Assigning OPC UA function rights - References - SIMATIC AX - AX Hardware Engineering documentation

Assigning OPC UA function rights - References - SIMATIC AX - AX Hardware Engineering documentation - Hardware Engineering,

Hardware Engineering reference

Portfolio

SIMATIC AX

Product

SIMATIC AX

Software version

2.0.0-alpha1.56

Edition

08/2025

Language

English (original)

Package Name

@ax/hw-docs

To allow access to the OPC UA server for a user and allow to manage certificate the corresponding function rights need to be assigned to the user in the hardware declaration file.

The following function rights for the OPC UA server are supported:

Function rights	Description
`OpcUAServerAccess`	User with this right can access to the OPC UA server.
`OpcUAManageCertificates`	User with this right can transfer certificates, CRLs (Certificate Revocation Lists) or trusted lists to the CPU at runtime.

An example file snippet (example.hwl.json) could look like this:

  "UserManagement": {
            "Roles": [
              {
                "Name": "OpcUaServerAccessRole",
                "FunctionRights": [
                  "OpcUAServerAccess",
                  "OpcUAManageCertificates"
                ]
              }
            ],
            "Users": [
              {
                "Name": "user1",
                "AssignedRoles": [
                  "OpcUaServerAccessRole"
                ]
              }
            ]
          }