as2 implementation on sterling b2b integrator and best practices · 2020. 10. 19. · sterling b2b...

●Text durch Klicken hinzufügen

© 2014 IBM Corporation

AS2 Implementation on Sterling B2B Integrator and Best Practices

Praveen Ummadi – Sterling Technical Support Engineer20 Nov 2014

© 2014 IBM Corporation

Moderator and Presenter

Moderator– Eileem Mejia, IBM Sterling B2B Integrator Support, L2 Support Engineer– eileem.mejia@de.ibm.com

Presenter– Praveen Ummadi, IBM Sterling B2B Integrator Support, L2 Support Engineer– praveen.ummadi@de.ibm.com

© 2014 IBM Corporation

Agenda

Overview of AS2 AS2 Components in SBI Message Disposition Notification Digital Certificates Data Flows Implementation in SBI Best Practices

© 2014 IBM Corporation

Overview of AS2

Specification to transport data. Secure and reliable transfer. EDIINT Secure/Multipurpose Internet Mail Extensions Encryption for the actual payloads exchanged. Ability to receive a signed receipt. Prevention of impersonation. Internet and Firewall friendly. Any type of file.

© 2014 IBM Corporation

Terms used

Receipt Signed Receipt Synchronous Receipt Asynchronous Receipt Message Disposition Notification MIME S/MIME Cryptographic Message Syntax SHA-1 MD5 MIC User Agent

© 2014 IBM Corporation

MDN

Status information Signed Unsigned Synchronous MDN Asynchronous MDN

© 2014 IBM Corporation

MDN

Synchronous MDN

© 2014 IBM Corporation

MDN

Asynchronous MDN

© 2014 IBM Corporation

AS2 Components in SBI

Predefined business processes Services. Browser-based user interface Database table (AS2_TRADEPART_INFO) Default AS2 URL (ApplicationIP_ADDRESS:port/b2bhttp/inbound/as2) Sterling B2B Integrator AS2 Edition

© 2014 IBM Corporation

AS2 Predefined Business Processes

Automatically installed and configured

© 2014 IBM Corporation

AS2 Services and Adapters

HTTP Server adapter HTTP Client adapter HTTP Client Begin Session service HTTP Client POST service HTTP Client End Session service EDIINT Message service EDIINT Acknowledge Check service EDIINT Pipeline service EDIINT MDN Building service EDIINT Header Scanning service AS2 File System adapter

© 2014 IBM Corporation

Digital Certificates

CA Trusted System

© 2014 IBM Corporation

Data Flows

© 2014 IBM Corporation

How it works

It works in the following way

© 2014 IBM Corporation

Outbound Flow

Outbound Process

Translator

File Directory

AS2 Edition

• Encryption• Digital Signature

“MDN”

© 2014 IBM Corporation

Inbound Flow

Inbound Process

Translator

File Directory

AS2 Edition

• De-encryption.• De-signatures.

“MDN”

© 2014 IBM Corporation

Implementation in SBI

© 2014 IBM Corporation

Check List

Certificates. Name and address information AS2 identifiers. Server names or IP addresses. Server ports Server URLs (URI). Agreed on algorithms for signing and encryption Passwords MDN Options

© 2014 IBM Corporation

Managing Digital Certificates

Self-signed certificates

© 2014 IBM Corporation

Managing Digital Certificates

Trusted certificates

© 2014 IBM Corporation

Create an AS2 Organisation

New AS2 organization

© 2014 IBM Corporation

Create an AS2 Trading Partner

New AS2 Trading Partner

© 2014 IBM Corporation

Create an AS2 Trading Partner

Next Page AS2 Configuration Type: Messages

© 2014 IBM Corporation

Create an AS2 Trading Partner

Next Page AS2 Configuration Type: Messages: Receipt

© 2014 IBM Corporation

Create an AS2 Trading Partner

Another Trading Partner with SSL Must

© 2014 IBM Corporation

Create an AS2 Relationship

Retry Interval Max Retries

© 2014 IBM Corporation

Create an AS2 Relationship

Store AS2 Messages in File System

© 2014 IBM Corporation

Create an AS2 Relationship

Store AS2 Messages in Mailbox

© 2014 IBM Corporation

AS2 Multiple Organizations

Create multiple organizations Multi-Org license No restriction on the number of Trading Partners Using an Existing Identity

© 2014 IBM Corporation

Testing the AS2 Profile

One can test the AS2 Profile

© 2014 IBM Corporation

Tracking

Business Processes > Advanced Search > EDIINT

© 2014 IBM Corporation

Few points to be noted and best practices.

