# UA TCP Endpoint This section describes the settings associated with the connection point (endpoint). Endpoint determines the connection address and the required security modes that OPC UA clients must use. {% hint style="info" %} Monokot OPC Server provides communication for OPC UA clients only using the UA TCP protocol (binary data transfer protocol). Default UA TCP endpoint is opc.tcp\://localhost:43043/MonokotOPC or opc.tcp\://localhost:43043 {% endhint %} * Port – specifies the port to connect to the UA TCP endpoint (by default 43043) * Channel Lifetime – specifies the number of milliseconds, after which the server frees up resources for the channel {% hint style="info" %} If you use firewall you must add the incoming connections rule for OPC UA clients {% endhint %} The TCP UA endpoint allows you to encrypt and verify authenticity of transmitted data and provides the following security policies: * None – allows for transfer of data without encryption * Basic128Rsa15, Basic256, Basic256Sha256 – allows you to transfer encrypted data in different modes After changing and synchronizing the settings described above the OPC UA server will be automatically restarted. A custom security certificate can be specified for UA TCP Endpoint. To do this, you need to import the certificate from a PFX file. To import a custom security certificate, open the *OPC UA* manager in Monokot Server Administrator and switch to the *UA TCP Endpoint* tab. ![](/files/9pYYDkgm3TofEsfZmMj1) Click the *Import* button and choose the PFX file. Enter password for the certificate (if no password is used, leave the field empty) and click *OK*. For the changes to take effect on the server, click *Sync* or press the F5 key. The UA TCP Endpoint tab also offers the following possibilities: * To reissue the security certificate * To reset the custom security certificate to the server’s default certificate * To export the certificate (public key) to a CRT file --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.monokot.io/basics/opc-ua/ua-tcp-endpoint.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.