I. Operating environment: WIN7 (OPC interface under the WIN_XP configuration need to install plug-ins, sorry not to fix, now only the Win7 system 32 bit under the tutorial)
Because OPC (OLE for Process Control) is based on Microsoft's COM (COmponent Model), and OPC's remote communication relies on Microsoft's DCOM (distribute COM), The security side relies on Microsof's Windows security settings.
By communicating with each other through the network, the OPC Server (OPC service side) and the Opcclient (OPC client) are located on the operating system, you need to set the security properties of DCOM, and the configuration procedure is described using Windows 7 system. Premise: The client and the service side are equipped with the corresponding OPC software (the corresponding software library request to the software dealer), you need to do some configuration to achieve the purpose of remote access; Install the OPC runtime, restart the computer operating system, and then continue with the configuration work later.
Two. Configuration 1. Keep the OPC server server the same as the client's user name password. (Server-side and client) add the same account name and password on both the client and the service side, making sure that the same is the same. Because access is verified through windows, you need to have the same account and password for remote access. Operations such as:
Figure: Creating a user from the Administration menu or Control Panel
Figure: Creating a new user
Figure: New User Properties
Create a new user and set user properties. For security reasons, please keep the password blank.
To enable newly created users to have permission to use DCOM, you need to include the user in the distribute COM users user group.
You can add multiple users to the distribute COM Users group, or you can add existing users to the user group.
2. Turn off the firewall (server side vs. client)
Action: Control Panel--"All Control Panel items--" Windows Firewall
Left--"Turn Windows Firewall on or off
--"Shut down Windows Firewall
3. Component Service Configuration
Action: Start--"run--" input: DCOMCNFG
My Computer Properties configuration (client and server side); action: In the left-hand tree menu of the Component Services Manager, select Component Services \ computer \ My Computer, in the popup menu of the right mouse button, select the "Properties" item,
In the pop-up "My Computer properties", select the "Default Properties" tab, such as:
Verify the settings for several properties or status: Enable Distributed COM on this computer, this property is in the selected state; under the default Distributed COM Traffic properties column, default Authentication level, the selected item is: Connection, default Impersonation level, selected item: Identity. Select the Default Protocols tab of the My Computer Properties property page to confirm that the DCOM protocol property content is connection-oriented TCP/IP. Such as:
Select the COM Security tab of the My Computer Properties property page, such as:
Select the "Edit Default ..." button () on the "Access rights" section of the "COM Security" tab page, which pops up the "Access Rights" settings dialog box, such as:
Click on the "Add" button on this dialog to add the user to the list below and set the user's access rights, verify and click "OK" button to save. On the COM Security tab page, in the "Access rights" and "Launch and Activation Permissions" in the four buttons, detailed configuration of the user as follows:
After the configuration is complete, click the "OK" button on the "My Computer Properties" property page, the operating system pops up a warning message due to the modification of the system security properties.
3) DCOM Configuration
opcenum--attribute (both client and server side are configured)
Note: If the interactive user is dark, find C:\Windows\System32\OpcEnum.exe to drag it to the start-run input box and add a/regserver--to make sure to reopen the build service to start-run-Enter: DCOMCNFG The second choice is to take the opcserver of Zhejiang University as an example; select Supcon.jxserver for configuration;
Note: Server-side only, according to the different control system OPC servers name is different OPC server. --Properties
4. Configure the Local Security policy
Start the local Security policy manager, and on the start \ Run Input: secpol.msc, click the OK button to launch the Local Security policy manager, such as:
Modify the network access: Apply Everyone permissions to anonymous access anonymous users setting under Security Settings \ Local Policies \ Security options to enable the rule, such as:
Modify the network access: local account sharing and security model setting under Security Settings \ Local Policies \ Security options to enable the rule to classic, such as:
Ba-siemens-insight How to configure the OPC interface under Win7