|
Type: |
Enumeration |
|
Available as of: |
V1.0.4.0 |
The enumeration ET_CertVerifyMode is used to define the mode for the certificate verification for TCP/IP connections using TLS (Transport Layer Security).
In the context of TLS, certificates can be used to verify the identity of the communication partners. Certificates are sent during the establishing of a connection, the so called TLS handshake. The sending of certificates during TLS handshake is optional, but if the communication partner requires a certificate, the sending of it is obligatory. Only if the result of the verification of the certificate is positive a connection with the communication partner can be established. If the client or server is configured to verify the server certificate in mode TrustedOnly, it is required to manage the certificates on your controller in a manual manner. This can be done using the editor Security Screen in Machine Expert Logic Builder.
NOTE: TrustedOnly is the only way to verify the identity of the communication partner.
|
Name |
Value |
Description |
|---|---|---|
|
1 |
No verification of the certificate, also peers without sending a certificate are accepted. This setting is used for server by default because most clients do not provide a certificate. |
|
|
4 |
A certificate by peer is obligatory but can be undefined. Each certificate is considered as trusted. |
|
|
6 |
A certificate by peer is obligatory and must be known and rated as trusted. |
For more information about certificate management on the controller, refer to How to manage certificates on the controller - User Guide.
oFB_TCPClient2
oFB_TCPServer2
oFC_CertVerifyModeToString
