Closed jacqueskang closed 2 days ago
Although here the server returns something we don't expect, so could it also be that the server certificate is configured incorrectly and we might see a security fix in the UA stack we are using?
Found the change/fixed issue in the stack: https://github.com/OPCFoundation/UA-.NETStandard/issues/2032
https://github.com/OPCFoundation/UA-.NETStandard/commit/f081d51bba719dda0fc2e94b268e8e976888143f.
Looks like this change was made to have the client behave per spec. Looks like the server is the culprit, what server are you using? Possible to open a ticket to them?
@marcschier thanks for information.
We are using KEPServerEX which a custom server certificate. If I understand correctly the server certificate must have URI SAN matching the EndpointUrl specified in OPC Publisher's published nodes configuration, right?
The servers application Uri which uniquely identifies the kepserver installation and that the server presents during session create/activate against an endpoint url must also be in the accompanying certificate's SAN of that endpoint, the endpoint url host name is matched via the domain name in the cert (also in SAN).
Describe the bug
After have updated OPC Publisher from v2.9.4 to v2.9.9 it cannot connect to OPC-UA server anymore with error:
I cannot find in release note any related breaking change.
To Reproduce
Expected behavior
Being able to update from v2.9.4 to v2.9.9 without error.