as2 implementation on sterling b2b integrator and best practices · 2020. 10. 19. · sterling b2b...
TRANSCRIPT
●Text durch Klicken hinzufügen
© 2014 IBM Corporation
AS2 Implementation on Sterling B2B Integrator and Best Practices
Praveen Ummadi – Sterling Technical Support Engineer20 Nov 2014
© 2014 IBM Corporation
Moderator and Presenter
Moderator– Eileem Mejia, IBM Sterling B2B Integrator Support, L2 Support Engineer– [email protected]
Presenter– Praveen Ummadi, IBM Sterling B2B Integrator Support, L2 Support Engineer– [email protected]
© 2014 IBM Corporation
Agenda
Overview of AS2 AS2 Components in SBI Message Disposition Notification Digital Certificates Data Flows Implementation in SBI Best Practices
© 2014 IBM Corporation
Overview of AS2
Specification to transport data. Secure and reliable transfer. EDIINT Secure/Multipurpose Internet Mail Extensions Encryption for the actual payloads exchanged. Ability to receive a signed receipt. Prevention of impersonation. Internet and Firewall friendly. Any type of file.
© 2014 IBM Corporation
Terms used
Receipt Signed Receipt Synchronous Receipt Asynchronous Receipt Message Disposition Notification MIME S/MIME Cryptographic Message Syntax SHA-1 MD5 MIC User Agent
© 2014 IBM Corporation
MDN
Status information Signed Unsigned Synchronous MDN Asynchronous MDN
© 2014 IBM Corporation
MDN
Synchronous MDN
© 2014 IBM Corporation
MDN
Asynchronous MDN
© 2014 IBM Corporation
AS2 Components in SBI
Predefined business processes Services. Browser-based user interface Database table (AS2_TRADEPART_INFO) Default AS2 URL (ApplicationIP_ADDRESS:port/b2bhttp/inbound/as2) Sterling B2B Integrator AS2 Edition
© 2014 IBM Corporation
AS2 Predefined Business Processes
Automatically installed and configured
© 2014 IBM Corporation
AS2 Services and Adapters
HTTP Server adapter HTTP Client adapter HTTP Client Begin Session service HTTP Client POST service HTTP Client End Session service EDIINT Message service EDIINT Acknowledge Check service EDIINT Pipeline service EDIINT MDN Building service EDIINT Header Scanning service AS2 File System adapter
© 2014 IBM Corporation
Digital Certificates
CA Trusted System
© 2014 IBM Corporation
Data Flows
© 2014 IBM Corporation
How it works
It works in the following way
© 2014 IBM Corporation
Outbound Flow
Outbound Process
Translator
File Directory
AS2 Edition
• Encryption• Digital Signature
“MDN”
© 2014 IBM Corporation
Inbound Flow
Inbound Process
Translator
File Directory
AS2 Edition
• De-encryption.• De-signatures.
“MDN”
© 2014 IBM Corporation
Implementation in SBI
© 2014 IBM Corporation
Check List
Certificates. Name and address information AS2 identifiers. Server names or IP addresses. Server ports Server URLs (URI). Agreed on algorithms for signing and encryption Passwords MDN Options
© 2014 IBM Corporation
Managing Digital Certificates
Self-signed certificates
© 2014 IBM Corporation
Managing Digital Certificates
Trusted certificates
© 2014 IBM Corporation
Create an AS2 Organisation
New AS2 organization
© 2014 IBM Corporation
Create an AS2 Trading Partner
New AS2 Trading Partner
© 2014 IBM Corporation
Create an AS2 Trading Partner
Next Page AS2 Configuration Type: Messages
© 2014 IBM Corporation
Create an AS2 Trading Partner
Next Page AS2 Configuration Type: Messages: Receipt
© 2014 IBM Corporation
Create an AS2 Trading Partner
Another Trading Partner with SSL Must
© 2014 IBM Corporation
Create an AS2 Relationship
Retry Interval Max Retries
© 2014 IBM Corporation
Create an AS2 Relationship
Store AS2 Messages in File System
© 2014 IBM Corporation
Create an AS2 Relationship
Store AS2 Messages in Mailbox
© 2014 IBM Corporation
AS2 Multiple Organizations
Create multiple organizations Multi-Org license No restriction on the number of Trading Partners Using an Existing Identity
© 2014 IBM Corporation
Testing the AS2 Profile
One can test the AS2 Profile
© 2014 IBM Corporation
Tracking
Business Processes > Advanced Search > EDIINT
© 2014 IBM Corporation
Few points to be noted and best practices.
