SUPPORT required to connect to an Siemens S7 1214C PLC #5

H4rw3y5ag3 · 2026-05-11T22:03:06Z

H4rw3y5ag3
May 11, 2026

Hi,

I'm trying to connect to an OPC-UA Server on my S7.
If I activate the Anonymous User and connect without a user and password flag, it works.
It also works if I set any SecurityPolicy and SecurityMode (currently I've tested with Basic256Sha256 and Mode SignAndEncrypt ).
But I've trouble when I try a user and password combination.
Then I get all the time the error:

Fatal error: Uncaught PhpOpcua\Client\Exception\ServiceException: Server returned ServiceFault: 0x80200000

A search result for this code is: BadIdentityTokenInvalid,
the PLC is configured that it automatically accepts certificates.

I've no idea what I'm doing wrong. I've also tried to generate the certificates but no difference. With UaExpert it works.
Would be great if someone could help me.

Answered by H4rw3y5ag3

May 15, 2026

see the results

[2026-05-15 14:57:50.495931] opcua.INFO: Diagnostic run starting {"discoveryUrl":"opc.tcp://***:4840","sessionUrl":"opc.tcp://***:4840"}
[2026-05-15 14:57:50.497191] opcua.INFO: === TEST: endpoint enumeration ===
[2026-05-15 14:57:50.520209] opcua.DEBUG: Discovering server certificate from ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 14:57:50.522748] opcua.DEBUG: Discovery HEL for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:50.528406] opcua.DEBUG: Discovery ACK received, sending OPN request {"endpoint":null,"session_id":null}
[2026-05-15 14:57:50.532866] opcua.DEBUG: Discovery OPN …

View full answer

GianfriAur · 2026-05-11T23:24:50Z

GianfriAur
May 11, 2026
Maintainer

Hi @H4rw3y5ag3 ,Thanks for the report,

I will immediately investigate the problem so that it can be resolved as quickly as possible.

To better understand what you're using, could you confirm that you use:

Security: Basic256Sha256
Authentication: SignAndEncrypt
with username and password of course, right?

Could you confirm that you are using v4.3.0?

last thing it would be great if you could run this code which would give me a complete insight into the problem

require __DIR__ . '/../vendor/autoload.php';

use PhpOpcua\Client\ClientBuilder;
use PhpOpcua\Client\Exception\ConnectionException;
use PhpOpcua\Client\Exception\OpcUaException;
use PhpOpcua\Client\Security\SecurityMode;
use PhpOpcua\Client\Security\SecurityPolicy;
use Psr\Log\AbstractLogger;

$logger = new class (__DIR__ . '/opcua-debug.log') extends AbstractLogger {
   /** @var resource */
   private $file;

   public function __construct(string $logPath)
   {
       $handle = fopen($logPath, 'ab');

       if ($handle === false) {
           throw new RuntimeException(sprintf('Cannot open log file: %s', $logPath));
       }

       $this->file = $handle;
   }

   /**
    * @param mixed $level
    * @param string|Stringable $message
    * @param array<string, mixed> $context
    */
   public function log($level, string|Stringable $message, array $context = []): void
   {
       $timestamp = (new DateTimeImmutable())->format('Y-m-d H:i:s.u');
       $redacted = $this->redact($context);
       $interpolated = $this->sanitizeString($this->interpolate((string)$message, $redacted));
       $contextJson = $redacted === [] ? '' : ' ' . json_encode($redacted, JSON_UNESCAPED_SLASHES | JSON_UNESCAPED_UNICODE | JSON_PARTIAL_OUTPUT_ON_ERROR);

       $line = sprintf('[%s] opcua.%s: %s%s%s', $timestamp, strtoupper((string)$level), $interpolated, $contextJson, PHP_EOL);

       fwrite(STDOUT, $line);
       fwrite($this->file, $line);
   }

   /**
    * @param array<string, mixed> $context
    * @return array<string, mixed>
    */
   private function redact(array $context): array
   {
       foreach ($context as $key => $value) {
           if (is_array($value)) {
               $context[$key] = $this->redact($value);
               continue;
           }

           if (in_array($key, ['session_id', 'token', 'authToken'], true) && $value !== null && $value !== '') {
               $context[$key] = '***' . substr(md5((string)$value), -5);
               continue;
           }

           if ($key === 'host' && $value !== null && $value !== '') {
               $context[$key] = '***';
               continue;
           }

           if (is_string($value)) {
               $context[$key] = $this->sanitizeString($value);
           }
       }

       return $context;
   }

   private function sanitizeString(string $value): string
   {
       static $projectRoot = null;

       if ($projectRoot === null) {
           $projectRoot = dirname(__DIR__);
       }

       if ($projectRoot !== '' && $projectRoot !== '/') {
           $value = str_replace($projectRoot, '<project>', $value);
       }

       $value = (string)preg_replace('~/(home|Users)/[^/\s"\'<>]+~', '/$1/<user>', $value);

       $value = (string)preg_replace_callback(
           '~\b([a-z][a-z0-9+\-.]*)://([^/:?#\s"\'<>}\]]+)([^\s"\'<>}\]]*)?~i',
           static fn(array $m): string => $m[1] . '://***' . ($m[3] ?? ''),
           $value,
       );

       return (string)preg_replace_callback(
           '~(?<![:/.\w])(?:(?:[a-z0-9](?:[a-z0-9\-]*[a-z0-9])?\.)+[a-z][a-z0-9\-]*|[a-z][a-z0-9\-]*|\d{1,3}(?:\.\d{1,3}){3}):(\d{1,5})(?!\d)~i',
           static fn(array $m): string => '***:' . $m[1],
           $value,
       );
   }

   /**
    * @param array<string, mixed> $context
    */
   private function interpolate(string $message, array $context): string
   {
       $replacements = [];

       foreach ($context as $key => $value) {
           if (is_scalar($value) || $value === null || $value instanceof Stringable) {
               $replacements['{' . $key . '}'] = (string)($value ?? '');
           }
       }

       return strtr($message, $replacements);
   }
};

try {
   $builder = ClientBuilder::create(logger: $logger)
       ->setSecurityPolicy(SecurityPolicy::Basic256Sha256)
       ->setSecurityMode(SecurityMode::SignAndEncrypt)
       // Client certificate: if omitted, the library auto-generates an
       // ephemeral self-signed RSA-2048 certificate in memory (changes on
       // every Client instance). For production, uncomment and provide your
       // own certificate, private key, and optional CA chain:
       // ->setClientCertificate(
       //     __DIR__ . '/certs/client.pem',
       //     __DIR__ . '/certs/client.key',
       //     __DIR__ . '/certs/ca.pem',
       // )
       ->setUserCredentials('admin', 'admin123');
   //  ->setBatchSize(0); // Disable batching, skipping discoverServerOperationLimits feature
   //  ->autoAccept(true, force:true); // Client forces auto accept server certificate even if not trusted

   $client = $builder->connect('opc.tcp://localhost:4841/UA/TestServer');

   $status = $client->read('i=2259');
   $logger->info('ServerStatus read', [
       'value' => $status->getValue(),
       'statusCode' => $status->statusCode,
   ]);


   // WARNING: the block below logs the server build info (vendor, software
   // version, build number) -- this is a server fingerprint and may help an
   // attacker identify CVEs affecting your deployment. Uncomment only if you
   // intend to share the output in accordance with SECURITY.md.
   //$info = $client->getServerBuildInfo();
   //$logger->info('Server build info', [
   //    'productName'      => $info->productName,
   //    'manufacturerName' => $info->manufacturerName,
   //    'softwareVersion'  => $info->softwareVersion,
   //    'buildNumber'      => $info->buildNumber,
   //    'buildDate'        => $info->buildDate?->format(DateTimeInterface::ATOM),
   //]);

   $client->disconnect();
} catch (Throwable $e) {
   $label = match (true) {
       $e instanceof ConnectionException => 'OPC UA connection failed',
       $e instanceof OpcUaException => 'OPC UA exception',
       default => 'Unhandled exception',
   };

   $logger->error($label, [
       'exception' => $e::class,
       'message' => $e->getMessage(),
       'file' => $e->getFile() . ':' . $e->getLine(),
       'trace' => $e->getTraceAsString(),
   ]);

   throw $e;
}

In this code I also added the autoAccept option for server certificates and setBatchSize to disable the discoverServerOperationLimits feature which can cause problems on old servers.

Let me know how it goes, with this I can intervene in a targeted way without going crazy
Don't worry, all sensitive data is already masked in the debug log.

