:ApplicationDescription [] registrars ); Argument Description registrars The Servers which