WinCC OPC UA

SIMATIC WinCC V7.
OPC Unified Architecture
Unrestricted / Siemens AG 2013. All Rights Reserved.
www.wincc.de
SIMATIC WinCC V7.2 - OPC Unified Architecture

OPC History
How does it works
UA Principles
WinCC OPC UA
17
UA Server
19
UA Client
22
Data Access
25
Historical Access
28

Page 2
webinar

OPC - Standardize on technology not the product break the barriers
OPC History - success story
2009
1996
Benefits of OPC
Open connectivity
Plug-and-Play
DDE (Windows 3)
Interfaces available from multiple vendors
1990
Easy to use
Reduces your project costs!

Page 3
webinar

OPC History
How does it works
UA Principles
WinCC OPC UA
17
UA Server
19
UA Client
22
Data Access
25
Historical Access
28

Page 4
webinar

How does OPC works
OPC Client
Response
Request
Initialize the OPC communication

Reading/ writing requirements
OPC
Communication on basis of
COM/DCOM, SOAP/HTTP or UA Binary
Native communication
OPC Server
Carry out the Client requirements
Cyclical / change controlled

Page 5
webinar

OPC History
How does it works
UA Principles
WinCC OPC UA
17
UA Server
19
UA Client
22
Data Access
25
Historical Access
28

Page 6
webinar

OPC Unified Architecture Principles
OPC UA is designed to deliver a true Universal Connectivity
based on a secure and simple platform to address Enterprise level challenges
Unified
Access
Reliability
Platform
Independence
Security

Page 7
webinar
Unified
Access

OPC UA Principles: Unified Access
Unified Access
OPC UA integrates existing OPC specifications DA, A&E, HDA, etc. in one specification.
This reduces system integration costs by providing a common architecture for accessing information.
Real time data
OPC HDA
Historical data
OPC A&E
Alarms and
Events
OPC
Client
UA Client
OPC DA
OPC Unified Architecture

COM Client
Main OPC Classic Specifications
OPC UA
Data Access
Historical Access
Alarms and Conditions

Page 8
webinar
Platform
Independence

OPC UA Principles: Platform Independence & Access via Firewalls and across the Internet
Platform Independence
OPC UA is designed to be independent of the platform.
Using SOAP/XML over HTTP, OPC UA can be deployed on Linux, Windows XP Embedded, VxWorks, Mac,
Windows 7 and Classical Windows platforms.
XML Web Services
SOAP/HTTP
with UA Binary
UA XML
Native Binary
UA Binary
WS Secure Conversation
SOAP
UA Secure Conversation
UA TCP
HTTP/HTTPS
TCP/IP
TCP
/ IP
Access via Firewalls and across the Internet

OPC UA uses message based security which means messages can be relayed through HTTP, UA TCP port or
any other single port available.
UA
Client
Internet
UA
Server

Page 9
webinar

OPC UA Principles: Security
Security
Security
OPC UA is Secure-by-default, encryption enabled (to encode the data transfer), uses advanced certificate
handling and authentication.
OPC UA Server
OPC UA Client
Certificate Handling
Client
Server
Certificate Store
Export, Copy
And Install
Certificate Store
Server.der
Client.der
Client.der
Export, Copy
And Install
Server.der

Page 10
webinar

OPC UA Principles: Security in WinCC
Security
The following table lists the security settings supported by the WinCC OPC UA server:
Security Policy
Message Security Mode
None1
None
Basic128Rsa152
None4
Sign5
SignAndEncrypt6
Basic2563
None4
Sign5
SignAndEncrypt6
Security Policy
1. The certificate exchange is switched off.
Every OPC UA client can log on to the WinCC OPC UA server.
2. Certificate exchange with depth of encryption of 128 bit.
3. Certificate exchange with depth of encryption of 256 bit.
4. Unsecured exchange of data packages between client and server after a certificate check.
5. The data packages are signed with the certificates, but not encoded
6. The data packages are signed with the certificates and encoded
Settings of the WinCC OPC UA server
Authentication
For user account identification of an OPC UA client,
the WinCC OPC UA server supports the methods "Anonymous" and "Windows user name / Password".
Page 11
webinar

Security
The following table lists the security settings supported by the WinCC OPC UA client:
Security Policy
None
None
Basic
None
Sign
SignAndEncrypt
Security Policy
The certificate exchange is switched off.
Certificate exchange with depth of encryption of Basic128/-192/-256,

Basic128Rsa15/-192Rsa15/-256Rsa15 or Basic256Sha256.

Unsecured exchange of data packages between client and server after a certificate check.
The data packages are signed with the certificates, but not encoded
The data packages are signed with the certificates and encoded
Settings of the WinCC OPC UA client
Authentication
For user account identification of an OPC UA client,
the WinCC OPC UA server supports the methods "Anonymous" and "Windows user name / Password".