It should generate a full debug report, so I understand exactly what's going on,

[2026-05-12 08:43:35.690305] opcua.DEBUG: Discovering server certificate from ***:4841 {"endpoint":null,"session_id":null,"host":"***","port":4841}
[2026-05-12 08:43:35.691457] opcua.DEBUG: Discovery HEL for opc.tcp://***:4841/UA/TestServer {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4841/UA/TestServer"}
[2026-05-12 08:43:35.694555] opcua.DEBUG: Discovery ACK received, sending OPN request {"endpoint":null,"session_id":null}
[2026-05-12 08:43:35.695806] opcua.DEBUG: Discovery OPN response received {"endpoint":null,"session_id":null}
[2026-05-12 08:43:35.697966] opcua.DEBUG: Discovery GetEndpoints request for opc.tcp://***:4841/UA/TestServer {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4841/UA/TestServer"}
[2026-05-12 08:43:35.699457] opcua.DEBUG: Discovery GetEndpoints response received {"endpoint":null,"session_id":null}
[2026-05-12 08:43:35.699864] opcua.INFO: Connecting to opc.tcp://***:4841/UA/TestServer {"endpoint":"opc.tcp://***:4841/UA/TestServer","session_id":null}
[2026-05-12 08:43:35.700263] opcua.DEBUG: TCP connection established to ***:4841 {"endpoint":null,"session_id":null,"host":"***","port":4841}
[2026-05-12 08:43:35.700318] opcua.DEBUG: Sending HEL message to opc.tcp://***:4841/UA/TestServer {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4841/UA/TestServer"}
[2026-05-12 08:43:35.701823] opcua.DEBUG: ACK received (receiveBufferSize=65535) {"endpoint":null,"session_id":null,"bufferSize":65535}
[2026-05-12 08:43:35.701904] opcua.DEBUG: HEL/ACK handshake complete {"endpoint":null,"session_id":null}
[2026-05-12 08:43:35.943617] opcua.DEBUG: OpenSecureChannel request (policy=Basic256Sha256, mode=SignAndEncrypt) {"endpoint":null,"session_id":null,"policy":"Basic256Sha256","mode":"SignAndEncrypt"}
[2026-05-12 08:43:35.993276] opcua.DEBUG: OpenSecureChannel response: channelId=17 {"endpoint":null,"session_id":null,"channelId":17}
[2026-05-12 08:43:35.996727] opcua.DEBUG: Secure channel opened (channelId=17) {"endpoint":null,"session_id":null,"channelId":17}
[2026-05-12 08:43:35.997293] opcua.DEBUG: CreateSession request for opc.tcp://***:4841/UA/TestServer {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4841/UA/TestServer"}
[2026-05-12 08:43:36.002108] opcua.DEBUG: CreateSession response: authToken=***e7ad9 {"endpoint":null,"session_id":"***e7ad9","token":"***e7ad9"}
[2026-05-12 08:43:36.005790] opcua.DEBUG: ActivateSession request {"endpoint":null,"session_id":"***e7ad9"}
[2026-05-12 08:43:36.008416] opcua.DEBUG: ActivateSession response received {"endpoint":null,"session_id":"***e7ad9"}
[2026-05-12 08:43:36.008488] opcua.DEBUG: Session created and activated {"endpoint":null,"session_id":"***e7ad9"}
[2026-05-12 08:43:36.008825] opcua.DEBUG: ReadMulti request: 2 item(s) {"endpoint":"opc.tcp://***:4841/UA/TestServer","session_id":"***e7ad9","count":2}
[2026-05-12 08:43:36.010236] opcua.DEBUG: ReadMulti response: 2 value(s) {"endpoint":"opc.tcp://***:4841/UA/TestServer","session_id":"***e7ad9","count":2}
[2026-05-12 08:43:36.010451] opcua.DEBUG: Server limits discovered: MaxNodesPerRead=1000, MaxNodesPerWrite=1000 {"endpoint":"opc.tcp://***:4841/UA/TestServer","session_id":"***e7ad9","read":1000,"write":1000}
[2026-05-12 08:43:36.010493] opcua.INFO: Connected to opc.tcp://***:4841/UA/TestServer {"endpoint":"opc.tcp://***:4841/UA/TestServer","session_id":"***e7ad9"}
[2026-05-12 08:43:36.010635] opcua.DEBUG: Read request for node i=2259 (attributeId=13) {"endpoint":"opc.tcp://***:4841/UA/TestServer","session_id":"***e7ad9","nodeId":"i=2259","attr":13}
[2026-05-12 08:43:36.011859] opcua.DEBUG: Read response for node i=2259: statusCode=0 {"endpoint":"opc.tcp://***:4841/UA/TestServer","session_id":"***e7ad9","nodeId":"i=2259","status":0}
[2026-05-12 08:43:36.011927] opcua.INFO: ServerStatus read {"value":0,"statusCode":0}
[2026-05-12 08:43:36.011946] opcua.INFO: Disconnecting {"endpoint":"opc.tcp://***:4841/UA/TestServer","session_id":"***e7ad9"}
[2026-05-12 08:43:36.011977] opcua.DEBUG: CloseSession request {"endpoint":"opc.tcp://***:4841/UA/TestServer","session_id":"***e7ad9"}
[2026-05-12 08:43:36.013324] opcua.DEBUG: CloseSecureChannel request (channelId=17) {"endpoint":"opc.tcp://***:4841/UA/TestServer","session_id":"***e7ad9","channelId":17}

This test you see was done against UA-.NETStandard

In the meantime, thank you very much for reporting the problem and thanks in advance for your contribution.

2 replies

H4rw3y5ag3 May 15, 2026
Author

Hi,
sorry for the delay, thanks for this kind and quick support.

Here is the whole console output and stack trace, of the code above.

[2026-05-15 11:19:30.414074] opcua.DEBUG: Discovering server certificate from ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 11:19:30.437007] opcua.DEBUG: Discovery HEL for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 11:19:30.448988] opcua.DEBUG: Discovery ACK received, sending OPN request {"endpoint":null,"session_id":null}
[2026-05-15 11:19:30.454322] opcua.DEBUG: Discovery OPN response received {"endpoint":null,"session_id":null}
[2026-05-15 11:19:30.461081] opcua.DEBUG: Discovery GetEndpoints request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 11:19:30.464406] opcua.DEBUG: Discovery GetEndpoints response received {"endpoint":null,"session_id":null}
[2026-05-15 11:19:30.465605] opcua.INFO: Connecting to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":null}
[2026-05-15 11:19:30.477130] opcua.DEBUG: TCP connection established to ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 11:19:30.477248] opcua.DEBUG: Sending HEL message to opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 11:19:30.479265] opcua.DEBUG: ACK received (receiveBufferSize=8192) {"endpoint":null,"session_id":null,"bufferSize":8192}
[2026-05-15 11:19:30.479344] opcua.DEBUG: HEL/ACK handshake complete {"endpoint":null,"session_id":null}
[2026-05-15 11:19:30.862482] opcua.DEBUG: OpenSecureChannel request (policy=Basic256Sha256, mode=SignAndEncrypt) {"endpoint":null,"session_id":null,"policy":"Basic256Sha256","mode":"SignAndEncrypt"}
[2026-05-15 11:19:35.736979] opcua.DEBUG: OpenSecureChannel response: channelId=1486949969 {"endpoint":null,"session_id":null,"channelId":1486949969}
[2026-05-15 11:19:35.745882] opcua.DEBUG: Secure channel opened (channelId=1486949969) {"endpoint":null,"session_id":null,"channelId":1486949969}
[2026-05-15 11:19:35.746910] opcua.DEBUG: CreateSession request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 11:19:37.471030] opcua.DEBUG: CreateSession response: authToken=***3a8dc {"endpoint":null,"session_id":"***3a8dc","token":"***3a8dc"}
[2026-05-15 11:19:37.472813] opcua.DEBUG: ActivateSession request {"endpoint":null,"session_id":"***3a8dc"}
[2026-05-15 11:19:37.498444] opcua.ERROR: OPC UA exception {"exception":"PhpOpcua\\Client\\Exception\\ServiceException","message":"Server returned ServiceFault: 0x80200000 0x80200000","file":"<project>\\php\\vendor\\php-opcua\\opcua-client\\src\\Protocol\\***:47","trace":"#0 <project>\\php\\vendor\\php-opcua\\opcua-client\\src\\Protocol\\SessionService.php(249): PhpOpcua\\Client\\Protocol\\ServiceFault::throwIf(Object(PhpOpcua\\Client\\Types\\NodeId), 2149580800)\n#1 <project>\\php\\vendor\\php-opcua\\opcua-client\\src\\Client\\ManagesSessionTrait.php(98): PhpOpcua\\Client\\Protocol\\SessionService->decodeActivateSessionResponse(Object(PhpOpcua\\Client\\Encoding\\BinaryDecoder))\n#2 <project>\\php\\vendor\\php-opcua\\opcua-client\\src\\Client\\ManagesSessionTrait.php(31): PhpOpcua\\Client\\Client->activateSession('opc.tcp://***')\n#3 <project>\\php\\vendor\\php-opcua\\opcua-client\\src\\Client\\ManagesConnectionTrait.php(210): PhpOpcua\\Client\\Client->createAndActivateSession('opc.tcp://***')\n#4 <project>\\php\\vendor\\php-opcua\\opcua-client\\src\\Client.php(269): PhpOpcua\\Client\\Client->performConnect('opc.tcp://***')\n#5 <project>\\php\\vendor\\php-opcua\\opcua-client\\src\\ClientBuilder.php(296): PhpOpcua\\Client\\Client->__construct('opc.tcp://***', Object(PhpOpcua\\Client\\Security\\SecurityPolicy), Object(PhpOpcua\\Client\\Security\\SecurityMode), NULL, NULL, NULL, '****', '****', NULL, NULL, Object(Psr\\Log\\AbstractLogger@anonymous), Object(PhpOpcua\\Client\\Event\\NullEventDispatcher), NULL, NULL, false, false, Object(PhpOpcua\\Client\\Cache\\InMemoryCache), true, Object(PhpOpcua\\Client\\Cache\\WireCacheCodec), 5.0, NULL, NULL, 10, true, false, Object(PhpOpcua\\Client\\Repository\\ExtensionObjectRepository), Array, Object(PhpOpcua\\Client\\Module\\ModuleRegistry))\n#6 <project>\\php\\denug-test.php(135): PhpOpcua\\Client\\ClientBuilder->connect('opc.tcp://***')\n#7 {main}"}

