Siemens Industry Online Support
Siemens AG
Entry type: FAQ Entry ID: 109763500, Entry date: 06/12/2019

How do you create your own certificates for panels?

  • Entry
  • Associated product(s)
Data security when transferring via the internet must be ensured for the remote control of HMI operator panels via Sm@rtClient. Client and server certificates are installed for this. The FAQ response describes how to create self-signed certificates and where these are stored on the PC and operator panel.

When transferring data via the internet you must ensure that you have a high level of data security. Certificates are useful tools for data security.

A certificate is like an ID card. Based on the data on the ID card the person's identity can be established.

Client and Server Certificates
You can use two types of certificate.

  1. Automatically generated certificate.
    (A certificate generated automatically by the operator panel).
  2. Self-signed certificate.
    (A self-signed certificate is a certificate whose signature comes from the certificate holder and not from an independent certification authority).

The following points are covered by the attached PDF document.

  • Brief instructions
  • Creating a self-signed certificate
Software tool "XCA"
  • Inserting a certificate in the PC certificate folder
  • Transferring a certificate to the operator panel
  • Deleting a certificate

The following figure shows a typical message that is displayed if the certificate is not available or if it is not recognized.

Picture 01

Security information
In order to protect technical infrastructures, systems, machines and networks against cyber threats, it is necessary to implement – and continuously maintain – a holistic, state-of-the-art IT security concept. Siemens’ products and solutions constitute one element of such a concept. For more information about cyber security, please visit