We have received a lot of questions from our TAP customers and beta users regarding how and where to configure certificates for encryption and signing of AS/2 messages and MDNs in BizTalk Server 2006 R2. To that end, our resident expert Yury Bogucharov posted some help on the MSDN forum (http://forums.microsoft.com/MSDN/ShowPost.aspx?PostID=1633486&SiteID=1) for R2 EDI. I thought that it would also make a good blog post so I reformatted Yury’s message into table format and am posting it here for the benefit of all. Thanks Yury!
Message or MDN | Direction | Certificate Type | Certificate Owner | Public or Private | Certificate Location | Where to configure |
Message | Outbound | Signing | Home Org | Private | Personal certificate store of in-proc host user | BizTalk Group / Properties / Certificate |
Message | Outbound | Encryption | Partner | Public | Other People certificate store of local computer | Send port / Certificate |
Message | Inbound | Signing | Partner | Public | Other People certificate store of local computer | Party / Certificate |
Message | Inbound | Encryption | Home Org | Private | Personal certificate store of in-proc host user | Isolated Host / Certificates |
MDN | Outbound | Signing | Home Org | Private | Synch MDN: Personal certificate store of isolated host user Asynch MDN: Personal certificate store of in-proc host user | BizTalk Group / Properties / Certificate |
MDN | Inbound | Signing | Partner | Public | Other People certificate store of local computer | Party / Certificate |
Cheers,
Tony