AS/2 Certificate Management

We have received a lot of questions from our TAP customers and beta users regarding how and where to configure certificates for encryption and signing of AS/2 messages and MDNs in BizTalk Server 2006 R2. To that end, our resident expert Yury Bogucharov posted some help on the MSDN forum (https://forums.microsoft.com/MSDN/ShowPost.aspx?PostID=1633486&SiteID=1) for R2 EDI. I thought that it would also make a good blog post so I reformatted Yury's message into table format and am posting it here for the benefit of all. Thanks Yury!

 

Message or MDN

Direction

Certificate Type

Certificate Owner

Public or Private

Certificate Location

Where to configure

Message

Outbound

Signing

Home Org

Private

Personal certificate store of in-proc host user

BizTalk Group / Properties / Certificate

Message

Outbound

Encryption

Partner

Public

Other People certificate store of local computer

Send port / Certificate

Message

Inbound

Signing

Partner

Public

Other People certificate store of local computer

Party / Certificate

Message

Inbound

Encryption

Home Org

Private

Personal certificate store of in-proc host user

Isolated Host / Certificates

MDN

Outbound

Signing

Home Org

Private

Synch MDN: Personal certificate store of isolated host user

Asynch MDN: Personal certificate store of in-proc host user

BizTalk Group / Properties / Certificate

MDN

Inbound

Signing

Partner

Public

Other People certificate store of local computer

Party / Certificate

Cheers,

Tony

Comments

  • Anonymous
    September 13, 2007
    Row 4 does not seem to be right -- where it says Message Inbound Encryption Home Org Private Personal certificate store of in-proc host user Isolated Host / Certificates should not it be Message Inbound DEcryption Home Org Private Personal certificate store of OUT-proc host user Isolated Host / Certificates

  • Anonymous
    January 04, 2008
    Nothing new to blog about concerning BizTalk and AS2 since May 2007 ??