CDP Studio

The no-code and full-code software development tool for distributed control systems and HMI

CDP Studio Documentation

OPC UA Data Types OPC UA ServerVariableNode

OPC-UA-Server

OPC-UA-Server

CDP OPC-UA-Server is a CDP module that can be added to the CDP application in order to serve and exchange information in the OPC UA (Open Platform Communications Unified Architecture) network.

OPC-UA-Server has the following configuration properties:

PropertyDescription
EndpointInterface<string>Interface name (from CDP Application configuration) for the server to listen on. Set empty to listen on all interfaces. Defaults to ETH0.
EndpointPort<unsigned short>TCP port for the server to listen on. Defaults to 4840.
SecurityMode<string>OPC UA message security mode to use. Choose between:
  • None - no security (server default setting)
  • Sign - all messages are digitally signed but not encrypted
  • Sign&Encrypt - all messages are digitally signed and encrypted (best security)
SecurityPolicy<string>OPC UA security policy to use, when SecurityMode other than None is selected. Choose between:
  • Aes256_Sha256_RsaPss - the most secure option for modern systems requiring the highest security and performance (server default setting). Policy is described in detail at http://opcfoundation.org/UA/SecurityPolicy#Aes256_Sha256_RsaPss
  • Aes128_Sha256_RsaOaep - a balanced option for modern systems requiring moderate security and performance. Policy is described in detail at http://opcfoundation.org/UA/SecurityPolicy#Aes128_Sha256_RsaOaep
  • Basic256Sha256 - suitable for systems requiring robust security, such as industrial automation or sensitive data applications. Policy is described in detail at http://opcfoundation.org/UA/SecurityPolicy#Basic256Sha256
  • Basic256 - this policy is no longer considered as secure and therefore should only be used in rare circumstances, when client does not support more secure policies. Policy is described in detail at http://opcfoundation.org/UA/SecurityPolicy#Basic256
  • Basic128Rsa15 - this policy is no longer considered as secure and therefore should only be used in rare circumstances, when client does not support more secure policies. Policy is described in detail at http://opcfoundation.org/UA/SecurityPolicy#Basic128Rsa15
TLSServerCertFile<string>Adapter TLS key certificate file name. Must be filled when SecurityMode other than None is selected. See also OPC UA TLS certificate setup.
TLSServerKeyFile<string>Adapter TLS key file name. Must be filled when SecurityMode other than None is selected. See also OPC UA TLS certificate setup.
TLSAllowURIMismatch<bool>Can be set to true to allow connection from clients with TLS certificates that do not match with their application URI. See also OPC UA TLS certificate setup.
AnonymousAccessLevel<unsigned char>Access level flags for clients logging in without credentials (using anonymous mode). The following OPC UA access flags can be set:
  • R - Allow read access for anonymous clients
  • W - Allow write access for anonymous clients
  • h - Allow history read access for anonymous clients
  • H - Allow history write access for anonymous clients
  • C - Allow semantic change for anonymous clients
  • s - Allow status write for anonymous clients
  • T - Allow timestamp write for anonymous clients
EndpointAppURI<string>OPC UA namespace URI for the application. If left empty, adapter component full name is used.
EndpointAppName<string>Description for the application to be advertised. If left empty, CDP component name is used.

An unlimited number of AllowedClient sub-elements can be added to OPC-UA-Server to configure allowed clients and their credentials. Each AllowedClient has the following configuration properties:

PropertyDescription
Name<string>OPC UA client username
Password<string>OPC UA client password
TLSClientCertFile<string>OPC UA client TLS certificate to use for authentication. Can be left empty if SecurityMode None is used.
AccessLevel<unsigned char> Access level flags for this OPC UA client. The following OPC UA access flags can be set:
  • R - Allow read access for this client
  • W - Allow write access for this client
  • h - Allow history read access for this client
  • H - Allow history write access for this client
  • C - Allow semantic change for this client
  • s - Allow status write for this client
  • T - Allow timestamp write for this client

Note: For strongest authentication use AllowedClients that have both password and certificate authentication.

Server state can be observed at runtime via these read-only properties:

EndpointURL<string>Endpoint URL. Is automatically composed from protocol, listen ip and port.
EndpointProtocol<string>OPC UA protocol to use. Currently only opc.tcp (binary) protocol is supported.
CurrentState<string>State of the adapter. Can be Online or Offline. When a problem is detected at startup, the server is offline.

Nodes

An unlimited number of server nodes can be added to the OPC-UA-Server to configure the information that must present to be served by the server. Nodes can contain other nodes and therefore can form a complex node-tree.

The following nodes can be added hierarchically to OPC-UA-Server:

  • ServerObjectNode - for combining nodes into capsulated objects
  • ServerVariableNode - for exposing any CDP value (or set of values) as an OPC UA variable
  • ServerMethodNode - for allowing OPC UA clients to invoke a code in CDP
  • EventsToOPC-UA - for converting and forwarding CDP events (including alarm events) to OPC UA clients as OPC UA events (including conditon events e.g. alarms)

OPC UA Data Types OPC UA ServerVariableNode

The content of this document is confidential information not to be published without the consent of CDP Technologies AS.

CDP Technologies AS, www.cdpstudio.com

Get started with CDP Studio today

Let us help you take your great ideas and turn them into the products your customer will love.

Try CDP Studio for free
Why CDP Studio?