Basic Communication Procedures
Nur für den internen Gebrauch
A31003-S2000-R102-16-7620 02/2016
64
Provisioning Service, Developer’s Guide
c03.fm
Provisioning Service Driven Interaction
3.6.10.2
XML Data Exchange: Secure Mode, No PIN
1. As step 1 start-up is described already in Section 3.5.1.2, "XML Data Exchange", only the
subsequent steps are demonstrated here.
2. As the device is configured to Secure Mode without PIN, the provisioning service sends a
request to switch to Secure Mode (bootstrapping) including certificates and secure-port
number.
<DLSMessage xsi:schemaLocation="http://www.siemens.com/DLS"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns="http://www.siemens.com/DLS">
<Message nonce="58D4EE11C844865CAF0E9AA11ED2856F">
<Action>WriteItems</Action>
<ItemList>
<Item name="goto-secure-mode">nopin</Item>
<Item name="dls-client-certificate">.....</Item>
<Item name="dls-server-ca" index="0">-----BEGIN
CERTIFICATE-----.....</Item>
<Item name="dls-server-ca" index="1"</Item>
<Item name="dls-secure-port">18444</Item>
</ItemList>
</Message>
</DLSMessage>
3. Device responses to default provisioning server port and confirms that the action has been
accepted.
<WorkpointMessage xsi:schemaLocation="http://www.siemens.com/DLS"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns="http://www.siemens.com/DLS">
<Message fragment="final" maxItems="-1"
nonce="58D4EE11C844865CAF0E9AA11ED2856F">
<ReasonForContact status="accepted" action="WriteItems">
reply-to
</ReasonForContact>
<ItemList/>
</Message>
</WorkpointMessage>
4. The provisioning service sends a CleanUp message.
5. Device sends start-up request to secure port (18444) of provisioning service using the cli-
ent certificate received with bootstrapping message (2).
6. The provisioning service verifies the client certificate and proceeds with standard message
flow, here responds with action
ReadAllItems
.