Bad certificate OPC UA Server

I’m running Ignition 7.9.13 and I’m trying to create an OPC UA connection with Weintek cMT-SRV.
After adding it, OPC Connection faulted.
Certificate application URI invalid: StatusCode{name=Bad_CertificateUriInvalid, value=0x80170000, quality=bad}
What can I do?

This usually means 1 of 2 things:

  1. the certificate of the server you’re connecting to has an invalid character (usually a space) in its application URI, making it invalid and causing the comparison to the URI in the ApplicationDescription to fail.
  2. the application URI in the certificate is actually different than the one returned in the ApplicationDescription in the EndpointDescription of the endpoint you’ve chosen when connecting.

Usually it’s #1. I’m not familiar with this server, so you’ll have to get in touch with their support if you can’t figure out how to re-generate a certificate that has a valid or matching application URI in it. If you can get a copy of the certificate and upload it here we can check to see if it’s #1.

In the meantime as a workaround you should be able to connect without security if the server allows it.

It’s already configured without security.
With UA Expert I trusted manually the certificate and works fine.


Sorry this screenshot doesn’t help.

Can you get a Wireshark recording of Ignition connecting to this server?

edit: and actually, can you get the rest of the logs? And navigate to the Status section of the gateway and find this OPC connection and check the fault reason and stack trace? In 7.9 this application URI message should only be a warning and not what is preventing you from connecting.

Maybe this can help