The Sterling B2B Integrator AS2 Edition functionality does not support mailboxes. EDIINT MDN Building service for MDN's for deferred extraction. EDIINTParse uses the EDIINT Pipeline service. The Sterling B2B Integrator AS2 Edition includes a configured URL that runs the

EDIINTParse business process on both the base port and the base port + 33. Mailbox and file systems behave differently when a message is in error. By default, Sterling B2B Integrator uses AS2 version 1.1 in the MDN. AS2VersionForMDN property in customer_overrides.properties file The Java servlet provides the HTTP listener service for receiving AS2 messages from

trading partners.

© 2014 IBM Corporation

Few points to be noted and best practices.

You can view the files in the inbound and outbound folders in the File Tracking page. AS2 wizard now have an automated list to make navigation easier. Deferred extraction must not be enabled if duplicate suppression is enabled. The identity name and AS2 identifier belong to the selected identity itself. When you Delete, you remove this trading partner from the database. Deleting trading partner will delete all the associated resources and any dependant

relationship(s). This action cannot be undone. You can delete only trading partner information and not organization information. An additional profile is required to send asynchronous MDNs to a URL that is different than

the trading partner's main URL.

© 2014 IBM Corporation

Few points to be noted and best practices.

Notification options on trading partner basis. When you click delete, you will be recommended to export and save a copy to offline

storage. Deleting an organization will delete all the associated resources and any dependant

relationship(s). This action cannot be undone. Deleting a relationship does not affect its associated profiles (organization and partner). Deleting a relationship does not delete the filesystem/mailbox directories, or the business

processes configured for direct processing. Sterling B2B Integrator encrypts AS2 documents and sends the encrypted document as

octet-stream(binary).

© 2014 IBM Corporation

Few points to be noted and best practices.

Sterling B2B Integrator AS2 Edition does push (post) only. An AS2 identifier needs to be a unique alphanumeric value for each trading partner. Both Inbound and Outbound AS2 can use a VPN connection. SBI AS2 edition is not packaged with Perimeter server. The AS2 standard is based on RFC 4130. The certificates are based on X.509 which is also

known as RFC 2459. Country codes in certificates are defined for the English language according to ISO 3166-1

and ISO 3166-1-alpha-2. If customer is sending data to a remote partner that has a very busy HTTP server, you

should consider switching to Asynchronous MDN mode For inbound, Asynchronous mode is also a good idea if you are processing a lot of data in

SBI.

© 2014 IBM Corporation

Additional References

Learn about upcoming Support Technical Exchange webcasts, and access previously recorded presentations at:http://ibmurl.hursley.ibm.com/3ND9

IBM Electronic Support Introductionhttp://www.ibm.com/support/electronicsupport/about.html

Sign up to receive weekly technical My Notifications emails: http://www.ibm.com/software/support/einfo.html

developerWorks Forums, Communities and Technical Topics http://www.ibm.com/developerworks/

Quick Reference Guide for Using Service Request Tool http://www.ibm.com/support/docview.wss?uid=swg21207945

IBM Support Assistant http://www.ibm.com/software/support/isa/ Access product show-me demos and tutorials by visiting IBM Education Assistant:

http://www.ibm.com/software/info/education/assistant

© 2014 IBM Corporation

Questions and Answers

This Support Technical Exchange session will be recorded and a replay will be available on IBM.COM sites and possibly social media sites such as YouTube. When speaking, do not state any confidential information, your name, company name or any information you do not want shared publicly in the replay. By speaking in during this presentation, you assume liability for your comments.

© 2014 IBM Corporation

THE INFORMATION CONTAINED IN THIS PRESENTATION IS PROVIDED FOR INFORMATIONAL PURPOSES ONLY. WHILE EFFORTS WERE MADE TO VERIFY THE COMPLETENESS AND ACCURACY OF THE INFORMATION CONTAINED IN THIS PRESENTATION, IT IS PROVIDED “AS IS” WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. IN ADDITION, THIS INFORMATION IS BASED ON IBM’S CURRENT PLANS AND STRATEGY, WHICH ARE SUBJECT TO CHANGE BY IBM WITHOUT NOTICE. IBM SHALL NOT BE RESPONSIBLE FOR ANY DAMAGES ARISING OUT OF THE USE OF, OR OTHERWISE RELATED TO, THIS PRESENTATION OR ANY OTHER DOCUMENTATION, NOTHING CONTAINED IN THIS PRESENTATION IS INTENDED TO NOR SHALL HAVE THE EFFECT OF CREATING ANY WARRANTIES OR REPRESENTATIONS FROM IBM (OR ITS SUPPLIERS OR LICENSORS), OR ALTERING THE TERMS AND CONDITIONS OF ANY AGREEMENT OR LICENSE GOVERNING THE USE OF IBM PRODUCT OR SOFTWARE.

Copyright and Trademark Information

IBM, The IBM Logo and IBM.COM are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks and others are available on the web under “Copyright and Trademark Information” located at www.ibm.com/legal/copytrade.shtml.