# Navigate to ''Personal - Certificates'' and find the certificate named ''UBIK OPCUA Interface''
# Export the certificate and trust it on your OPC server
# It is essential that any Windows account trying to establish a secure connection using the client certificate (e.g., the IIS app pool user) must be able to read the private keys. This means that the certificate must be in a store location accessible by the account in question, and the account must have read rights for the certificate (this can be configured via MMC Snap-In "Certificates", using the "Manage Private Keys" task, but only for Personal Certificates). See also: https://stackoverflow.com/questions/2609859/how-to-give-asp-net-access-to-a-private-key-in-a-certificate-in-the-certificate/2647003#2647003
[[Category:OPC|OPC UA (Module)]]