User Management of the OPC UA Server
The OPC UA Server supports the CODESYS user management.
You set the access rights on the server from the Access Rights tab on the controller. To do this, select the RuntimeSystemObjects - RemoteConnections - OPCUAServer object.
If anonymous access to the OPC UA Server should be allowed despite having an active user management, then you can also grant individual permission for this kind of access. To do this, grant the respective permissions to the implicitly existing group "Anonymous_OPCUAServer". The permission for anonymous access is granted in the Change Communication Policy dialog.
For a description of this dialog, see the help page for of Tab: Communication Settings.
Access rights can be checked at both the service and objects levels. As a result, a user might not be able to write to a variable, although this user is generally allowed to write to the OPC UA Server.
OPC UA Service | Access Rights |
|---|---|
AttributeRead | View |
AttributeWrite | Modify |
Call | Execute |
CreateMonitoredItem | View |
ModifyMonitoredItem | View |
SetMonitoringMode | View |
DeleteMonitoredItem | View |
CloseSession | View |
CreateSubscription | View |
ModifySubscription | View |
SetPublishingMode | View |
DeleteSubscriptions | View |
Publish | View |
Republish | View |
Browse | View |
BrowseNext | View |
TranslateBrowsePathsToNodeIds | View |
RegisterNodes | View |
UnregisterNodes | View |
For more information, see the following: Handling of Device User Management