Page 12
webinar

Certificate store of the WinCC OPC UA server:
"<WinCC installation folder>\OPC\UAServer\PKI"
Security
Certificate store of the WinCC OPC UA client:

"<WinCC installation folder>\OPC\UAWrapper\PKI"
OPC UA Server
OPC UA Client
Certificate Handling
Client
Server
Server.der
Client.der
Export, Copy
And Install
Client.der
Export, Copy
And Install
Server.der

Page 13
webinar

WinCC UA Server
Open the configuration file
(<WinCC project folder>OPC\UAServer\OPCUAServerWinCC.xml)
Specify security settings
Security
WinCC UA Client
Add the OPC communication driver
Use the WinCC OPC Item Manager to configure the
connections (system parameter)
Enter the URL of the WinCC OPC UA server in the OPC
UA server dialog
Set up the security settings
Disable the setting with

"false".
To deactivate a setting,
delete the entire entry
Settings of the WinCC OPC UA server

Page 14
Settings of the WinCC OPC UA client

webinar

OPC UA Principles: Reliability
Reliability
Reliability
OPC UA implements configurable timeouts, error detection and communication failure recovery.
OPC UA allows redundancy between applications from different vendors to be deployed.
UA Client
(Active)
UA Client
(Standby)
UA Server
(Active)
UA Server
(Standby)
Industrial
Process

Page 15
webinar

OPC History
How does it works
UA Principles
WinCC OPC UA
16
UA Server
19
UA Client
22
Data Access
25
Historical Access
28

Page 16
webinar

OPC Unified Architecture in WinCC
OPC UA is designed to deliver a true Universal Connectivity based on a secure and simple platform to address Enterprise level challenges
OPC UA Principles:
Unified Access
Platform Independence
Access via Firewalls and across the Internet
Reliability
Security
e.g.
MES to excange
producation data
UA Data Access
WinCC OPC UA Server

for OPC UA Data Access
and OPC UA Historical Access *
Part of the WinCC ConnectivityPack
e.g.
Historian
UA Historical Access
Historical Data
e.g.
Historian or central
Message system
Alarms & Events *
OPC UA Server
SIMATIC WinCC
OPC UA Client
UA Data Access
WinCC OPC UA Client

for data access as WinCC Channel
e.g. 3.rd party controller
*) OPC UA Historical Access supports Historical Data.

Alarms & Events are not supported.
Page 17
webinar

OPC History
How does it works
UA Principles
WinCC OPC UA
17
UA Server
18
UA Client
22
Data Access
25
Historical Access
28

Page 18
webinar

WinCC OPC UA Server
The WinCC OPC UA Server provides the following values:
Process values
Values from tag archives
Basic information to the WinCC OPC UA Server
WinCC OPC UA server is installed as Windows service and started automatically.
WinCC OPC UA server supports the "UA-TCP UA-SC UA Binary" communication profile.
The used port number is adjustable (configuration file "OPCUAServerWinCC.xml)
You access the WinCC OPC UA server via the following URL:
opc.tcp://[HostName]:[Port]
For authorization between WinCC OPC UA server and OPC UA client certificates are exchanged.
In addition, you can encode the data transfer.

Page 19
webinar

WinCC OPC UA Server - Configuration of the Server in detail
1. Open the configuration file (<WinCC project folder>OPC\UAServer\OPCUAServerWinCC.xml)
2. Change the port number of the WinCC OPC UA server
3. Specify security settings
Enable the setting with "true".
Disable the setting with "false".
4. Specify user identification
5. Configure optimized WinCC archive write access
6. Change the trace level

Page 20
webinar

OPC History
How does it works
UA Principles
WinCC OPC UA
17
UA Server
19
UA Client
21
Data Access
25
Historical Access
28

Page 21
webinar

WinCC OPC UA Client
The WinCC OPC UA client enables data access to any OPC UA server in accordance with the OPC Unified Architecture specification
Configuration of an OPC connection:

1. Add the OPC communication driver
2. Use the WinCC OPC Item Manager to configure the connections (system parameter)
3. Enter the URL of the WinCC OPC UA server in the OPC UA server dialog
Set up the security settings
4. Click "Browse Server An error dialog opens
The "rejected" folder containing the rejected server certificate
5. Move the server certificate from the "rejected" folder to the "certs" folder

Page 22
webinar

WinCC OPC UA Client
Configuration of OPC tags:
1. Click "Browse Server". The "Filter criteria" dialog is opened.
2. Select the tag to be mapped in the "opc.tcp:// ..." dialog, e.g. "OPC_UA_Server_Tag". Click "Add Items".
A message will be output if this connection is not available
Enter the connection name "OPCUAServer

Page 23
webinar

OPC History
How does it works
UA Principles
WinCC OPC UA
17
UA Server
19
UA Client
22
Data Access
24
Historical Access
28

Page 24
webinar
Response
Request

WinCC OPC UA Data Access
Native
communication
OPC DA in general
OPC UA Data Access:
standardizes access method to real-time data
OPC UA Data Access decouples the implementation of
the device, e.g. a controller from its data items
Every item includes information on:
Value, Quality code and timestamp
OPC DA usage
Used only for real-time data
Typical queries:
What is the process value of tank level 1 now?
What is the setpoint of motor 1 now?
Only allows the transmission of the latest values