Fatal error: Uncaught PhpOpcua\Client\Exception\ServiceException: Server returned ServiceFault: 0x80200000 0x80200000 in php\vendor\php-opcua\opcua-client\src\Protocol\ServiceFault.php:47
Stack trace:
#0 php\vendor\php-opcua\opcua-client\src\Protocol\SessionService.php(249): PhpOpcua\Client\Protocol\ServiceFault::throwIf(Object(PhpOpcua\Client\Types\NodeId), 2149580800)
#1 php\vendor\php-opcua\opcua-client\src\Client\ManagesSessionTrait.php(98): PhpOpcua\Client\Protocol\SessionService->decodeActivateSessionResponse(Object(PhpOpcua\Client\Encoding\BinaryDecoder))
#2 php\vendor\php-opcua\opcua-client\src\Client\ManagesSessionTrait.php(31): PhpOpcua\Client\Client->activateSession('opc.tcp://10.11...')
#3 php\vendor\php-opcua\opcua-client\src\Client\ManagesConnectionTrait.php(210): PhpOpcua\Client\Client->createAndActivateSession('opc.tcp://10.11...')
#4 php\vendor\php-opcua\opcua-client\src\Client.php(269): PhpOpcua\Client\Client->performConnect('opc.tcp://10.11...')
#5 php\vendor\php-opcua\opcua-client\src\ClientBuilder.php(296): PhpOpcua\Client\Client->__construct('opc.tcp://10.11...', Object(PhpOpcua\Client\Security\SecurityPolicy), Object(PhpOpcua\Client\Security\SecurityMode), NULL, NULL, NULL, '****', '****', NULL, NULL, Object(Psr\Log\AbstractLogger@anonymous), Object(PhpOpcua\Client\Event\NullEventDispatcher), NULL, NULL, false, false, Object(PhpOpcua\Client\Cache\InMemoryCache), true, Object(PhpOpcua\Client\Cache\WireCacheCodec), 5.0, NULL, NULL, 10, true, false, Object(PhpOpcua\Client\Repository\ExtensionObjectRepository), Array, Object(PhpOpcua\Client\Module\ModuleRegistry))
#6 php\denug-test.php(135): PhpOpcua\Client\ClientBuilder->connect('opc.tcp://10.11...')
#7 {main}
  thrown in php\vendor\php-opcua\opcua-client\src\Protocol\ServiceFault.php on line 47
PHP Fatal error:  Uncaught PhpOpcua\Client\Exception\ServiceException: Server returned ServiceFault: 0x80200000 0x80200000 in php\vendor\php-opcua\opcua-client\src\Protocol\ServiceFault.php:47
Stack trace:
#0 php\vendor\php-opcua\opcua-client\src\Protocol\SessionService.php(249): PhpOpcua\Client\Protocol\ServiceFault::throwIf(Object(PhpOpcua\Client\Types\NodeId), 2149580800)
#1 php\vendor\php-opcua\opcua-client\src\Client\ManagesSessionTrait.php(98): PhpOpcua\Client\Protocol\SessionService->decodeActivateSessionResponse(Object(PhpOpcua\Client\Encoding\BinaryDecoder))
#2 php\vendor\php-opcua\opcua-client\src\Client\ManagesSessionTrait.php(31): PhpOpcua\Client\Client->activateSession('opc.tcp://10.11...')
#3 php\vendor\php-opcua\opcua-client\src\Client\ManagesConnectionTrait.php(210): PhpOpcua\Client\Client->createAndActivateSession('opc.tcp://10.11...')
#4 php\vendor\php-opcua\opcua-client\src\Client.php(269): PhpOpcua\Client\Client->performConnect('opc.tcp://10.11...')
#5 php\vendor\php-opcua\opcua-client\src\ClientBuilder.php(296): PhpOpcua\Client\Client->__construct('opc.tcp://10.11...', Object(PhpOpcua\Client\Security\SecurityPolicy), Object(PhpOpcua\Client\Security\SecurityMode), NULL, NULL, NULL, '****', '****', NULL, NULL, Object(Psr\Log\AbstractLogger@anonymous), Object(PhpOpcua\Client\Event\NullEventDispatcher), NULL, NULL, false, false, Object(PhpOpcua\Client\Cache\InMemoryCache), true, Object(PhpOpcua\Client\Cache\WireCacheCodec), 5.0, NULL, NULL, 10, true, false, Object(PhpOpcua\Client\Repository\ExtensionObjectRepository), Array, Object(PhpOpcua\Client\Module\ModuleRegistry))
#6 php\denug-test.php(135): PhpOpcua\Client\ClientBuilder->connect('opc.tcp://10.11...')
#7 {main}
  thrown in php\vendor\php-opcua\opcua-client\src\Protocol\ServiceFault.php on line 47

GianfriAur May 15, 2026
Maintainer

Hi @H4rw3y5ag3

Does this error persist even after the update?

GianfriAur · 2026-05-12T10:18:12Z

GianfriAur
May 12, 2026
Maintainer

Hi @H4rw3y5ag3

It's very likely that I found the problem
I prepared a script to do a more in-depth diagnosis, diagnose.php

Can I kindly ask you to share the results, there is no sensitive data in the log it generates, thank you very much for your time, and have a nice day

13 replies

H4rw3y5ag3 May 15, 2026
Author

You did it 🎉

Awesome, and so quick, unbelievable ...

Here is the confirmaiton, that it worked :)

