Export (0) Print
Expand All

Configuring Signing, Compression, and Encryption in AS2 Transport

You can configure digital signatures, signature verification, encryption, and decryption from within the BizTalk Server Administration Console. This configuration requires that you set the appropriate properties for the AS2 pipelines and BizTalk parties.

Using AS2 Pipelines

To help secure an inbound AS2 message, use an AS2 receive pipeline (AS2EdiReceive or AS2Receive) in your receive location. The AS2 Decoder decrypts, decompresses, and/or performs signature verification on AS2 messages. For more information on how it does so, see the "AS2 Decoder" section of AS2 Receive Components.

To help secure an outbound AS2 message, use an AS2 send pipeline (AS2EdiSend or AS2Send) in your send port. The AS2 Encoder signs, compresses, and encrypts outbound AS2 messages. For more information on how it does so, see the "AS2 Encoder" section of AS2 Send Components.

ImportantImportant
Once a message has been signed, the signature blob must not be changed. If changed, the signature would be corrupted. The boundary header, or anything outside the boundary headers, can be changed, but anything within the boundary headers must not be changed.

Setting AS2 Party Properties

You configure signature and encryption processing by setting AS2 party properties as follows:

  • To sign, compress, and/or encrypt an outbound message, check the "Sign Message", "Compress Message", and "Encrypt Message" properties on the Party as AS2 Message Receiver page of the AS2 Properties dialog box.

  • To request a signed MDN in response to an outbound message, check the "Request MDN" and "Request signed MDN" properties on the Party as AS2 Message Receiver page of the AS2 Properties dialog box.

  • To specify that an inbound message is signed, compressed, and/or encrypted, check "the Override inbound message properties", "Message should be signed", "Message should be compressed", and "Message should be encrypted" properties on the Party as AS2 Message Sender page of the AS2 Properties dialog box.

  • To specify a signed MDN in response to an inbound message, when the inbound message properties are overridden, check the "Sign MDN" property on the Party as AS2 Message Sender page of the AS2 Properties dialog box.

  • To specify a signed MDN in response to an inbound message, when the inbound message properties are not overridden, but the message headers do not specify signing, check the "Sign requested MDN if Disposition-Notification-Option header is not present or if Signed-Receipt-Protocol header is set to optional" property on the Party as AS2 Message Sender page of the AS2 Properties dialog box.

For more information about setting up party properties, see Configuring AS2 Party Properties.

See Also

  © 2009 Microsoft Corporation. All rights reserved.
Show:
© 2014 Microsoft