Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Connect to OPC UA Server with UserName/Password #381

Closed
sanny32 opened this issue Mar 2, 2018 · 2 comments
Closed

Connect to OPC UA Server with UserName/Password #381

sanny32 opened this issue Mar 2, 2018 · 2 comments

Comments

@sanny32
Copy link

sanny32 commented Mar 2, 2018

What is the way to configure OPC UA Server to connect with UserName and Password?
I'm tried this configuration in server xml file configuration, but without success.
<RegistrationEndpoint> <ua:UserIdentityTokens> <ua:UserIdentityToken> <ua:UserName>User1</ua:UserName> <ua:Password>1</ua:Password> </ua:UserIdentityToken> </ua:UserIdentityTokens> </RegistrationEndpoint>
@fchaxel
Copy link

fchaxel commented Mar 4, 2018
edited

Hi @sanny32

For a full code see in UA-.NETStandard\SampleApplications\Workshop\UserAuthentication

In the xml file section UserTokenPolicies
<ua:UserTokenPolicy> <ua:TokenType>UserName_1</ua:TokenType> </ua:UserTokenPolicy>

means that a client could provided a username with (or without) password for login.

With <UserTokenPolicy> Anonymous and X509 personnal certificate : remove them if you just want login/password.

For login/password in the child class of StandardServer adds something like the following code.

protected override void OnServerStarted(IServerInternal server) { base.OnServerStarted(server); server.SessionManager.ImpersonateUser += new ImpersonateEventHandler(SessionManager); }

SessionManager just creates the UserIdentity object to accept the user ... or not to reject it.
Inside it login/pass are verified using userNameToken.UserName, userNameToken.DecryptedPassword properties.

private void SessionManager(Session session, ImpersonateEventArgs args) { UserNameIdentityToken userNameToken = args.NewIdentity as UserNameIdentityToken; if (userNameToken != null) { args.Identity = new UserIdentity(userNameToken); return; } }

Bye.

@sanny32
Copy link
Author

sanny32 commented Mar 7, 2018
edited

Exploring the source code, I have found the user account path in OS: %CommonApplicationData%\OPC Foundation\Accounts\{Application Name}\{UserName}.xml, where {Application Name} - name of the executable file of the OPC UA Server, {UserName} - name of the user account.
This xml file contains user name and encrypted password.
To create this file you can use Opc.Ua.ConfigurationTool.exe or UserNameCreator class in the Opc.Ua.Configuration namespace (UA COM Interop Library).
This way allows to use Username/Password acces to OPC UA COM Server Wrapper.

@fchaxel fchaxel mentioned this issue Mar 7, 2018
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@sanny32 @AlinMoldovean @fchaxel