[2026-05-15 12:54:45.315729] opcua.INFO: Diagnostic run starting {"discoveryUrl":"opc.tcp://***:4840","sessionUrl":"opc.tcp://***:4840"}
[2026-05-15 12:54:45.327706] opcua.INFO: === TEST: endpoint enumeration ===
[2026-05-15 12:54:46.329883] opcua.DEBUG: Discovering server certificate from ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 12:54:46.346744] opcua.DEBUG: Discovery HEL for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:46.470012] opcua.DEBUG: Discovery ACK received, sending OPN request {"endpoint":null,"session_id":null}
[2026-05-15 12:54:46.477613] opcua.DEBUG: Discovery OPN response received {"endpoint":null,"session_id":null}
[2026-05-15 12:54:46.564322] opcua.DEBUG: Discovery GetEndpoints request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:46.568396] opcua.DEBUG: Discovery GetEndpoints response received {"endpoint":null,"session_id":null}
[2026-05-15 12:54:46.587126] opcua.INFO: Connecting to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":null}
[2026-05-15 12:54:46.601497] opcua.DEBUG: TCP connection established to ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 12:54:46.601753] opcua.DEBUG: Sending HEL message to opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:46.604066] opcua.DEBUG: ACK received (receiveBufferSize=8192) {"endpoint":null,"session_id":null,"bufferSize":8192}
[2026-05-15 12:54:46.604219] opcua.DEBUG: HEL/ACK handshake complete {"endpoint":null,"session_id":null}
[2026-05-15 12:54:46.678135] opcua.DEBUG: OpenSecureChannel request (no security) {"endpoint":null,"session_id":null}
[2026-05-15 12:54:46.682988] opcua.DEBUG: OpenSecureChannel response: channelId=1931770763 {"endpoint":null,"session_id":null,"channelId":1931770763}
[2026-05-15 12:54:46.839673] opcua.DEBUG: Secure channel opened (channelId=1931770763) {"endpoint":null,"session_id":null,"channelId":1931770763}
[2026-05-15 12:54:46.839948] opcua.DEBUG: CreateSession request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:46.851000] opcua.DEBUG: CreateSession response: authToken=***39d93 {"endpoint":null,"session_id":"***39d93","token":"***39d93"}
[2026-05-15 12:54:46.851240] opcua.DEBUG: ActivateSession request {"endpoint":null,"session_id":"***39d93"}
[2026-05-15 12:54:46.856218] opcua.DEBUG: ActivateSession response received {"endpoint":null,"session_id":"***39d93"}
[2026-05-15 12:54:46.856420] opcua.DEBUG: Session created and activated {"endpoint":null,"session_id":"***39d93"}
[2026-05-15 12:54:46.883030] opcua.DEBUG: ReadMulti request: 2 item(s) {"endpoint":"opc.tcp://***:4840","session_id":"***39d93","count":2}
[2026-05-15 12:54:46.887864] opcua.DEBUG: ReadMulti response: 2 value(s) {"endpoint":"opc.tcp://***:4840","session_id":"***39d93","count":2}
[2026-05-15 12:54:46.889843] opcua.DEBUG: Server limits discovered: MaxNodesPerRead=1000, MaxNodesPerWrite=1000 {"endpoint":"opc.tcp://***:4840","session_id":"***39d93","read":1000,"write":1000}
[2026-05-15 12:54:46.890046] opcua.INFO: Connected to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":"***39d93"}
[2026-05-15 12:54:46.890251] opcua.DEBUG: GetEndpoints request for opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":"***39d93","url":"opc.tcp://***:4840"}
[2026-05-15 12:54:46.894389] opcua.DEBUG: GetEndpoints response: 2 endpoint(s) {"endpoint":"opc.tcp://***:4840","session_id":"***39d93","count":2}
[2026-05-15 12:54:46.894800] opcua.INFO: Server returned 2 endpoint(s) {"count":2}
[2026-05-15 12:54:46.895063] opcua.INFO: Endpoint #0 {"i":0,"endpointUrl":"opc.tcp://***:4840","securityPolicy":"http://***/UA/SecurityPolicy#None","securityMode":"None","tokenCount":6}
[2026-05-15 12:54:46.895238] opcua.INFO:   UserTokenPolicy #0.0 {"i":0,"j":0,"tokenType":"Anonymous","policyId":"Anonymous","securityPolicyUri":null}
[2026-05-15 12:54:46.895427] opcua.INFO:   UserTokenPolicy #0.1 {"i":0,"j":1,"tokenType":"UserName","policyId":"UserName_Basic128Rsa15_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Basic128Rsa15"}
[2026-05-15 12:54:46.895667] opcua.INFO:   UserTokenPolicy #0.2 {"i":0,"j":2,"tokenType":"UserName","policyId":"UserName_Basic256_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Basic256"}
[2026-05-15 12:54:46.895831] opcua.INFO:   UserTokenPolicy #0.3 {"i":0,"j":3,"tokenType":"UserName","policyId":"UserName_Basic256Sha256_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Basic256Sha256"}
[2026-05-15 12:54:46.896010] opcua.INFO:   UserTokenPolicy #0.4 {"i":0,"j":4,"tokenType":"UserName","policyId":"UserName_Aes128Sha256RsaOaep_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Aes128_Sha256_RsaOaep"}
[2026-05-15 12:54:46.896188] opcua.INFO:   UserTokenPolicy #0.5 {"i":0,"j":5,"tokenType":"UserName","policyId":"UserName_Aes256Sha256RsaPss_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Aes256_Sha256_RsaPss"}
[2026-05-15 12:54:46.896319] opcua.INFO: Endpoint #1 {"i":1,"endpointUrl":"opc.tcp://***:4840","securityPolicy":"http://***/UA/SecurityPolicy#Basic256Sha256","securityMode":"SignAndEncrypt","tokenCount":6}
[2026-05-15 12:54:46.896536] opcua.INFO:   UserTokenPolicy #1.0 {"i":1,"j":0,"tokenType":"Anonymous","policyId":"Anonymous","securityPolicyUri":null}
[2026-05-15 12:54:46.896653] opcua.INFO:   UserTokenPolicy #1.1 {"i":1,"j":1,"tokenType":"UserName","policyId":"UserName_Basic128Rsa15_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Basic128Rsa15"}
[2026-05-15 12:54:46.896761] opcua.INFO:   UserTokenPolicy #1.2 {"i":1,"j":2,"tokenType":"UserName","policyId":"UserName_Basic256_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Basic256"}
[2026-05-15 12:54:46.896856] opcua.INFO:   UserTokenPolicy #1.3 {"i":1,"j":3,"tokenType":"UserName","policyId":"UserName_Basic256Sha256_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Basic256Sha256"}
[2026-05-15 12:54:46.897034] opcua.INFO:   UserTokenPolicy #1.4 {"i":1,"j":4,"tokenType":"UserName","policyId":"UserName_Aes128Sha256RsaOaep_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Aes128_Sha256_RsaOaep"}
[2026-05-15 12:54:46.897219] opcua.INFO:   UserTokenPolicy #1.5 {"i":1,"j":5,"tokenType":"UserName","policyId":"UserName_Aes256Sha256RsaPss_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Aes256_Sha256_RsaPss"}
[2026-05-15 12:54:46.897334] opcua.INFO: Disconnecting {"endpoint":"opc.tcp://***:4840","session_id":"***39d93"}
[2026-05-15 12:54:46.897505] opcua.DEBUG: CloseSession request {"endpoint":"opc.tcp://***:4840","session_id":"***39d93"}
[2026-05-15 12:54:46.905488] opcua.DEBUG: CloseSecureChannel request (channelId=1931770763) {"endpoint":"opc.tcp://***:4840","session_id":"***39d93","channelId":1931770763}
[2026-05-15 12:54:46.905800] opcua.INFO: === TEST: None + None + Anonymous === {"desc":"None + None + Anonymous"}
[2026-05-15 12:54:46.906059] opcua.DEBUG: Discovering server certificate from ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 12:54:46.918249] opcua.DEBUG: Discovery HEL for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:46.920666] opcua.DEBUG: Discovery ACK received, sending OPN request {"endpoint":null,"session_id":null}
[2026-05-15 12:54:46.924512] opcua.DEBUG: Discovery OPN response received {"endpoint":null,"session_id":null}
[2026-05-15 12:54:46.924717] opcua.DEBUG: Discovery GetEndpoints request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:46.928399] opcua.DEBUG: Discovery GetEndpoints response received {"endpoint":null,"session_id":null}
[2026-05-15 12:54:46.928695] opcua.INFO: Connecting to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":null}
[2026-05-15 12:54:46.951327] opcua.DEBUG: TCP connection established to ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 12:54:46.951514] opcua.DEBUG: Sending HEL message to opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:46.953837] opcua.DEBUG: ACK received (receiveBufferSize=8192) {"endpoint":null,"session_id":null,"bufferSize":8192}
[2026-05-15 12:54:46.954060] opcua.DEBUG: HEL/ACK handshake complete {"endpoint":null,"session_id":null}
[2026-05-15 12:54:46.954271] opcua.DEBUG: OpenSecureChannel request (no security) {"endpoint":null,"session_id":null}
[2026-05-15 12:54:46.958291] opcua.DEBUG: OpenSecureChannel response: channelId=1931770765 {"endpoint":null,"session_id":null,"channelId":1931770765}
[2026-05-15 12:54:46.958565] opcua.DEBUG: Secure channel opened (channelId=1931770765) {"endpoint":null,"session_id":null,"channelId":1931770765}
[2026-05-15 12:54:46.958813] opcua.DEBUG: CreateSession request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:46.969523] opcua.DEBUG: CreateSession response: authToken=***9c5f6 {"endpoint":null,"session_id":"***9c5f6","token":"***9c5f6"}
[2026-05-15 12:54:46.969784] opcua.DEBUG: ActivateSession request {"endpoint":null,"session_id":"***9c5f6"}
[2026-05-15 12:54:46.974676] opcua.DEBUG: ActivateSession response received {"endpoint":null,"session_id":"***9c5f6"}
[2026-05-15 12:54:46.974871] opcua.DEBUG: Session created and activated {"endpoint":null,"session_id":"***9c5f6"}
[2026-05-15 12:54:46.975106] opcua.DEBUG: ReadMulti request: 2 item(s) {"endpoint":"opc.tcp://***:4840","session_id":"***9c5f6","count":2}
[2026-05-15 12:54:46.978359] opcua.DEBUG: ReadMulti response: 2 value(s) {"endpoint":"opc.tcp://***:4840","session_id":"***9c5f6","count":2}
[2026-05-15 12:54:46.978586] opcua.DEBUG: Server limits discovered: MaxNodesPerRead=1000, MaxNodesPerWrite=1000 {"endpoint":"opc.tcp://***:4840","session_id":"***9c5f6","read":1000,"write":1000}
[2026-05-15 12:54:46.978770] opcua.INFO: Connected to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":"***9c5f6"}
[2026-05-15 12:54:46.979138] opcua.DEBUG: Read request for node i=2259 (attributeId=13) {"endpoint":"opc.tcp://***:4840","session_id":"***9c5f6","nodeId":"i=2259","attr":13}
[2026-05-15 12:54:46.981838] opcua.DEBUG: Read response for node i=2259: statusCode=0 {"endpoint":"opc.tcp://***:4840","session_id":"***9c5f6","nodeId":"i=2259","status":0}
[2026-05-15 12:54:46.982042] opcua.INFO: ServerState read OK (0) {"value":0}
[2026-05-15 12:54:46.982183] opcua.INFO: Disconnecting {"endpoint":"opc.tcp://***:4840","session_id":"***9c5f6"}
[2026-05-15 12:54:46.982344] opcua.DEBUG: CloseSession request {"endpoint":"opc.tcp://***:4840","session_id":"***9c5f6"}
[2026-05-15 12:54:46.990746] opcua.DEBUG: CloseSecureChannel request (channelId=1931770765) {"endpoint":"opc.tcp://***:4840","session_id":"***9c5f6","channelId":1931770765}
[2026-05-15 12:54:46.991101] opcua.INFO: === TEST: None + None + UserName/Password === {"desc":"None + None + UserName/Password"}
[2026-05-15 12:54:46.991361] opcua.DEBUG: Discovering server certificate from ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 12:54:47.016985] opcua.DEBUG: Discovery HEL for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:47.019146] opcua.DEBUG: Discovery ACK received, sending OPN request {"endpoint":null,"session_id":null}
[2026-05-15 12:54:47.022917] opcua.DEBUG: Discovery OPN response received {"endpoint":null,"session_id":null}
[2026-05-15 12:54:47.023167] opcua.DEBUG: Discovery GetEndpoints request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:47.027095] opcua.DEBUG: Discovery GetEndpoints response received {"endpoint":null,"session_id":null}
[2026-05-15 12:54:47.027478] opcua.INFO: Connecting to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":null}
[2026-05-15 12:54:47.051404] opcua.DEBUG: TCP connection established to ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 12:54:47.051578] opcua.DEBUG: Sending HEL message to opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:47.053987] opcua.DEBUG: ACK received (receiveBufferSize=8192) {"endpoint":null,"session_id":null,"bufferSize":8192}
[2026-05-15 12:54:47.054196] opcua.DEBUG: HEL/ACK handshake complete {"endpoint":null,"session_id":null}
[2026-05-15 12:54:47.054352] opcua.DEBUG: OpenSecureChannel request (no security) {"endpoint":null,"session_id":null}
[2026-05-15 12:54:47.058381] opcua.DEBUG: OpenSecureChannel response: channelId=1931770767 {"endpoint":null,"session_id":null,"channelId":1931770767}
[2026-05-15 12:54:47.058595] opcua.DEBUG: Secure channel opened (channelId=1931770767) {"endpoint":null,"session_id":null,"channelId":1931770767}
[2026-05-15 12:54:47.058791] opcua.DEBUG: CreateSession request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:47.069370] opcua.DEBUG: CreateSession response: authToken=***24848 {"endpoint":null,"session_id":"***24848","token":"***24848"}
[2026-05-15 12:54:47.069652] opcua.DEBUG: ActivateSession request {"endpoint":null,"session_id":"***24848"}
[2026-05-15 12:54:47.099203] opcua.ERROR: Scenario "None + None + UserName/Password" failed {"desc":"None + None + UserName/Password","exception":"PhpOpcua\\Client\\Exception\\ServiceException","message":"Server returned ServiceFault: 0x80200000 0x80200000","file":"<project>\\src\\Protocol\\***:47","trace":"#0 <project>\\src\\Protocol\\SessionService.php(249): PhpOpcua\\Client\\Protocol\\ServiceFault::throwIf(Object(PhpOpcua\\Client\\Types\\NodeId), 2149580800)\n#1 <project>\\src\\Client\\ManagesSessionTrait.php(98): PhpOpcua\\Client\\Protocol\\SessionService->decodeActivateSessionResponse(Object(PhpOpcua\\Client\\Encoding\\BinaryDecoder))\n#2 <project>\\src\\Client\\ManagesSessionTrait.php(31): PhpOpcua\\Client\\Client->activateSession('opc.tcp://***')\n#3 <project>\\src\\Client\\ManagesConnectionTrait.php(210): PhpOpcua\\Client\\Client->createAndActivateSession('opc.tcp://***')\n#4 <project>\\src\\Client.php(269): PhpOpcua\\Client\\Client->performConnect('opc.tcp://***')\n#5 <project>\\src\\ClientBuilder.php(296): PhpOpcua\\Client\\Client->__construct('opc.tcp://***', Object(PhpOpcua\\Client\\Security\\SecurityPolicy), Object(PhpOpcua\\Client\\Security\\SecurityMode), NULL, NULL, NULL, '****', '****!', NULL, NULL, Object(Psr\\Log\\AbstractLogger@anonymous), Object(PhpOpcua\\Client\\Event\\NullEventDispatcher), NULL, NULL, false, false, Object(PhpOpcua\\Client\\Cache\\InMemoryCache), true, Object(PhpOpcua\\Client\\Cache\\WireCacheCodec), 5.0, NULL, NULL, 10, true, false, Object(PhpOpcua\\Client\\Repository\\ExtensionObjectRepository), Array, Object(PhpOpcua\\Client\\Module\\ModuleRegistry))\n#6 <project>\\scripts\\diagnose.php(425): PhpOpcua\\Client\\ClientBuilder->connect('opc.tcp://***')\n#7 <project>\\scripts\\diagnose.php(553): runConnectionScenario(Object(Psr\\Log\\AbstractLogger@anonymous), Object(ScenarioConfig), 'opc.tcp://***', '****', '****!')\n#8 {main}"}
[2026-05-15 12:54:47.099477] opcua.INFO: === TEST: Basic256Sha256 + SignAndEncrypt + Anonymous === {"desc":"Basic256Sha256 + SignAndEncrypt + Anonymous"}
[2026-05-15 12:54:47.099677] opcua.DEBUG: Discovering server certificate from ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 12:54:47.115301] opcua.DEBUG: Discovery HEL for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:47.117299] opcua.DEBUG: Discovery ACK received, sending OPN request {"endpoint":null,"session_id":null}
[2026-05-15 12:54:47.121347] opcua.DEBUG: Discovery OPN response received {"endpoint":null,"session_id":null}
[2026-05-15 12:54:47.121632] opcua.DEBUG: Discovery GetEndpoints request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:47.125343] opcua.DEBUG: Discovery GetEndpoints response received {"endpoint":null,"session_id":null}
[2026-05-15 12:54:47.125760] opcua.INFO: Connecting to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":null}
[2026-05-15 12:54:47.151032] opcua.DEBUG: TCP connection established to ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 12:54:47.151282] opcua.DEBUG: Sending HEL message to opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:47.153695] opcua.DEBUG: ACK received (receiveBufferSize=8192) {"endpoint":null,"session_id":null,"bufferSize":8192}
[2026-05-15 12:54:47.153935] opcua.DEBUG: HEL/ACK handshake complete {"endpoint":null,"session_id":null}
[2026-05-15 12:54:47.332872] opcua.DEBUG: OpenSecureChannel request (policy=Basic256Sha256, mode=SignAndEncrypt) {"endpoint":null,"session_id":null,"policy":"Basic256Sha256","mode":"SignAndEncrypt"}
[2026-05-15 12:54:52.200676] opcua.DEBUG: OpenSecureChannel response: channelId=1931770769 {"endpoint":null,"session_id":null,"channelId":1931770769}
[2026-05-15 12:54:52.200927] opcua.DEBUG: Secure channel opened (channelId=1931770769) {"endpoint":null,"session_id":null,"channelId":1931770769}
[2026-05-15 12:54:52.201619] opcua.DEBUG: CreateSession request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:53.926000] opcua.DEBUG: CreateSession response: authToken=***b8de5 {"endpoint":null,"session_id":"***b8de5","token":"***b8de5"}
[2026-05-15 12:54:53.926885] opcua.DEBUG: ActivateSession request {"endpoint":null,"session_id":"***b8de5"}
[2026-05-15 12:54:53.951504] opcua.DEBUG: ActivateSession response received {"endpoint":null,"session_id":"***b8de5"}
[2026-05-15 12:54:53.951764] opcua.DEBUG: Session created and activated {"endpoint":null,"session_id":"***b8de5"}
[2026-05-15 12:54:53.952115] opcua.DEBUG: ReadMulti request: 2 item(s) {"endpoint":"opc.tcp://***:4840","session_id":"***b8de5","count":2}
[2026-05-15 12:54:53.955901] opcua.DEBUG: ReadMulti response: 2 value(s) {"endpoint":"opc.tcp://***:4840","session_id":"***b8de5","count":2}
[2026-05-15 12:54:53.956113] opcua.DEBUG: Server limits discovered: MaxNodesPerRead=1000, MaxNodesPerWrite=1000 {"endpoint":"opc.tcp://***:4840","session_id":"***b8de5","read":1000,"write":1000}
[2026-05-15 12:54:53.956265] opcua.INFO: Connected to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":"***b8de5"}
[2026-05-15 12:54:53.956510] opcua.DEBUG: Read request for node i=2259 (attributeId=13) {"endpoint":"opc.tcp://***:4840","session_id":"***b8de5","nodeId":"i=2259","attr":13}
[2026-05-15 12:54:53.960168] opcua.DEBUG: Read response for node i=2259: statusCode=0 {"endpoint":"opc.tcp://***:4840","session_id":"***b8de5","nodeId":"i=2259","status":0}
[2026-05-15 12:54:53.960376] opcua.INFO: ServerState read OK (0) {"value":0}
[2026-05-15 12:54:53.960519] opcua.INFO: Disconnecting {"endpoint":"opc.tcp://***:4840","session_id":"***b8de5"}
[2026-05-15 12:54:53.960711] opcua.DEBUG: CloseSession request {"endpoint":"opc.tcp://***:4840","session_id":"***b8de5"}
[2026-05-15 12:54:53.969963] opcua.DEBUG: CloseSecureChannel request (channelId=1931770769) {"endpoint":"opc.tcp://***:4840","session_id":"***b8de5","channelId":1931770769}
[2026-05-15 12:54:53.970523] opcua.INFO: === TEST: Basic256Sha256 + SignAndEncrypt + UserName/Password === {"desc":"Basic256Sha256 + SignAndEncrypt + UserName/Password"}
[2026-05-15 12:54:53.970923] opcua.DEBUG: Discovering server certificate from ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 12:54:53.980628] opcua.DEBUG: Discovery HEL for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:53.982798] opcua.DEBUG: Discovery ACK received, sending OPN request {"endpoint":null,"session_id":null}
[2026-05-15 12:54:53.986583] opcua.DEBUG: Discovery OPN response received {"endpoint":null,"session_id":null}
[2026-05-15 12:54:53.986826] opcua.DEBUG: Discovery GetEndpoints request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:53.990213] opcua.DEBUG: Discovery GetEndpoints response received {"endpoint":null,"session_id":null}
[2026-05-15 12:54:53.990537] opcua.INFO: Connecting to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":null}
[2026-05-15 12:54:54.016252] opcua.DEBUG: TCP connection established to ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 12:54:54.016524] opcua.DEBUG: Sending HEL message to opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:54:54.018528] opcua.DEBUG: ACK received (receiveBufferSize=8192) {"endpoint":null,"session_id":null,"bufferSize":8192}
[2026-05-15 12:54:54.018735] opcua.DEBUG: HEL/ACK handshake complete {"endpoint":null,"session_id":null}
[2026-05-15 12:54:54.221773] opcua.DEBUG: OpenSecureChannel request (policy=Basic256Sha256, mode=SignAndEncrypt) {"endpoint":null,"session_id":null,"policy":"Basic256Sha256","mode":"SignAndEncrypt"}
[2026-05-15 12:54:59.092815] opcua.DEBUG: OpenSecureChannel response: channelId=1931770771 {"endpoint":null,"session_id":null,"channelId":1931770771}
[2026-05-15 12:54:59.093076] opcua.DEBUG: Secure channel opened (channelId=1931770771) {"endpoint":null,"session_id":null,"channelId":1931770771}
[2026-05-15 12:54:59.093693] opcua.DEBUG: CreateSession request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 12:55:00.817974] opcua.DEBUG: CreateSession response: authToken=***7163c {"endpoint":null,"session_id":"***7163c","token":"***7163c"}
[2026-05-15 12:55:00.823863] opcua.DEBUG: ActivateSession request {"endpoint":null,"session_id":"***7163c"}
[2026-05-15 12:55:02.579412] opcua.DEBUG: ActivateSession response received {"endpoint":null,"session_id":"***7163c"}
[2026-05-15 12:55:02.579834] opcua.DEBUG: Session created and activated {"endpoint":null,"session_id":"***7163c"}
[2026-05-15 12:55:02.580510] opcua.DEBUG: ReadMulti request: 2 item(s) {"endpoint":"opc.tcp://***:4840","session_id":"***7163c","count":2}
[2026-05-15 12:55:02.585616] opcua.DEBUG: ReadMulti response: 2 value(s) {"endpoint":"opc.tcp://***:4840","session_id":"***7163c","count":2}
[2026-05-15 12:55:02.586144] opcua.DEBUG: Server limits discovered: MaxNodesPerRead=1000, MaxNodesPerWrite=1000 {"endpoint":"opc.tcp://***:4840","session_id":"***7163c","read":1000,"write":1000}
[2026-05-15 12:55:02.586598] opcua.INFO: Connected to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":"***7163c"}
[2026-05-15 12:55:02.587290] opcua.DEBUG: Read request for node i=2259 (attributeId=13) {"endpoint":"opc.tcp://***:4840","session_id":"***7163c","nodeId":"i=2259","attr":13}
[2026-05-15 12:55:02.591700] opcua.DEBUG: Read response for node i=2259: statusCode=0 {"endpoint":"opc.tcp://***:4840","session_id":"***7163c","nodeId":"i=2259","status":0}
[2026-05-15 12:55:02.592208] opcua.INFO: ServerState read OK (0) {"value":0}
[2026-05-15 12:55:02.592603] opcua.INFO: Disconnecting {"endpoint":"opc.tcp://***:4840","session_id":"***7163c"}
[2026-05-15 12:55:02.593035] opcua.DEBUG: CloseSession request {"endpoint":"opc.tcp://***:4840","session_id":"***7163c"}
[2026-05-15 12:55:02.602537] opcua.DEBUG: CloseSecureChannel request (channelId=1931770771) {"endpoint":"opc.tcp://***:4840","session_id":"***7163c","channelId":1931770771}

