7.9.8 GetCertificates

The GetCertificates Method returns the Certificates assigned to the application and associated with the CertificateGroup.

This Method shall be called from an authenticated SecureChannel and from a Client that has access to the CertificateAuthorityAdmin Role, the ApplicationAdmin Privilege, or the ApplicationSelfAdmin Privilege (see 7.2).

Signature

GetCertificates(
	[in]  NodeId ApplicationId
	[in]  NodeId CertificateGroupId
	[out] NodeId[] CertificateTypeIds
	[out] ByteString[] Certificates
);
Argument Description
ApplicationIdThe identifier assigned to the application by the GDS.
CertificateGroupId

An identifier for the CertificateGroup that the Certificates belong to.

If null, the CertificateManager shall return the Certificates for all CertificateGroups assigned to the application.

CertificateTypeIds

The CertificateTypes that currently have a Certificate assigned.

The length of this list is the same as the length as certificates list.

Certificates

A list of DER encoded Certificates assigned to application.

This list only includes Certificates that are currently valid.

Method Result Codes (defined in Call Service)

Result Code Description
Bad_NotFoundThe ApplicationId does not refer to a registered application.
Bad_InvalidArgumentThe CertificateGroupId is not recognized or not valid for the application.
Bad_UserAccessDeniedThe current user does not have the rights required.
Bad_SecurityModeInsufficientThe SecureChannel is not authenticated.

Table 80 specifies the AddressSpace representation for the GetCertificates Method.

Table 80 – GetCertificates Method AddressSpace Definition
Attribute Value
BrowseName2:GetCertificates
References NodeClass BrowseName DataType TypeDefinition ModellingRule
0:HasPropertyVariable0:InputArguments0:Argument[] 0:PropertyTypeMandatory
0:HasPropertyVariable0:OutputArguments0:Argument[] 0:PropertyTypeMandatory
Conformance Units
GDS Certificate Manager GetCertificates