Show TOC

Configuring Security in the RNIF 2.0 AdapterLocate this document in the navigation structure

Use

To ensure secure communication with your business partners when using the RNIF 2.0 adapter, you configure security services in the Integration Directory.

Prerequisites

You have made the corresponding security setting in the adapter.

Procedure

  1. Select the Trust Model:
    • Direct

      The partner certificate is validated against the certificate saved in the local AS Java keystore.

    • Hierarchical

      The trustworthiness of the certificate is checked using the issuer certificate (CA certificate).

Define Encryption Settings

  1. Under Level, select the extent to which the message content is to be encrypted:
    • None
    • Payload

      The service content and the optional message attachments are encrypted.

    • Payload Container

      The service header, service content, and the optional message attachments are encrypted.

  2. Select the Algorithm for encryption:
    • RC2-40

      The key length is 40.

      RC2-40 is a weak algorithm. Use one of the alternatives for a more secure encryption.

    • RC2-128

      The key length is 128.

    • 3DES

Current Certificate for Decryption

  1. Select the Keystore View and Keystore Entry.

    The keystore is available in AS Java. Select the entry you created there.

    The Keystore Entry must contain the name of your private key.

Partner Certificate for Encryption

  1. Select the Keystore View and Keystore Entry.

    The keystore must match that of the partner.

  2. If you have selected the hierarchical trust model, select the Keystore View of Certification Authority.

Current Certificate for Signature

  1. The Algorithm is SHA1.
  2. Under Keystore Entry, select the entry that contains your private key.

Partner Certificate for Signature

  1. The specifications depend on the trust model:
    • Direct

      Select the Keystore View and the Keystore Entry.

      The keystore entry of the partner must correspond to the signing certificate name of the partner.

    • Hierarchical
      • Select the Issuer of the signing certificate name of the partner.
      • Select the Subject of the public key.
      • Select the Keystore View of Certification Authoritythat contains the reference to the certificate of the Certification Authority.