==============================================================================
  DIAGNOSTIC REPORT
==============================================================================

Discovery endpoint : opc.tcp://***:4840
Session endpoint   : opc.tcp://***:4840

-- Endpoint enumeration --
  status     : OK (2 endpoints)
  #0  opc.tcp://***:4840  |  http://opcfoundation.org/UA/SecurityPolicy#None  |  None
       Anonymous    policyId='Anonymous'
       UserName     policyId='UserName_Basic128Rsa15_Token'
       UserName     policyId='UserName_Basic256_Token'
       UserName     policyId='UserName_Basic256Sha256_Token'
       UserName     policyId='UserName_Aes128Sha256RsaOaep_Token'
       UserName     policyId='UserName_Aes256Sha256RsaPss_Token'
  #1  opc.tcp://***:4840  |  http://opcfoundation.org/UA/SecurityPolicy#Basic256Sha256  |  SignAndEncrypt
       Anonymous    policyId='Anonymous'
       UserName     policyId='UserName_Basic128Rsa15_Token'
       UserName     policyId='UserName_Basic256_Token'
       UserName     policyId='UserName_Basic256Sha256_Token'
       UserName     policyId='UserName_Aes128Sha256RsaOaep_Token'
       UserName     policyId='UserName_Aes256Sha256RsaPss_Token'

-- Connection scenarios --
  [PASS] None + None + Anonymous
  [FAIL] None + None + UserName/Password (0x80200000)
         exception : PhpOpcua\Client\Exception\ServiceException
         error     : Server returned ServiceFault: 0x80200000 0x80200000
         trace     :
           #0 C:\***s\user\source\repos\opcua-client\src\Protocol\SessionService.php(249): PhpOpcua\Client\Protocol\ServiceFault::throwIf(Object(PhpOpcua\Client\Types\NodeId), 2149580800)
           #1 C:\***s\user\source\repos\opcua-client\src\Client\ManagesSessionTrait.php(98): PhpOpcua\Client\Protocol\SessionService->decodeActivateSessionResponse(Object(PhpOpcua\Client\Encoding\BinaryDecoder))
           #2 C:\***s\user\source\repos\opcua-client\src\Client\ManagesSessionTrait.php(31): PhpOpcua\Client\Client->activateSession('opc.tcp://***')
           #3 C:\***s\user\source\repos\opcua-client\src\Client\ManagesConnectionTrait.php(210): PhpOpcua\Client\Client->createAndActivateSession('opc.tcp://***')
           #4 C:\***s\user\source\repos\opcua-client\src\Client.php(269): PhpOpcua\Client\Client->performConnect('opc.tcp://***')
           #5 C:\***s\user\source\repos\opcua-client\src\ClientBuilder.php(296): PhpOpcua\Client\Client->__construct('opc.tcp://***', Object(PhpOpcua\Client\Security\SecurityPolicy), Object(PhpOpcua\Client\Security\SecurityMode), NULL, NULL, NULL, '***', '***', NULL, NULL, Object(Psr\Log\AbstractLogger@anonymous), Object(PhpOpcua\Client\Event\NullEventDispatcher), NULL, NULL, false, false, Object(PhpOpcua\Client\Cache\InMemoryCache), true, Object(PhpOpcua\Client\Cache\WireCacheCodec), 5.0, NULL, NULL, 10, true, false, Object(PhpOpcua\Client\Repository\ExtensionObjectRepository), Array, Object(PhpOpcua\Client\Module\ModuleRegistry))
           #6 C:\***s\user\source\repos\opcua-client\scripts\diagnose.php(425): PhpOpcua\Client\ClientBuilder->connect('opc.tcp://***')
           #7 C:\***s\user\source\repos\opcua-client\scripts\diagnose.php(553): runConnectionScenario(Object(Psr\Log\AbstractLogger@anonymous), Object(ScenarioConfig), 'opc.tcp://***', '***', '***')
           #8 {main}
  [PASS] Basic256Sha256 + SignAndEncrypt + Anonymous
  [PASS] Basic256Sha256 + SignAndEncrypt + UserName/Password

-- Diagnosis: UserName policyId --
  verdict    : ok
  advertised : 'UserName_Basic128Rsa15_Token', 'UserName_Basic256_Token', 'UserName_Basic256Sha256_Token', 'UserName_Aes128Sha256RsaOaep_Token', 'UserName_Aes256Sha256RsaPss_Token'
  client def : 'username'
  message    : 
      Secured UserName/Password connection succeeded — no mismatch in this run.

