Learn how to manage the certificates required for an AS2 Connection.
About Partner and Sponsor Certificates
Vault uses partner and sponsor certificates to securely send (encrypt) and receive (decrypt) messages through an AS2 Connection. This ensures that only the intended recipients (the sponsor and the partner) can read the messages. Once created, a certificate remains valid for a certain period of time, after which it expires and must be replaced with a new certificate, or communications between the partner and sponsor will fail.
Note: Certificate files must be 50KB or less.
You can use Vault to perform the following actions to keep the certificates for an AS2 Connection updated:
- Create a new sponsor certificate for a connection. Alternatively, you can upload a sponsor certificate created by a third party. Once you have created or uploaded a sponsor certificate, you can download the public sponsor certificate and send it to the partner so they can also update their connection.
- Upload a new certificate received from a partner to replace the existing partner certificate for a connection.
Note: After uploading a partner or sponsor certificate for an AS2 Connection, the connection’s AS2 Vault Gateway State moves to the Unregistered state. You must synchronize the connection again so the connection can continue to send and receive messages through the gateway.
Upload a Partner Certificate for an AS2 Connection
To upload a partner certificate for an AS2 Connection:
- Navigate to Admin > Connections > [AS2 Connection].
- From the All Actions menu, select Manage Partner Certificate.
- In the Manage Partner Certificate dialog, select Upload, then select the partner’s public certificate. The following accepted formats are:
- PKCS7 (*.p7b or *.p7c)
- DER (*.cer or *.der)
- PEM (*.cer, *.crt, or *.pem)
Vault checks the expiry date of the certificate. If the certificate is no longer valid, you cannot save the record.
- Select Continue.
- Synchronize the connection
Create a Sponsor Certificate for an AS2 Connection
To create a new sponsor certificate for an AS2 Connection:
- Navigate to Admin > Connections > [AS2 Connection].
- From the All Actions menu, select Manage Sponsor Certificate.
- In the Manage Sponsor Certificate dialog, select Create.
- In the Create a Sponsor Certificate dialog, complete the applicable fields.
- Select Save.
- Synchronize the connection
Result
Vault creates and attaches a new sponsor certificate for the AS2 Connection.
Download the public sponsor certificate to obtain a copy of the sponsor certificate for sending to the partner.
Sponsor Certificate Fields
The following fields may be available:
Field | Description |
---|---|
Sponsor | Enter the details of the sponsor. |
Sponsor Person Email | |
Street Address | |
City | |
State / Province | |
Zip Code / Postal Code | |
Country Code | |
Password |
Enter a password for the certificate. The password must be between 6 and 32 characters. |
Confirm Password | Re-enter the password from the Password field above. |
Expiration Date | Select when the sponsor certificate will expire from your Vault's current date and time. |
Upload the Sponsor Certificate for an AS2 Connection
If you use a third party to supply the sponsor certificates for your connections, follow these steps to upload a sponsor certificate for a connection:
- Navigate to Admin > Connections > [AS2 Connection].
- From the All Actions menu, select Manage Sponsor Certificate.
- In the Manage Sponsor Certificate dialog, select Upload, then select the sponsor’s public certificate. The accepted formats are PKCS12 (*.pfx or *.p12).
Vault checks the expiry date of the certificate. If the certificate is no longer valid, you cannot save the record. - Select Continue.
- Synchronize the connection
Result
Vault uploads and attaches a new sponsor certificate for the AS2 Connection.
Download the public sponsor certificate for sending to the partner.
Download the Public Sponsor Certificate for an AS2 Connection
Follow these steps to download the public sponsor certificate for an AS2 Connection to send to the partner:
- Navigate to Admin > Connections > [AS2 Connection].
- From the All Actions menu, select Manage Sponsor Certificate.
- In the Manage Sponsor Certificate dialog, select Download Public Sponsor Certificate.
Result
Vault downloads the public sponsor certificate to your computer. You can then send this file to the partner to update their corresponding connection.