The certificate generated with the procedure in this video is likely to work with other OPC UA Servers as well.
The openSSL commands used in the video:
- genrsa -out YourPath\key.pem 2048
- req -x509 -days 365 -new -out YourPath\cert.pem -key YourPath\key.pem -config YourPath\cert.conf
- x509 -outform der -in YourPath\cert.pem -out YourPath\tutorial.der
Link to download OpenSSL: OpenSSL download | SourceForge.net
Link to IRC5 OPC UA Server: https://developercenter.robotstudio.com/
The Config file:
[ req ]
default_bits = 2048
default_md = sha256
distinguished_name = subject
req_extensions = req_ext
x509_extensions = req_ext
string_mask = utf8only
prompt = no
[ req_ext ]
basicConstraints = CA:FALSE
nsCertType = client, server
keyUsage = nonRepudiation, digitalSignature, keyEncipherment, dataEncipherment, keyCertSign
extendedKeyUsage= serverAuth, clientAuth
nsComment = “OpenSSL Tutorial for IRC5 OPC-UA”
subjectKeyIdentifier=hash
authorityKeyIdentifier=keyid,issuer
subjectAltName = URI:urn:opcua:python:client,IP: 127.0.0.1
[ subject ]
countryName = SE
stateOrProvinceName = VG
localityName = VG
organizationName = ABB
commonName = PythonOpcUaClient