Manage AS2 Connection Certificates

Learn how to manage the certificates required for an AS2 Connection.

About Partner and Sponsor Certificates

Vault uses partner and sponsor certificates to securely send (encrypt) and receive (decrypt) messages through an AS2 Connection. This ensures that only the intended recipients (the sponsor and the partner) can read the messages. Once created, a certificate remains valid for a certain period of time, after which it expires and must be replaced with a new certificate, or communications between the partner and sponsor will fail.

You can use Vault to perform the following actions to keep the certificates for an AS2 Connection updated:

Upload a Partner Certificate for an AS2 Connection

To upload a partner certificate for an AS2 Connection:

  1. Navigate to Admin > Connections > [AS2 Connection].
  2. From the All Actions menu, select Manage Partner Certificate.
  3. In the Manage Partner Certificate dialog, select Upload, then select the partner’s public certificate. The following accepted formats are:
    • PKCS7 (*.p7b or *.p7c)
    • DER (*.cer or *.der)
    • PEM (*.cer, *.crt, or *.pem)
      Vault checks the expiry date of the certificate. If the certificate is no longer valid, you cannot save the record.
  4. Select Continue.
  5. Synchronize the connection

Create a Sponsor Certificate for an AS2 Connection

To create a new sponsor certificate for an AS2 Connection:

  1. Navigate to Admin > Connections > [AS2 Connection].
  2. From the All Actions menu, select Manage Sponsor Certificate.
  3. In the Manage Sponsor Certificate dialog, select Create.
  4. In the Create a Sponsor Certificate dialog, complete the applicable fields.
  5. Select Save.
  6. Synchronize the connection

Result

Vault creates and attaches a new sponsor certificate for the AS2 Connection.

Download the public sponsor certificate to obtain a copy of the sponsor certificate for sending to the partner.

The following fields may be available:

Field Description
Sponsor Enter the details of the sponsor.
Sponsor Person Email
Street Address
City
State / Province
Zip Code / Postal Code
Country Code
Password

Enter a password for the certificate.

The password must be between 6 and 32 characters.
Confirm Password Re-enter the password from the Password field above.
Expiration Date Select when the sponsor certificate will expire from your Vault's current date and time.

Upload the Sponsor Certificate for an AS2 Connection

If you use a third party to supply the sponsor certificates for your connections, follow these steps to upload a sponsor certificate for a connection:

  1. Navigate to Admin > Connections > [AS2 Connection].
  2. From the All Actions menu, select Manage Sponsor Certificate.
  3. In the Manage Sponsor Certificate dialog, select Upload, then select the sponsor’s public certificate. The accepted formats are PKCS12 (*.pfx or *.p12).
    Vault checks the expiry date of the certificate. If the certificate is no longer valid, you cannot save the record.
  4. Select Continue.
  5. Synchronize the connection

Result

Vault uploads and attaches a new sponsor certificate for the AS2 Connection.

Download the public sponsor certificate for sending to the partner.

Download the Public Sponsor Certificate for an AS2 Connection

Follow these steps to download the public sponsor certificate for an AS2 Connection to send to the partner:

  1. Navigate to Admin > Connections > [AS2 Connection].
  2. From the All Actions menu, select Manage Sponsor Certificate.
  3. In the Manage Sponsor Certificate dialog, select Download Public Sponsor Certificate.

Result

Vault downloads the public sponsor certificate to your computer. You can then send this file to the partner to update their corresponding connection.