AS/2 Certificate Management

We have received a lot of questions from our TAP customers and beta users regarding how and where to configure certificates for encryption and signing of AS/2 messages and MDNs in BizTalk Server 2006 R2. To that end, our resident expert Yury Bogucharov posted some help on the MSDN forum (https://forums.microsoft.com/MSDN/ShowPost.aspx?PostID=1633486&SiteID=1) for R2 EDI. I thought that it would also make a good blog post so I reformatted Yury's message into table format and am posting it here for the benefit of all. Thanks Yury!

 

Message or MDN

Direction

Certificate Type

Certificate Owner

Public or Private

Certificate Location

Where to configure

Message

Outbound

Signing

Home Org

Private

Personal certificate store of in-proc host user

BizTalk Group / Properties / Certificate

Message

Outbound

Encryption

Partner

Public

Other People certificate store of local computer

Send port / Certificate

Message

Inbound

Signing

Partner

Public

Other People certificate store of local computer

Party / Certificate

Message

Inbound

Encryption

Home Org

Private

Personal certificate store of in-proc host user

Isolated Host / Certificates

MDN

Outbound

Signing

Home Org

Private

Synch MDN: Personal certificate store of isolated host user

Asynch MDN: Personal certificate store of in-proc host user

BizTalk Group / Properties / Certificate

MDN

Inbound

Signing

Partner

Public

Other People certificate store of local computer

Party / Certificate

Cheers,

Tony