Automated creation via a command line tool

OEM certificates should only be used in a secure environment Since generating an OEM application license requires handling of the OEM certificate and its password, the process should only be carried out in an environment that is protected against malicious software (protected PC), in order to prevent the password for the OEM private key being accessed by malicious software.

TwinCAT root directory <TwinCAT_ROOT> Up to and including TwinCAT 3.1.4024: C:\TwinCAT From TwinCAT 3.1.4026: C:\ProgramData\Beckhoff\TwinCAT

The TwinCAT 3 Engineering uses a command line tool (TcSignTool.exe) to issue (sign) OEM licenses. This tool can also be called from a user program for the automated issuing of OEM licenses.

TcSignTool.exe is located in a TwinCAT 3 installation in the path <TwinCAT_ROOT>\3.1\sdk\Bin.

Call parameters

tcsigntool licsign /f certificatefile [/p password] [/i issueTime] [/d validDays] [/q] licfile1 [licfile2]

• certificatefile: OEM certificate file
• password: password for the OEM certificate
• issueTime: Format yyyy-mm-ddThh:mm:ss (default value = current time)
• validDays: Default value = Unlimited
• licfile<n>: License Request or Response file with extension '.tclrq' or '.tclrs'.
  License Request files with the extension '.tclrq' will be renamed '.tclrs'.
• /q Quiet Mode
• Return values: 0 = Succeeded, 1 = Failed