OPC UA configuration

Duration:  04m:35s   Language:  English   Subtitles: English   Resolution: max. 1280 x 720px (HD)



Note: Tutorial videos are embedded from the Phoenix Contact Technical Support YouTube channel.  When you start playing an embedded YouTube video, you accept the YouTube Terms & Conditions. That includes cookies for marketing purposes which will remain on your device and will be used to provide video suggestions and advertisements based on your browsing habits and may be sold to other parties. 

How to

If a controller features an integrated OPC UA server, it is displayed in the Variable: PC_Worx_Engineer is not defined in the project. software in the PLANT area → OPC UA. Here, you can configure the OPC UA server. The configuration is loaded to the controller as part of a Variable: PC_Worx_Engineer is not defined in the project. project and in form of a configuration file. It contains all parameters for setting the OPC UA server. All users of an OPC UA must authenticate themselves to the OPC UA server with a user name and a password. You can create a user via the WBM of the controller (see Web-based management (WBM)). In the course of this, you have to assign the necessary roles:

  • DataViewer
  • DataChanger
  • FileReader
  • FileWriter

For additional information on user roles, please refer to the User Authentication.


With Variable: PC_Worx_Engineer is not defined in the project., the following configurations are possible:

  • Defining the server endpoint URI:
    Define the name of the network node the eUA server is to use in the server URI and in the endpoint URL.
  • Defining a Global Discovery Server:
    Define which certificate the server is to use.
  • Visibility of variables and alarms for the OPC UA clients:
    Due to security reasons, the variables and ports of a program in PLCnext Engineer are set to not visible by default. Visibility is set in your PLCnext Engineer project. In the PLANT area, open the OPC UA node and open the Basic settings. Via the  Visibility of variables drop-down list, you can set the visibility of variables and alarms for the OPC UA clients:
  • Privilege settings for data access:
    You can configure access of clients to the file system of the server. Read and write access for clients to selected folders and files in the file system of the server as well as creating additional directories and files are possible. Once this option is active, only PLCnext Technology users with a FileReader or FileWriter role can read or write files.
    The required roles are assigned to the user in the WBM of the controller (see User Authentication). The OPC UA server accesses the Linux file system as the plcnext_firmware Linux user. It makes no difference which firmware user you use to log in as the OPC UA client, or whether you have deactivated the user authentication. All the files and directories are created as  plcnext_firmware.

For further information on configuring OPC UA in PLCnext Engineer, please refer to the PLCnext Engineer online help.