==============================================================================

GianfriAur May 15, 2026
Maintainer

I've almost completed the other fix you suggested. Would you like to test that one as well?
That way we can fix the ([FAIL] None + None + UserName/Password (0x80200000)) issue as well.

GianfriAur May 15, 2026
Maintainer

Thanks again for your availability @H4rw3y5ag3

I just committed the patch [PATCH] SecureChannel & SessionService,
as before I ask you to download master and test againg,

H4rw3y5ag3 May 15, 2026
Author

see the results

[2026-05-15 14:57:50.495931] opcua.INFO: Diagnostic run starting {"discoveryUrl":"opc.tcp://***:4840","sessionUrl":"opc.tcp://***:4840"}
[2026-05-15 14:57:50.497191] opcua.INFO: === TEST: endpoint enumeration ===
[2026-05-15 14:57:50.520209] opcua.DEBUG: Discovering server certificate from ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 14:57:50.522748] opcua.DEBUG: Discovery HEL for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:50.528406] opcua.DEBUG: Discovery ACK received, sending OPN request {"endpoint":null,"session_id":null}
[2026-05-15 14:57:50.532866] opcua.DEBUG: Discovery OPN response received {"endpoint":null,"session_id":null}
[2026-05-15 14:57:50.535627] opcua.DEBUG: Discovery GetEndpoints request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:50.539831] opcua.DEBUG: Discovery GetEndpoints response received {"endpoint":null,"session_id":null}
[2026-05-15 14:57:50.541337] opcua.INFO: Connecting to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":null}
[2026-05-15 14:57:50.543292] opcua.DEBUG: TCP connection established to ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 14:57:50.543538] opcua.DEBUG: Sending HEL message to opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:50.547617] opcua.DEBUG: ACK received (receiveBufferSize=8192) {"endpoint":null,"session_id":null,"bufferSize":8192}
[2026-05-15 14:57:50.547832] opcua.DEBUG: HEL/ACK handshake complete {"endpoint":null,"session_id":null}
[2026-05-15 14:57:50.550972] opcua.DEBUG: OpenSecureChannel request (no security) {"endpoint":null,"session_id":null}
[2026-05-15 14:57:50.554720] opcua.DEBUG: OpenSecureChannel response: channelId=2453888349 {"endpoint":null,"session_id":null,"channelId":2453888349}
[2026-05-15 14:57:50.561179] opcua.DEBUG: Secure channel opened (channelId=2453888349) {"endpoint":null,"session_id":null,"channelId":2453888349}
[2026-05-15 14:57:50.561479] opcua.DEBUG: CreateSession request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:50.573334] opcua.DEBUG: CreateSession response: authToken=***59014 {"endpoint":null,"session_id":"***59014","token":"***59014"}
[2026-05-15 14:57:50.574065] opcua.DEBUG: ActivateSession request {"endpoint":null,"session_id":"***59014"}
[2026-05-15 14:57:50.578977] opcua.DEBUG: ActivateSession response received {"endpoint":null,"session_id":"***59014"}
[2026-05-15 14:57:50.579198] opcua.DEBUG: Session created and activated {"endpoint":null,"session_id":"***59014"}
[2026-05-15 14:57:50.580182] opcua.DEBUG: ReadMulti request: 2 item(s) {"endpoint":"opc.tcp://***:4840","session_id":"***59014","count":2}
[2026-05-15 14:57:50.583358] opcua.DEBUG: ReadMulti response: 2 value(s) {"endpoint":"opc.tcp://***:4840","session_id":"***59014","count":2}
[2026-05-15 14:57:50.584359] opcua.DEBUG: Server limits discovered: MaxNodesPerRead=1000, MaxNodesPerWrite=1000 {"endpoint":"opc.tcp://***:4840","session_id":"***59014","read":1000,"write":1000}
[2026-05-15 14:57:50.584608] opcua.INFO: Connected to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":"***59014"}
[2026-05-15 14:57:50.584934] opcua.DEBUG: GetEndpoints request for opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":"***59014","url":"opc.tcp://***:4840"}
[2026-05-15 14:57:50.589070] opcua.DEBUG: GetEndpoints response: 2 endpoint(s) {"endpoint":"opc.tcp://***:4840","session_id":"***59014","count":2}
[2026-05-15 14:57:50.589505] opcua.INFO: Server returned 2 endpoint(s) {"count":2}
[2026-05-15 14:57:50.589717] opcua.INFO: Endpoint #0 {"i":0,"endpointUrl":"opc.tcp://***:4840","securityPolicy":"http://***/UA/SecurityPolicy#None","securityMode":"None","tokenCount":6}
[2026-05-15 14:57:50.589928] opcua.INFO:   UserTokenPolicy #0.0 {"i":0,"j":0,"tokenType":"Anonymous","policyId":"Anonymous","securityPolicyUri":null}
[2026-05-15 14:57:50.590083] opcua.INFO:   UserTokenPolicy #0.1 {"i":0,"j":1,"tokenType":"UserName","policyId":"UserName_Basic128Rsa15_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Basic128Rsa15"}
[2026-05-15 14:57:50.590251] opcua.INFO:   UserTokenPolicy #0.2 {"i":0,"j":2,"tokenType":"UserName","policyId":"UserName_Basic256_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Basic256"}
[2026-05-15 14:57:50.590400] opcua.INFO:   UserTokenPolicy #0.3 {"i":0,"j":3,"tokenType":"UserName","policyId":"UserName_Basic256Sha256_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Basic256Sha256"}
[2026-05-15 14:57:50.590533] opcua.INFO:   UserTokenPolicy #0.4 {"i":0,"j":4,"tokenType":"UserName","policyId":"UserName_Aes128Sha256RsaOaep_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Aes128_Sha256_RsaOaep"}
[2026-05-15 14:57:50.590674] opcua.INFO:   UserTokenPolicy #0.5 {"i":0,"j":5,"tokenType":"UserName","policyId":"UserName_Aes256Sha256RsaPss_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Aes256_Sha256_RsaPss"}
[2026-05-15 14:57:50.590826] opcua.INFO: Endpoint #1 {"i":1,"endpointUrl":"opc.tcp://***:4840","securityPolicy":"http://***/UA/SecurityPolicy#Basic256Sha256","securityMode":"SignAndEncrypt","tokenCount":6}
[2026-05-15 14:57:50.590975] opcua.INFO:   UserTokenPolicy #1.0 {"i":1,"j":0,"tokenType":"Anonymous","policyId":"Anonymous","securityPolicyUri":null}
[2026-05-15 14:57:50.591126] opcua.INFO:   UserTokenPolicy #1.1 {"i":1,"j":1,"tokenType":"UserName","policyId":"UserName_Basic128Rsa15_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Basic128Rsa15"}
[2026-05-15 14:57:50.591291] opcua.INFO:   UserTokenPolicy #1.2 {"i":1,"j":2,"tokenType":"UserName","policyId":"UserName_Basic256_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Basic256"}
[2026-05-15 14:57:50.591454] opcua.INFO:   UserTokenPolicy #1.3 {"i":1,"j":3,"tokenType":"UserName","policyId":"UserName_Basic256Sha256_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Basic256Sha256"}
[2026-05-15 14:57:50.591636] opcua.INFO:   UserTokenPolicy #1.4 {"i":1,"j":4,"tokenType":"UserName","policyId":"UserName_Aes128Sha256RsaOaep_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Aes128_Sha256_RsaOaep"}
[2026-05-15 14:57:50.591778] opcua.INFO:   UserTokenPolicy #1.5 {"i":1,"j":5,"tokenType":"UserName","policyId":"UserName_Aes256Sha256RsaPss_Token","securityPolicyUri":"http://***/UA/SecurityPolicy#Aes256_Sha256_RsaPss"}
[2026-05-15 14:57:50.591956] opcua.INFO: Disconnecting {"endpoint":"opc.tcp://***:4840","session_id":"***59014"}
[2026-05-15 14:57:50.592101] opcua.DEBUG: CloseSession request {"endpoint":"opc.tcp://***:4840","session_id":"***59014"}
[2026-05-15 14:57:50.600177] opcua.DEBUG: CloseSecureChannel request (channelId=2453888349) {"endpoint":"opc.tcp://***:4840","session_id":"***59014","channelId":2453888349}
[2026-05-15 14:57:50.600614] opcua.INFO: === TEST: None + None + Anonymous === {"desc":"None + None + Anonymous"}
[2026-05-15 14:57:50.600893] opcua.DEBUG: Discovering server certificate from ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 14:57:50.612166] opcua.DEBUG: Discovery HEL for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:50.614454] opcua.DEBUG: Discovery ACK received, sending OPN request {"endpoint":null,"session_id":null}
[2026-05-15 14:57:50.618361] opcua.DEBUG: Discovery OPN response received {"endpoint":null,"session_id":null}
[2026-05-15 14:57:50.618597] opcua.DEBUG: Discovery GetEndpoints request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:50.622020] opcua.DEBUG: Discovery GetEndpoints response received {"endpoint":null,"session_id":null}
[2026-05-15 14:57:50.622362] opcua.INFO: Connecting to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":null}
[2026-05-15 14:57:50.623859] opcua.DEBUG: TCP connection established to ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 14:57:50.624120] opcua.DEBUG: Sending HEL message to opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:50.629314] opcua.DEBUG: ACK received (receiveBufferSize=8192) {"endpoint":null,"session_id":null,"bufferSize":8192}
[2026-05-15 14:57:50.629516] opcua.DEBUG: HEL/ACK handshake complete {"endpoint":null,"session_id":null}
[2026-05-15 14:57:50.629663] opcua.DEBUG: OpenSecureChannel request (no security) {"endpoint":null,"session_id":null}
[2026-05-15 14:57:50.633493] opcua.DEBUG: OpenSecureChannel response: channelId=2453888351 {"endpoint":null,"session_id":null,"channelId":2453888351}
[2026-05-15 14:57:50.633755] opcua.DEBUG: Secure channel opened (channelId=2453888351) {"endpoint":null,"session_id":null,"channelId":2453888351}
[2026-05-15 14:57:50.633957] opcua.DEBUG: CreateSession request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:50.644455] opcua.DEBUG: CreateSession response: authToken=***2e342 {"endpoint":null,"session_id":"***2e342","token":"***2e342"}
[2026-05-15 14:57:50.644688] opcua.DEBUG: ActivateSession request {"endpoint":null,"session_id":"***2e342"}
[2026-05-15 14:57:50.649232] opcua.DEBUG: ActivateSession response received {"endpoint":null,"session_id":"***2e342"}
[2026-05-15 14:57:50.649376] opcua.DEBUG: Session created and activated {"endpoint":null,"session_id":"***2e342"}
[2026-05-15 14:57:50.649534] opcua.DEBUG: ReadMulti request: 2 item(s) {"endpoint":"opc.tcp://***:4840","session_id":"***2e342","count":2}
[2026-05-15 14:57:50.652467] opcua.DEBUG: ReadMulti response: 2 value(s) {"endpoint":"opc.tcp://***:4840","session_id":"***2e342","count":2}
[2026-05-15 14:57:50.652601] opcua.DEBUG: Server limits discovered: MaxNodesPerRead=1000, MaxNodesPerWrite=1000 {"endpoint":"opc.tcp://***:4840","session_id":"***2e342","read":1000,"write":1000}
[2026-05-15 14:57:50.652746] opcua.INFO: Connected to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":"***2e342"}
[2026-05-15 14:57:50.653033] opcua.DEBUG: Read request for node i=2259 (attributeId=13) {"endpoint":"opc.tcp://***:4840","session_id":"***2e342","nodeId":"i=2259","attr":13}
[2026-05-15 14:57:50.655971] opcua.DEBUG: Read response for node i=2259: statusCode=0 {"endpoint":"opc.tcp://***:4840","session_id":"***2e342","nodeId":"i=2259","status":0}
[2026-05-15 14:57:50.656323] opcua.INFO: ServerState read OK (0) {"value":0}
[2026-05-15 14:57:50.656594] opcua.INFO: Disconnecting {"endpoint":"opc.tcp://***:4840","session_id":"***2e342"}
[2026-05-15 14:57:50.656852] opcua.DEBUG: CloseSession request {"endpoint":"opc.tcp://***:4840","session_id":"***2e342"}
[2026-05-15 14:57:50.665102] opcua.DEBUG: CloseSecureChannel request (channelId=2453888351) {"endpoint":"opc.tcp://***:4840","session_id":"***2e342","channelId":2453888351}
[2026-05-15 14:57:50.665444] opcua.INFO: === TEST: None + None + UserName/Password === {"desc":"None + None + UserName/Password"}
[2026-05-15 14:57:50.665669] opcua.DEBUG: Discovering server certificate from ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 14:57:50.678246] opcua.DEBUG: Discovery HEL for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:50.680514] opcua.DEBUG: Discovery ACK received, sending OPN request {"endpoint":null,"session_id":null}
