Show TOC

Function documentationSecurity Settings for Sender XI Adapter Locate this document in the navigation structure

 

If you have assigned the sender agreement a communication channel with Adapter Type XI on the Integration Server or the PCK, you can specify settings for message security.

The security settings have the following effect on inbound message processing: If the Message Security checkbox is select in the assigned communication channel, then a signed message is expected (signed address and business data). The signature of the sender is checked by using the values entered in the Keystore, Issuer, and Owner fields. This enables the sender to be authorized and the data integrity to be guaranteed (content of the message was not modified during processing).

Caution Caution

Note that the message protocol XI 3.0 must be selected in the assigned communication channel.

End of the caution.

Note Note

You can use the security settings for communication between two Integration Servers and for communication between an Integration Server and Partner Connectivity Kit.

End of the note.

Prerequisites

The Message Security checkbox is selected in the corresponding communication channel.

Features

In the Security Settings frame, you specify the following information:

Security Settings for Sender XI Adapter

Field

Meaning

Security Procedure

Specify the security procedure you want to use. You have the following options:

  • Decrypt

    A digital envelope is “opened” and the information protected by the digital envelope is decrypted.

  • Validate

  • Decrypt and Validate

    Note that the security procedure must be applied to the message in the following sequence:

    1. Decrypt

    2. Validate

Issuer

Enter the issuer of the public key.

The issuer is an attribute of the digital certificate, in which the Distinguished Name of the Certification Authority (CA) that issued the digital certificate is specified.

Holder

Specify the subject of the public key.

The subject is an attribute of the X.509 certificate that the certificate owner specifies.

Keystore

Enter the name of the local keystore of the root certificate.

The keystore is a file containing security information such as public and private keys, as well as trusted Certification Authorities.

The root certificate is a certificate of a Certification Authority (CA). If you want to specify that you trust a particular CA, the root certificate of the CA must be in your relevant certificate list.

Caution Caution

Note that certificate chains are limited to a maximum of two-tiers.

End of the caution.

Note Note

Use the input help to define the various security settings. Note that Issuer and Subject are each defined using the keystore entry. Note that Issuer and Subject are each defined using the keystore entry. Note that entries are case-sensitive.

End of the note.