Page 25
webinar

WinCC OPC UA Data Access using the timestamp from the OPC tag
Timestamp of the OPC tag is used for the message
Result: time stamp is used for the message
Timestamp of the OPC tag is used to store the trend if you use the archiving mode Acyclic
Result: time stamp is used for the trend

Page 26
webinar

OPC History
How does it works
UA Principles
WinCC OPC UA
17
UA Server
19
UA Client
22
Data Access
25
Historical Access
27

Page 27
webinar

WinCC OPC UA Historical Access
Write
Read
MES, ERP
e.g. Historian
Historical Data
OPC UA Server
SIMATIC WinCC
OPC Historical Access in general

OPC Historical Access:
standardized access method to analyze archive data
Standard method to write historical values
OPC Historical Access usage
Used only for historical data
Typical queries:
What is the historical value of tank level 1 for the last hour?
Insert a new value for the tank level 1 to the archive.
Standard method
to read historical values out of the WinCC tag logging archive
write historical values into WinCC tag logging archive

Page 28
webinar

WinCC OPC UA Historical Access - Read - write access to the WinCC Tag Logging Archive
Marked as manual input

Page 29
webinar

To write historical data into the WinCC archive by the help of OPC UA
Installation of the components is necessary
Configuring optimized WinCC archive write access

By default the optimized WinCC archive write access is activated
To limited the write access specify
a Windows users under <Users>
or specify a OPC UA client under <Clients>
which have the rights to write
data into the WinCC database.
Page 30
webinar
Thank you for your attention!

Jrgen Bohrer
I IA AS S SUP FA 2
E: \ 360_Webinar \ 2013_07_15_Use_case_SIMATIC_WinCC_with_OPC_UA \ 000_OPC_UA_en.pptx
Gleiwitzer Str. 555

90475 Nrnberg
Phone: +49 (911) 895-7147
E-Mail: wincc-special.aud@siemens.com
www.wincc.de
Page 31
webinar

WinCC OPC UA

Uploaded by

Copyright:

Available Formats

WinCC OPC UA

Uploaded by

Document Information

Original Description:

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

WinCC OPC UA

Uploaded by

Copyright:

Available Formats

SIMATIC WinCC V7.

OPC Unified Architecture

Unrestricted / Siemens AG 2013. All Rights Reserved.

SIMATIC WinCC V7.2 - OPC Unified Architecture

How does it works

Unrestricted / Siemens AG 2013. All Rights Reserved.

SIMATIC WinCC V7.2 - OPC Unified Architecture

OPC History - success story

Interfaces available from multiple vendors

Unrestricted / Siemens AG 2013. All Rights Reserved.

SIMATIC WinCC V7.2 - OPC Unified Architecture

How does it works

Unrestricted / Siemens AG 2013. All Rights Reserved.

SIMATIC WinCC V7.2 - OPC Unified Architecture

Initialize the OPC communication

Unrestricted / Siemens AG 2013. All Rights Reserved.

SIMATIC WinCC V7.2 - OPC Unified Architecture

How does it works

Unrestricted / Siemens AG 2013. All Rights Reserved.

SIMATIC WinCC V7.2 - OPC Unified Architecture

Unrestricted / Siemens AG 2013. All Rights Reserved.

SIMATIC WinCC V7.2 - OPC Unified Architecture

Real time data

OPC Unified Architecture

Main OPC Classic Specifications

Unrestricted / Siemens AG 2013. All Rights Reserved.

SIMATIC WinCC V7.2 - OPC Unified Architecture

Access via Firewalls and across the Internet

Unrestricted / Siemens AG 2013. All Rights Reserved.

SIMATIC WinCC V7.2 - OPC Unified Architecture

Unrestricted / Siemens AG 2013. All Rights Reserved.

SIMATIC WinCC V7.2 - OPC Unified Architecture

Message Security Mode

Settings of the WinCC OPC UA server

SIMATIC WinCC V7.2 - OPC Unified Architecture

Message Security Mode

Certificate exchange with depth of encryption of Basic128/-192/-256,

Message Security Mode

Settings of the WinCC OPC UA client

Unrestricted / Siemens AG 2013. All Rights Reserved.

SIMATIC WinCC V7.2 - OPC Unified Architecture

Certificate store of the WinCC OPC UA client:

Unrestricted / Siemens AG 2013. All Rights Reserved.

SIMATIC WinCC V7.2 - OPC Unified Architecture

Specify security settings

Disable the setting with

Unrestricted / Siemens AG 2013. All Rights Reserved.

Settings of the WinCC OPC UA client

SIMATIC WinCC V7.2 - OPC Unified Architecture

Unrestricted / Siemens AG 2013. All Rights Reserved.

SIMATIC WinCC V7.2 - OPC Unified Architecture

How does it works

Unrestricted / Siemens AG 2013. All Rights Reserved.

SIMATIC WinCC V7.2 - OPC Unified Architecture

WinCC OPC UA Server

WinCC OPC UA Client

*) OPC UA Historical Access supports Historical Data.

SIMATIC WinCC V7.2 - OPC Unified Architecture

How does it works