9.2.10 DeviceRegistrarAdminType
The DeviceRegistrarAdminType ObjectType that provides an interface to manage the TrustLists and Tickets used by the Registrar when authenticating Devices on a network. The ObjectType is defined in Table 26
| Attribute | Value | ||||
| BrowseName | 2:DeviceRegistrarAdminType | ||||
| IsAbstract | False | ||||
| References | NodeClass | BrowseName | DataType | TypeDefinition | Modelling Rule |
|---|---|---|---|---|---|
| Subtype of the BaseObjectType defined in OPC 10000-5. | |||||
| 0:HasComponent | Method | 2:RegisterTickets | Defined in 9.2.11. | Mandatory | |
| 0:HasComponent | Method | 2:UnregisterTickets | Defined in 9.2.12. | Mandatory | |
| 0:HasComponent | Object | 2:TicketAuthorities | 0:TrustListType | Mandatory | |
| 0:HasComponent | Object | 2:DeviceIdentityAuthorities | 0:TrustListType | Mandatory | |
| Conformance Units | |||||
|---|---|---|---|---|---|
| Onboarding Registrar Administration |
The RegisterTickets Method allows an administration Client to provide a list of Tickets for Devices and Composites that it is expecting to install on the network. Any Device which matches one of these Tickets will be accepted automatically.
The UnregisterTickets Method allows an administration Client to remove Tickets for Devices and Composites that it previously provided. Removing Tickets does not affect Devices that were previously accepted using the Tickets.
The TicketAuthorities Object allows an administration Client to manage the Certificates for authorities that sign Tickets. If a Device provides a Ticket, it is accepted automatically if and only if the signing Certificate is in this list.
The DeviceIdentityAuthorities Object allows an RegistrarAdmin manage the trusted DeviceIdentity Certificates. This list can contain individual DeviceIdentity Certificates that have a valid Ticket or it can contain the issuers for DeviceIdentity Certificates that are provided out of band.