Open topic with navigation

Use a Certificate for an AVEVA Insight Connection Token

Before you connect ClearSCADA to AVEVA Insight (formerly Wonderware Online), you need to enter a connection token in ClearSCADA (see Exporting Historical Data to AVEVA Insight and see Set Token). This enables you to encrypt the communications between the two applications.

You can only use the connection token on the computer that you used to generate it. Therefore, if your ClearSCADA system has a Hot Standby configuration, you will also need to use a certificate so that the connection token can be shared by more than one computer. You will need to do this on the Hot-Standby servers in your system.

There are two types of certificate that you can use:

NOTICE

SECURITY RISK

Using a non-trusted certificate could compromise your system security. Installing a non-trusted certificate could compromise your system security. Potentially, it could lead to unauthorized access. For this reason, we strongly recommend that you use a trusted certificate.
Failure to follow these instructions can result in compromised security leading to data loss.

Before you can use the certificate, you need to contact AVEVA Insight Support and register the public certificate with them. You then need to install the certificate into the local machine certificate store.

To use a certificate, follow this procedure:

  1. Open Windows Certificate Manager for the local machine. To do this:
    • In Windows 7 and Windows Server 2008 R2, click the Windows Start button, type mmc.exe in the search box, then press Enter. In the Microsoft Management Console, select File, click Add/Remove Snap-in, select Certificates, click the Add> button, select Computer account, click the Next button, select Local computer, click the Finish button, then click the OK button.
    • In Windows 8.1, Windows 10, Windows Server 2012, Windows Server 2012 R2, or Windows Server 2016, click the Windows Start button. Type certlm.msc in the search box then press Enter.
  2. Import the certificate (see the Windows Help).
  3. Open the certificate by double-clicking it.
  4. Click the Details tab.
  5. Scroll down the Details list until you find the Thumbprint field.
  6. Click on the Thumbprint field and copy the Thumbprint value to the clipboard. The value is padded with spaces. You need to remove these spaces.

    For more information about using Windows Certificate Manager, see the Windows Help.

  7. Paste the Thumbprint value into the PublisherThumbprint attribute in the AVEVA Insight Publisher file. The file has the name aahCloudConfigurator.exe.config. By default, the file is stored at the following location on a 64-bit machine:

    C:\Program Files\Wonderware\InsightPublisher\x64\aahCloudConfigurator.exe.config

    and at this location on a 32-bit machine:

    C:\Program Files\Wonderware\InsightPublisher\aahCloudConfigurator.exe.config

    The path will differ from the default if you have installed AVEVA Insight Publisher in a different folder.

    Example:

    The example below shows the Publisher Thumbprint attribute populated:

    If you do not want to use a certificate, set the Publisher Thumbprint attribute to blank (see below):

Further Information

Generate a Connection Token with AVEVA Insight Publisher.

Disclaimer

ClearSCADA 2017 R2

© 2018 AVEVA Group Plc.  All Rights Reserved.

The Schneider Electric industrial software business and AVEVA have merged to trade as AVEVA Group plc, a UK listed company. The Schneider Electric and Life is On trademarks are owned by Schneider Electric and are being licensed to AVEVA by Schneider Electric.