[2026-05-15 14:57:50.684286] opcua.DEBUG: Discovery OPN response received {"endpoint":null,"session_id":null}
[2026-05-15 14:57:50.684588] opcua.DEBUG: Discovery GetEndpoints request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:50.688008] opcua.DEBUG: Discovery GetEndpoints response received {"endpoint":null,"session_id":null}
[2026-05-15 14:57:50.688322] opcua.INFO: Connecting to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":null}
[2026-05-15 14:57:50.710114] opcua.DEBUG: TCP connection established to ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 14:57:50.710371] opcua.DEBUG: Sending HEL message to opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:50.712476] opcua.DEBUG: ACK received (receiveBufferSize=8192) {"endpoint":null,"session_id":null,"bufferSize":8192}
[2026-05-15 14:57:50.712668] opcua.DEBUG: HEL/ACK handshake complete {"endpoint":null,"session_id":null}
[2026-05-15 14:57:50.712836] opcua.DEBUG: OpenSecureChannel request (no security) {"endpoint":null,"session_id":null}
[2026-05-15 14:57:50.716614] opcua.DEBUG: OpenSecureChannel response: channelId=2453888353 {"endpoint":null,"session_id":null,"channelId":2453888353}
[2026-05-15 14:57:50.716856] opcua.DEBUG: Secure channel opened (channelId=2453888353) {"endpoint":null,"session_id":null,"channelId":2453888353}
[2026-05-15 14:57:50.717036] opcua.DEBUG: CreateSession request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:50.727384] opcua.DEBUG: CreateSession response: authToken=***6991f {"endpoint":null,"session_id":"***6991f","token":"***6991f"}
[2026-05-15 14:57:50.732823] opcua.DEBUG: ActivateSession request {"endpoint":null,"session_id":"***6991f"}
[2026-05-15 14:57:52.443923] opcua.DEBUG: ActivateSession response received {"endpoint":null,"session_id":"***6991f"}
[2026-05-15 14:57:52.444418] opcua.DEBUG: Session created and activated {"endpoint":null,"session_id":"***6991f"}
[2026-05-15 14:57:52.444992] opcua.DEBUG: ReadMulti request: 2 item(s) {"endpoint":"opc.tcp://***:4840","session_id":"***6991f","count":2}
[2026-05-15 14:57:52.448795] opcua.DEBUG: ReadMulti response: 2 value(s) {"endpoint":"opc.tcp://***:4840","session_id":"***6991f","count":2}
[2026-05-15 14:57:52.449328] opcua.DEBUG: Server limits discovered: MaxNodesPerRead=1000, MaxNodesPerWrite=1000 {"endpoint":"opc.tcp://***:4840","session_id":"***6991f","read":1000,"write":1000}
[2026-05-15 14:57:52.449774] opcua.INFO: Connected to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":"***6991f"}
[2026-05-15 14:57:52.450376] opcua.DEBUG: Read request for node i=2259 (attributeId=13) {"endpoint":"opc.tcp://***:4840","session_id":"***6991f","nodeId":"i=2259","attr":13}
[2026-05-15 14:57:52.454017] opcua.DEBUG: Read response for node i=2259: statusCode=0 {"endpoint":"opc.tcp://***:4840","session_id":"***6991f","nodeId":"i=2259","status":0}
[2026-05-15 14:57:52.454518] opcua.INFO: ServerState read OK (0) {"value":0}
[2026-05-15 14:57:52.454930] opcua.INFO: Disconnecting {"endpoint":"opc.tcp://***:4840","session_id":"***6991f"}
[2026-05-15 14:57:52.455393] opcua.DEBUG: CloseSession request {"endpoint":"opc.tcp://***:4840","session_id":"***6991f"}
[2026-05-15 14:57:52.463988] opcua.DEBUG: CloseSecureChannel request (channelId=2453888353) {"endpoint":"opc.tcp://***:4840","session_id":"***6991f","channelId":2453888353}
[2026-05-15 14:57:52.464455] opcua.INFO: === TEST: Basic256Sha256 + SignAndEncrypt + Anonymous === {"desc":"Basic256Sha256 + SignAndEncrypt + Anonymous"}
[2026-05-15 14:57:52.464731] opcua.DEBUG: Discovering server certificate from ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 14:57:52.477525] opcua.DEBUG: Discovery HEL for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:52.479997] opcua.DEBUG: Discovery ACK received, sending OPN request {"endpoint":null,"session_id":null}
[2026-05-15 14:57:52.483773] opcua.DEBUG: Discovery OPN response received {"endpoint":null,"session_id":null}
[2026-05-15 14:57:52.483943] opcua.DEBUG: Discovery GetEndpoints request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:52.487835] opcua.DEBUG: Discovery GetEndpoints response received {"endpoint":null,"session_id":null}
[2026-05-15 14:57:52.488099] opcua.INFO: Connecting to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":null}
[2026-05-15 14:57:52.489920] opcua.DEBUG: TCP connection established to ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 14:57:52.490115] opcua.DEBUG: Sending HEL message to opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:52.494954] opcua.DEBUG: ACK received (receiveBufferSize=8192) {"endpoint":null,"session_id":null,"bufferSize":8192}
[2026-05-15 14:57:52.495169] opcua.DEBUG: HEL/ACK handshake complete {"endpoint":null,"session_id":null}
[2026-05-15 14:57:52.866172] opcua.DEBUG: OpenSecureChannel request (policy=Basic256Sha256, mode=SignAndEncrypt) {"endpoint":null,"session_id":null,"policy":"Basic256Sha256","mode":"SignAndEncrypt"}
[2026-05-15 14:57:57.737701] opcua.DEBUG: OpenSecureChannel response: channelId=2453888355 {"endpoint":null,"session_id":null,"channelId":2453888355}
[2026-05-15 14:57:57.738087] opcua.DEBUG: Secure channel opened (channelId=2453888355) {"endpoint":null,"session_id":null,"channelId":2453888355}
[2026-05-15 14:57:57.738975] opcua.DEBUG: CreateSession request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:59.465443] opcua.DEBUG: CreateSession response: authToken=***0bf8f {"endpoint":null,"session_id":"***0bf8f","token":"***0bf8f"}
[2026-05-15 14:57:59.469302] opcua.DEBUG: ActivateSession request {"endpoint":null,"session_id":"***0bf8f"}
[2026-05-15 14:57:59.493671] opcua.DEBUG: ActivateSession response received {"endpoint":null,"session_id":"***0bf8f"}
[2026-05-15 14:57:59.493906] opcua.DEBUG: Session created and activated {"endpoint":null,"session_id":"***0bf8f"}
[2026-05-15 14:57:59.494297] opcua.DEBUG: ReadMulti request: 2 item(s) {"endpoint":"opc.tcp://***:4840","session_id":"***0bf8f","count":2}
[2026-05-15 14:57:59.498186] opcua.DEBUG: ReadMulti response: 2 value(s) {"endpoint":"opc.tcp://***:4840","session_id":"***0bf8f","count":2}
[2026-05-15 14:57:59.498390] opcua.DEBUG: Server limits discovered: MaxNodesPerRead=1000, MaxNodesPerWrite=1000 {"endpoint":"opc.tcp://***:4840","session_id":"***0bf8f","read":1000,"write":1000}
[2026-05-15 14:57:59.498544] opcua.INFO: Connected to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":"***0bf8f"}
[2026-05-15 14:57:59.498803] opcua.DEBUG: Read request for node i=2259 (attributeId=13) {"endpoint":"opc.tcp://***:4840","session_id":"***0bf8f","nodeId":"i=2259","attr":13}
[2026-05-15 14:57:59.502358] opcua.DEBUG: Read response for node i=2259: statusCode=0 {"endpoint":"opc.tcp://***:4840","session_id":"***0bf8f","nodeId":"i=2259","status":0}
[2026-05-15 14:57:59.502562] opcua.INFO: ServerState read OK (0) {"value":0}
[2026-05-15 14:57:59.502730] opcua.INFO: Disconnecting {"endpoint":"opc.tcp://***:4840","session_id":"***0bf8f"}
[2026-05-15 14:57:59.502869] opcua.DEBUG: CloseSession request {"endpoint":"opc.tcp://***:4840","session_id":"***0bf8f"}
[2026-05-15 14:57:59.512235] opcua.DEBUG: CloseSecureChannel request (channelId=2453888355) {"endpoint":"opc.tcp://***:4840","session_id":"***0bf8f","channelId":2453888355}
[2026-05-15 14:57:59.512709] opcua.INFO: === TEST: Basic256Sha256 + SignAndEncrypt + UserName/Password === {"desc":"Basic256Sha256 + SignAndEncrypt + UserName/Password"}
[2026-05-15 14:57:59.512944] opcua.DEBUG: Discovering server certificate from ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 14:57:59.525480] opcua.DEBUG: Discovery HEL for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:59.527665] opcua.DEBUG: Discovery ACK received, sending OPN request {"endpoint":null,"session_id":null}
[2026-05-15 14:57:59.531558] opcua.DEBUG: Discovery OPN response received {"endpoint":null,"session_id":null}
[2026-05-15 14:57:59.531805] opcua.DEBUG: Discovery GetEndpoints request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:59.535464] opcua.DEBUG: Discovery GetEndpoints response received {"endpoint":null,"session_id":null}
[2026-05-15 14:57:59.535816] opcua.INFO: Connecting to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":null}
[2026-05-15 14:57:59.537210] opcua.DEBUG: TCP connection established to ***:4840 {"endpoint":null,"session_id":null,"host":"***","port":4840}
[2026-05-15 14:57:59.537363] opcua.DEBUG: Sending HEL message to opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:57:59.542854] opcua.DEBUG: ACK received (receiveBufferSize=8192) {"endpoint":null,"session_id":null,"bufferSize":8192}
[2026-05-15 14:57:59.543061] opcua.DEBUG: HEL/ACK handshake complete {"endpoint":null,"session_id":null}
[2026-05-15 14:57:59.649978] opcua.DEBUG: OpenSecureChannel request (policy=Basic256Sha256, mode=SignAndEncrypt) {"endpoint":null,"session_id":null,"policy":"Basic256Sha256","mode":"SignAndEncrypt"}
[2026-05-15 14:58:04.524042] opcua.DEBUG: OpenSecureChannel response: channelId=2453888357 {"endpoint":null,"session_id":null,"channelId":2453888357}
[2026-05-15 14:58:04.524301] opcua.DEBUG: Secure channel opened (channelId=2453888357) {"endpoint":null,"session_id":null,"channelId":2453888357}
[2026-05-15 14:58:04.524915] opcua.DEBUG: CreateSession request for opc.tcp://***:4840 {"endpoint":null,"session_id":null,"url":"opc.tcp://***:4840"}
[2026-05-15 14:58:06.251871] opcua.DEBUG: CreateSession response: authToken=***929fd {"endpoint":null,"session_id":"***929fd","token":"***929fd"}
[2026-05-15 14:58:06.257193] opcua.DEBUG: ActivateSession request {"endpoint":null,"session_id":"***929fd"}
[2026-05-15 14:58:07.987089] opcua.DEBUG: ActivateSession response received {"endpoint":null,"session_id":"***929fd"}
[2026-05-15 14:58:07.987369] opcua.DEBUG: Session created and activated {"endpoint":null,"session_id":"***929fd"}
[2026-05-15 14:58:07.987685] opcua.DEBUG: ReadMulti request: 2 item(s) {"endpoint":"opc.tcp://***:4840","session_id":"***929fd","count":2}
[2026-05-15 14:58:07.991804] opcua.DEBUG: ReadMulti response: 2 value(s) {"endpoint":"opc.tcp://***:4840","session_id":"***929fd","count":2}
[2026-05-15 14:58:07.992101] opcua.DEBUG: Server limits discovered: MaxNodesPerRead=1000, MaxNodesPerWrite=1000 {"endpoint":"opc.tcp://***:4840","session_id":"***929fd","read":1000,"write":1000}
[2026-05-15 14:58:07.992364] opcua.INFO: Connected to opc.tcp://***:4840 {"endpoint":"opc.tcp://***:4840","session_id":"***929fd"}
[2026-05-15 14:58:07.992735] opcua.DEBUG: Read request for node i=2259 (attributeId=13) {"endpoint":"opc.tcp://***:4840","session_id":"***929fd","nodeId":"i=2259","attr":13}
[2026-05-15 14:58:07.996809] opcua.DEBUG: Read response for node i=2259: statusCode=0 {"endpoint":"opc.tcp://***:4840","session_id":"***929fd","nodeId":"i=2259","status":0}
[2026-05-15 14:58:07.997089] opcua.INFO: ServerState read OK (0) {"value":0}
[2026-05-15 14:58:07.997315] opcua.INFO: Disconnecting {"endpoint":"opc.tcp://***:4840","session_id":"***929fd"}
[2026-05-15 14:58:07.997568] opcua.DEBUG: CloseSession request {"endpoint":"opc.tcp://***:4840","session_id":"***929fd"}
[2026-05-15 14:58:08.007064] opcua.DEBUG: CloseSecureChannel request (channelId=2453888357) {"endpoint":"opc.tcp://***:4840","session_id":"***929fd","channelId":2453888357}

