Configuring Shared Secret Validation

Ariba Supplier OnRamp 7.1 | webMethods Ariba Supplier OnRamp Documentation | webMethods Ariba Supplier OnRamp Installation and User’s Documentation | Using Transaction Authentication | Configuring Shared Secret Validation

Ariba Supplier OnRamp allows suppliers to specify a shared secret based on the identity and stores the shared secret in the database. For each cXML document, the wm.b2b.cxml:receiveCXML service checks for the authenticity of the document by verifying the shared secret specified in the Sender Credentials of the document. The Test Module of Ariba Supplier OnRamp provides fields where the shared secret can be specified for a specific cXML message to be tested.

You can configure multiple shared secrets based on different identities.

The previously configured shared secret is mapped to the Shared Secret for the DEFAULT identity.

The Shared Secret that is configured for the DEFAULT identity is applicable to all the identities unless specified explicitly.

The DEFAULT identity cannot be removed.

To configure shared secret validation

1. Start Integration Server Administrator.

2. In the Ariba OnRamp menu, select cXML.

3. In the cXML Message Fields page, perform the following:

Select the DEFAULT identity and update the following fields:

Fields	Description
Identity *	String. The field is non-editable. Value is DEFAULT.
Description	String. The field is non-editable. Describes whether the shared secret for the DEFAULT identity is configured or not. Possible values are: Default shared secret (Configured). Default shared secret (Not configured).
Shared Secret *	String. Optional. Shared secret to validate the identities not listed in the Supplier Credentials list. If the senders identity is not configured in the Supplier Credentials list, then the senders shared secret is validated with the shared secret configured for the DEFAULT identity. If the senders identity is not configured in the Supplier Credentials list and if the shared secret is not configured for the DEFAULT identity, then the validation process is disabled.

In the Supplier Credentials section, select Add Shared Secret and update the following fields:

Fields	Description
Identity *	String. Required. Name of the Ariba Supplier OnRamp identity.
Description	String. Optional. Description of the Ariba Supplier OnRamp identity.
Shared Secret *	String. Required. Shared secret to validate the identity.

4. Click Add.

In the cXML Message Fields page, the identity is added to the list in the Supplier Credentials section.