The Sterling B2B Integrator AS2 Edition functionality does not support mailboxes. EDIINT MDN Building service for MDN's for deferred extraction. EDIINTParse uses the EDIINT Pipeline service. The Sterling B2B Integrator AS2 Edition includes a configured URL that runs the
EDIINTParse business process on both the base port and the base port + 33. Mailbox and file systems behave differently when a message is in error. By default, Sterling B2B Integrator uses AS2 version 1.1 in the MDN. AS2VersionForMDN property in customer_overrides.properties file The Java servlet provides the HTTP listener service for receiving AS2 messages from
trading partners.
© 2014 IBM Corporation
Few points to be noted and best practices.
You can view the files in the inbound and outbound folders in the File Tracking page. AS2 wizard now have an automated list to make navigation easier. Deferred extraction must not be enabled if duplicate suppression is enabled. The identity name and AS2 identifier belong to the selected identity itself. When you Delete, you remove this trading partner from the database. Deleting trading partner will delete all the associated resources and any dependant
relationship(s). This action cannot be undone. You can delete only trading partner information and not organization information. An additional profile is required to send asynchronous MDNs to a URL that is different than
the trading partner's main URL.
© 2014 IBM Corporation
Few points to be noted and best practices.
Notification options on trading partner basis. When you click delete, you will be recommended to export and save a copy to offline
storage. Deleting an organization will delete all the associated resources and any dependant
relationship(s). This action cannot be undone. Deleting a relationship does not affect its associated profiles (organization and partner). Deleting a relationship does not delete the filesystem/mailbox directories, or the business
processes configured for direct processing. Sterling B2B Integrator encrypts AS2 documents and sends the encrypted document as
octet-stream(binary).
© 2014 IBM Corporation
Few points to be noted and best practices.
Sterling B2B Integrator AS2 Edition does push (post) only. An AS2 identifier needs to be a unique alphanumeric value for each trading partner. Both Inbound and Outbound AS2 can use a VPN connection. SBI AS2 edition is not packaged with Perimeter server. The AS2 standard is based on RFC 4130. The certificates are based on X.509 which is also
known as RFC 2459. Country codes in certificates are defined for the English language according to ISO 3166-1
and ISO 3166-1-alpha-2. If customer is sending data to a remote partner that has a very busy HTTP server, you
should consider switching to Asynchronous MDN mode For inbound, Asynchronous mode is also a good idea if you are processing a lot of data in
SBI.
© 2014 IBM Corporation
Additional References
Learn about upcoming Support Technical Exchange webcasts, and access previously recorded presentations at:http://ibmurl.hursley.ibm.com/3ND9
IBM Electronic Support Introductionhttp://www.ibm.com/support/electronicsupport/about.html
Sign up to receive weekly technical My Notifications emails: http://www.ibm.com/software/support/einfo.html
developerWorks Forums, Communities and Technical Topics http://www.ibm.com/developerworks/
Quick Reference Guide for Using Service Request Tool http://www.ibm.com/support/docview.wss?uid=swg21207945
IBM Support Assistant http://www.ibm.com/software/support/isa/ Access product show-me demos and tutorials by visiting IBM Education Assistant:
http://www.ibm.com/software/info/education/assistant
© 2014 IBM Corporation
Questions and Answers
This Support Technical Exchange session will be recorded and a replay will be available on IBM.COM sites and possibly social media sites such as YouTube. When speaking, do not state any confidential information, your name, company name or any information you do not want shared publicly in the replay. By speaking in during this presentation, you assume liability for your comments.
© 2014 IBM Corporation
THE INFORMATION CONTAINED IN THIS PRESENTATION IS PROVIDED FOR INFORMATIONAL PURPOSES ONLY. WHILE EFFORTS WERE MADE TO VERIFY THE COMPLETENESS AND ACCURACY OF THE INFORMATION CONTAINED IN THIS PRESENTATION, IT IS PROVIDED “AS IS” WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. IN ADDITION, THIS INFORMATION IS BASED ON IBM’S CURRENT PLANS AND STRATEGY, WHICH ARE SUBJECT TO CHANGE BY IBM WITHOUT NOTICE. IBM SHALL NOT BE RESPONSIBLE FOR ANY DAMAGES ARISING OUT OF THE USE OF, OR OTHERWISE RELATED TO, THIS PRESENTATION OR ANY OTHER DOCUMENTATION, NOTHING CONTAINED IN THIS PRESENTATION IS INTENDED TO NOR SHALL HAVE THE EFFECT OF CREATING ANY WARRANTIES OR REPRESENTATIONS FROM IBM (OR ITS SUPPLIERS OR LICENSORS), OR ALTERING THE TERMS AND CONDITIONS OF ANY AGREEMENT OR LICENSE GOVERNING THE USE OF IBM PRODUCT OR SOFTWARE.
Copyright and Trademark Information
IBM, The IBM Logo and IBM.COM are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks and others are available on the web under “Copyright and Trademark Information” located at www.ibm.com/legal/copytrade.shtml.