Home
Southbound Interfaces
The process connection to the actual machines/sensors.
MQTT
MQTT (Message Queuing Telemetry Transport) is a messaging protocol which works on top of the TCP/IP protocol and is meant for communication in networks with limited bandwidth.
MQTT Driver - How-Tos
Setup a Certificate Chain between WinCC OA and Mosquito Broker
These instructions will guide you through the required steps of setting up a certificate chain for the MQTT driver. In this example WinCC OA and the Mosquitto are used.

Version Information
Release Notes, Update information, Certifications and Frequently Asked Questions.
Concepts
Your first step into modern and powerful process visualization.
Deployment
Topics, you need to know, before using WinCC OA.
Security
Go beyond the norm in cybersecurity.
Engineering
Powerful tools for easy or complex engineering tasks.
Data Management
Classify, structure and archive your data.
Business Logic / Control
Endless possibilities in data processing for your projects.
Data Visualization
User interfaces, Trends and Reports for every purpose and device.
Southbound Interfaces
The process connection to the actual machines/sensors.
- S7Plus Driver
  The WinCC OA S7Plus driver uses the Siemens communication library IOMS and is meant for the communication with Siemens S7 PLCs.
- S7 Driver
  The WinCC OA S7 driver is a native driver for connection to the periphery with Siemens S7 PLCs.
- OPC Unified Architecture (OPC UA)
  OPC Unified Architecture (in short OPC UA) is the most recent OPC specification from the OPC Foundation and differs significantly from its predecessors (DA, A&E, HDA). OPC UA forms a new standard, which is completely based on a service-oriented architecture.
- OPC Client
  This chapter explains the most important terms and presents the steps involved in starting a functioning OPC communication. The individual points will be dealt with in more detail in the subsequent chapters.
- OPC Alarms & Events
  OPC Alarms & Events (brief OPC A&E) is in addition to the Data Access another standard in order to implement a central alert management manufacturer spanning. OPC A&E is used to guarantee the coupling with other control systems as well as to display alerts and events in a hierarchical system
- IEC 60870-5 Driver
  IEC drivers are standardized remote control drivers that can contain proprietary telegrams.
- IEC 61850 Driver
  IEC 61850 defines an architecture for meeting the needs of electrical substation automation.
- Modbus/TCP Driver
  Modbus/TCP is an adaptation of the serial Modbus protocol for TCP/IP communication. The Modbus/TCP driver can be used for Modbus/TCP or UNICOS at the same time.
- SNMP
  SNMP (Simple Network Management Protocol) is a protocol for monitoring network devices (servers, workstations, routers, switches and hubs etc.) and their functions. It allows you to administer your network.
- BACnet Driver
  BACnet (Building Automation and Control Networks) is a normed protocol for building automation and was designed by ASHRAE (American Society of Heating, Refrigerating and Air-Conditioning Engineers) in order to provide a consistent and intraoperative standard for data communication in and with systems of building automation.
- DNP3 Driver
  The WinCC OA DNP3(Distributed Network Protocol 3) driver uses an open, robust and modern protocol, which has similar characteristics and strong points like the IEC Driver. The transmission of any number of telegrams with different data types occurs between the WinCC OA system (master) and the outstation (slave).
- Ethernet/IP Driver
  Ethernet/IP is used to communicate with multiple generations and families of Rockwell Automation / Allen Bradley PLCs. It is an application layer protocol, layered on top of standard TCP/IP networking.
- MQTT
  MQTT (Message Queuing Telemetry Transport) is a messaging protocol which works on top of the TCP/IP protocol and is meant for communication in networks with limited bandwidth.
  - Requirements and installation
  - MQTT Configuration
  - Defining the peripheral address
  - Redundancy
  - [mqtt]
    Settings for the MQTT driver.
  - Internal data points of the MQTT driver
  - Details on the MQTT driver
  - AWS MQTT Cloud Connectivity
  - MQTT Driver - How-Tos
    - Setup a Certificate Chain between WinCC OA and Mosquito Broker
      These instructions will guide you through the required steps of setting up a certificate chain for the MQTT driver. In this example WinCC OA and the Mosquitto are used.
- PROFIsafe Driver
  As an application profile of PROFINET, PROFIsafe is responsible for the communication between safety devices (F-Device) and safety controllers (F-Host).
- S-Bus Driver
  The WinCC OA S-Bus driver is used for the connection from SAIA PCD control devices to WinCC OA projects.
- SSI Driver
  The WinCC OA SSI driver is used for interfacing SAT remote systems.
- SINAUT Driver
  SINAUT (SIemens Network AUTomation) is a communication protocol for automatic monitoring and controlling of remote process stations on basis of SIMATIC S7 developed by Siemens.
- RK512 Driver
  The WinCC OA driver RK512 is used for interfacing a programmable logic controller using the 3964R/RK512 protocol.
- Simulator Driver
  The WinCC OA simulator assumes the tasks of a driver without being connected to actual peripherals. This means it simulates the periphery and is able to generate values "spontaneously". It does this by passing data to the Event Manager that this manager would receive from system components during normal operation of a system. The control system functions can be tested after configuration.
- NTCIP Gateway
  NTCIP (National Transportation Communications for ITS Protocol) is a family of open standards for the configuration, control and monitoring of traffic control equipment (e.g. traffic lights, dynamic message signs, vehicle counting).
- TLS Gateway
  The WinCC OA TLS gateway (Technical Delivery Terms for Route Stations) is a standard for using and establishing traffic control systems on roads.
Northbound Interfaces
Your portal to the cloud or supervising systems.
Web Connectivity / Network Interfaces
Data exchange, APIs and web technologies
User Management
All about authorization, authentication and login-customization.
Availability
How to get your system uptime to the maximum.
Reporting
Create state of the art project reports without limits.
Addons
Useful tools and enhancements for special demands.
Reference Tables
Detailed and extensive content for special project adaptation.
Videos & Tutorials
Explore the capabilities of WinCC OA with our carefully selected collection of video tutorials and guides.
WinCC OA Documentation
Basic information about terms and functions within the documentation.
Disclaimer
A brief clarification of liability exclusions or legal notices.

