Configuring Certificates for Secure Messaging

Certificate management in webMethods Trading Networks is designed for the "Hub-Spoke" model. That is, you typically have only one host (hub) speaking to several trading partners (spokes). Additionally, some of the samples in the WmebXMLSample package use the multiple hosts model. You need to specify which model to use for certificate management.

2. Set up the certificates in your profile and in your partner's profile following the instructions in the webMethods Trading Networks Administrator’s Guide appropriate for your release in the “Document Titles” section under About this Guide.

Add this type of certificate set...	To…
Decrypt/Encrypt	Decrypt documents that your Enterprise receives from partners and encrypt documents that Enterprise sends to partners. On the receiver's end, when primary encrypt/decrypt certificate fails to decrypt the inbound payload, the secondary encrypt/decrypt certificate is used if there is one defined in the receiver's profile. The receiver's profile must be active. In such a case, the encrypt/decrypt certificate is used for decryption.
Sign/Verify	Digitally sign documents that your Enterprise sends to partners and verify documents that your Enterprise receives from partners. On the receiver's end, when primary sign/verify certificate fails to verify the inbound payload, the secondary sign/verify certificate is used if there is one defined in the receiver's profile. The receiver's profile must be active. In such a case, the sign/verify certificate is used for verification.