MY OPC UA connection is working but I see the following errors in the gateway-logging:
CertificateValidationUtil
‘O=Siemens,C=DE,CN=Urs/OPCUA-1-1’ violates RFC 5280: KeyUsage keyCertSign bit set without BasicConstraint cA bit set
We’re using the built in OPC-UA server in the S7 1500-PLC with Ignition Version: 8.0.12 (b2020042115)
Is this a setting in the gateway or should this be fixed in the PLC?
It would be fixed on the PLC side by generating a new certificate, but I doubt there’s a setting that will influence that bit being set.
I wouldn’t worry about it. It’s just a warning and it turns out to be common enough that I think I changed that warning to be a DEBUG-level log instead.
Thanks Kevin!
It looks like it’s not a recurring error, so I don’t mind if it comes only after a gateway startup.
We’re not planning to do that quite often in production :- 
I think you’ll see it any time Ignition connects or reconnects to that server.