Setup a Certificate Chain between WinCC OA and Mosquito Broker

These instructions will guide you through the required steps of setting up a certificate chain for the MQTT driver. In this example WinCC OA and the Mosquitto are used.

Create a Root CA, see Create the root pair (OpenSSL CA).
Create an intermediate CA, see Create the intermediate pair (OpenSSL CA).
The intermediate CA is required to create the server and client certificates.
Create server and client certificates, see Sign server and client certificates (OpenSSL CA).
Setup your Mosquitto configuration.
To configure Mosquitto the .conf file must be adapted and the certificates must be supplied.
1. Update the .config file:
```
listener 8883
protocol mqtt
certfile <path-to-server-public-key>
keyfile <path-to-server-private-key>
require_certificate true
cafile <path-to-ca-public-key>
allow_anonymous true
                        
```
2. Start Mosquitto.
  Run following command to start the Mosquitto broker:
```
mosquitto.exe -c <myConf>.conf [-v]
```
  - -c - indicates the configuration files which shall be used
  - -v - log level verbose (optional)
Configure the WinCC OA MQTT driver.
1. Note: The certificates in mqtt/cert/certs must be named alphabetically ascending, so that the leave-certificate is the very first one.
  Create the certificate structure within your project.
```
mqtt
└─cert
  │  ca.crt
  ├─certs
  │  client.crt
  │  intermediate.crt
  └─private
     client.key
```
  Figure 1. Project Certificate Folder - mqtt/cert/
  
  Figure 2. Project Certificate Folder - mqtt/cert/certs/
  
  Figure 3. Project Certificate Folder - mqtt/cert/private/
2. Configure the MQTT driver within the configuration panel.
  
  Figure 4. MQTT driver - Connection Settings
  
  Figure 5. MQTT driver - Certificate Settings