Select Endpoint
Use
When you choose the Select Endpoint pushbutton, you can choose (from a list of known server endpoints) the endpoint with which you want the OPC UA agent to connect.
Prerequisites
-
You have specified a discovery server on the Session tab.
-
You have created the list of server endpoints using the local discovery server. To create the list, choose Start Discovery. The system determines the possible endpoints and proposes an endpoint in the Server Endpoint field.
Procedure
Select Endpoint
-
Choose Select Endpoint on the Session tab.
The Configure Endpoints dialog box appears, containing the list of possible endpoints.
-
Select the endpoint you want from the list and click OK.
PCo adopts the selected endpoint server and displays it in the Server Endpoint field.
Add New Endpoint
-
If the endpoint you want is not in the list of endpoints or the list of endpoints has not been set up correctly, choose Add New Endpoint here in the Configure Endpoints dialog box to enter a new entry manually.
PCo displays the Add Server Endpoint Description dialog box. The dialog box contains the following fields with predefined values, which you can change:
Field
Description
Endpoint URL
When you create a new entry or change an entry, you need to enter a valid URL here. A simple validity check is performed.
A valid URL starts with one of the following three character strings:
-
opc.tcp://
-
http://
-
https://
Then comes the URL of the server, using, ideally, a fully qualified domain name. This is followed – separated by colons – by a port number and, optionally, path details.
Security Mode
The security mode defines which steps are used for a secure connection setup (OpenSecureChannel request). You can choose between the following settings:
-
None
For this setting, the request is neither signed nor encrypted. In this case, no certificates are used for a secure connection setup.
-
Sign
For this setting, the request is not encrypted but is signed with the private key of the client application certificate so that the server (that has to trust the client certificate) can validate the request.
-
SignAndEncrypt
For this setting, the client uses the public key of the server to sign the message and to encrypt it.
Security Policy
The security policy allows the cryptoalgorithm, to a certain extent, to be chosen for setting up the secure connection.
The following options are possible depending on the security mode defined previously:
-
Security mode None: None
-
Security modes Sign and SignAndEncrypt:
The following security policies are available:-
Aes128_Sha256_RsaOaep
This security policy is intended for configurations with medium security requirements.
-
Aes256_Sha256_RsaPss
This security policy is intended for configurations with high security requirements.
-
Basic256Sha256
This security policy is intended for configurations with high security requirements.
For more information about these security policies, see https://apps.opcfoundation.org/profilereporting/
in the section 
Security Category 
SecurityPolicy
.There are also the deprecated security policies Basic128Rsa15 or Basic256. They appear in the dropdown list with the addition of the word (deprecated).
-
Encoding
The following options are available for encoding:
-
(OPC UA) Binary
-
(OPC UA) XML
XML is only available if the endpoint URL starts with http or https.
-
-
Make your settings and confirm by choosing OK.
PCo generates a new entry in the list of endpoints. This entry consists of the URL of the endpoint and the settings for the Security Mode, Security Policy, and Encoding fields.
-
To add the endpoint, confirm with OK.
Edit Endpoint
Choose Edit Selected Endpoint to adjust an existing entry in the list of endpoints.
PCo displays the Add Server Endpoint Description dialog box. The selected server endpoint is shown in the Endpoint field.