Comments (5)
@eoursel. Martin, who wrote the script, is currently on vacation, but will have a look when he returns in 2 weeks' time.
from ua-.netstandard.
@eoursel sorry I can't repro this here on Ubuntu 16.04. Please check this:
i) there should not be a password set on the private key. Just hit twice return.
ii) rename or delete the ./OPC Foundation/
folder before ./createcert.sh
is run to make sure there are only the new certs in the CertificateStore.
If it still doesn't work could you send me the failing .der & .pfx certs?
from ua-.netstandard.
@mregen you are right that's the password of the private key. I would recommend to add the option -passout like
openssl pkcs12 -export -in cert.pem -inkey cert.key -out $MYHOSTNAME.pfx -nodes -passout pass:
in order to avoid entering a password. As a matter of fact, i would try to automate the creation of a docker container with the UA server and it's a mandatory requirement to have a completely automated script with no operator interaction.
Anyway, there is at least a cyber security issue if we can't use a private key protected by a password to start a server. Ok i know that the TPM library @barnstee mentioned is certainly a clever solution.
Regards
Eric
from ua-.netstandard.
@eoursel Thanks, good point, I will fix the scripts. The scripts are only meant to be used to run the samples, not in production.
For the pw support for the private keys we should have a feature request to make sure it is properly supported if required.
from ua-.netstandard.
#51 to improve cert handling.
from ua-.netstandard.
Related Issues (20)
- CRL with zero revoked certificates fails to be decoded
- Something slows everything down HOT 4
- Server allows unlimited number of channels and doesn't remove stale channels
- IOP: Data structure Data:Array:ByteValue returns ByteString as datatype instead of Byte array.
- IOP: Loading complex may throw BadNothingTodo exception if DataTypeDictionary nodes are not populated
- Wireshark logs show sometimes a lot of TCP retransmissions HOT 2
- Usage of outdated and unmaintained dependencies HOT 1
- how to use Redundancy HOT 1
- CertificateIdentifier:Find(bool) returns no private key after Version 1.4.367.0 HOT 2
- Improve console client sample with user certificate support
- KeyFrame is not sent if no changed values HOT 1
- Could not load Configuration file (Implementation as a Windows Service) HOT 1
- Programmatically creation of Macinery Nodeset on Server HOT 2
- <Reprovisioning after OPC UA Server Certificate Revocation> HOT 4
- NullReferenceException in XmlDecoder.ReadExpandedNodeId
- Private key of application certificate must be set to exportable HOT 2
- Object with OpcUaType_NullEventNotifier gives NullReferenceException in opc ua client HOT 1
- Too many messages of "UaPublisher - PublishNetworkMessage, WriterGroupId:{0}; success = {1}" on log file
- Client keeps disconnecting/reconnecting to broker if it runs as publisher and subscriber at the same time HOT 2
- CertificateIdentifier.Find returns null despite of the fact that a certificate exists HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from ua-.netstandard.