==============================================================================
  DIAGNOSTIC REPORT
==============================================================================

Discovery endpoint : opc.tcp://***:4840
Session endpoint   : opc.tcp://***:4840

-- Endpoint enumeration --
  status     : OK (2 endpoints)
  #0  opc.tcp://***:4840  |  http://opcfoundation.org/UA/SecurityPolicy#None  |  None
       Anonymous    policyId='Anonymous'
       UserName     policyId='UserName_Basic128Rsa15_Token'
       UserName     policyId='UserName_Basic256_Token'
       UserName     policyId='UserName_Basic256Sha256_Token'
       UserName     policyId='UserName_Aes128Sha256RsaOaep_Token'
       UserName     policyId='UserName_Aes256Sha256RsaPss_Token'
  #1  opc.tcp://***:4840  |  http://opcfoundation.org/UA/SecurityPolicy#Basic256Sha256  |  SignAndEncrypt
       Anonymous    policyId='Anonymous'
       UserName     policyId='UserName_Basic128Rsa15_Token'
       UserName     policyId='UserName_Basic256_Token'
       UserName     policyId='UserName_Basic256Sha256_Token'
       UserName     policyId='UserName_Aes128Sha256RsaOaep_Token'
       UserName     policyId='UserName_Aes256Sha256RsaPss_Token'

-- Connection scenarios --
  [PASS] None + None + Anonymous
  [PASS] None + None + UserName/Password
  [PASS] Basic256Sha256 + SignAndEncrypt + Anonymous
  [PASS] Basic256Sha256 + SignAndEncrypt + UserName/Password

-- Diagnosis: UserName policyId --
  verdict    : ok
  advertised : 'UserName_Basic128Rsa15_Token', 'UserName_Basic256_Token', 'UserName_Basic256Sha256_Token', 'UserName_Aes128Sha256RsaOaep_Token', 'UserName_Aes256Sha256RsaPss_Token'
  client def : 'username'
  message    : 
      Secured UserName/Password connection succeeded — no mismatch in this run.

==============================================================================

Answer selected by GianfriAur

GianfriAur May 15, 2026
Maintainer

Thanks @H4rw3y5ag3

Thank you for taking the time to test and help me resolve a latent issue like this. If you need further support or encounter any other issues, please let me know; I'll be happy to help.

GianfriAur · 2026-05-12T13:15:47Z

GianfriAur
May 12, 2026
Maintainer

Hi @H4rw3y5ag3

little follow up, I found the problem and opened a new issue #6

0 replies

GianfriAur · 2026-05-12T14:19:58Z

GianfriAur
May 12, 2026
Maintainer

Hi @H4rw3y5ag3

little follow up, I created pr #7 to solve issue #6 that you had identified, I updated the client to version v4.3.1, where the problem is solved, also use composer update php-opcua/opcua-client to update

Thank you so much for reporting it. If you encounter any other issues or problems, please let us know; we'll be happy to help or solve.

0 replies

SUPPORT required to connect to an Siemens S7 1214C PLC #5

Uh oh!

H4rw3y5ag3 May 11, 2026

Replies: 4 comments · 15 replies

Uh oh!

Uh oh!

GianfriAur May 11, 2026 Maintainer

Uh oh!

Uh oh!

H4rw3y5ag3 May 15, 2026 Author

Uh oh!

GianfriAur May 15, 2026 Maintainer

Uh oh!

Uh oh!

GianfriAur May 12, 2026 Maintainer

Uh oh!

Uh oh!

H4rw3y5ag3 May 15, 2026 Author

Uh oh!

GianfriAur May 15, 2026 Maintainer

Uh oh!

GianfriAur May 15, 2026 Maintainer

Uh oh!

H4rw3y5ag3 May 15, 2026 Author

Uh oh!

GianfriAur May 15, 2026 Maintainer

Uh oh!

GianfriAur May 12, 2026 Maintainer

Uh oh!

GianfriAur May 12, 2026 Maintainer

H4rw3y5ag3
May 11, 2026

Replies: 4 comments 15 replies

GianfriAur
May 11, 2026
Maintainer

H4rw3y5ag3 May 15, 2026
Author

GianfriAur May 15, 2026
Maintainer

GianfriAur
May 12, 2026
Maintainer

H4rw3y5ag3 May 15, 2026
Author

GianfriAur May 15, 2026
Maintainer

GianfriAur May 15, 2026
Maintainer

H4rw3y5ag3 May 15, 2026
Author

GianfriAur May 15, 2026
Maintainer

GianfriAur
May 12, 2026
Maintainer

GianfriAur
May 12, 2026
Maintainer