Trading Networks 10.5 | Administering and Using Trading Networks | Administering Trading Networks | Creating Profiles | Creating a Profile | Adding Security Information
 
Adding Security Information
 
Adding Certificate Sets to a Profile
Updating Certificate Sets
When you add a certificate to a profile, you must also add the CA certificates and private key that are associated with the certificate; all must reside in your file system. Trading Networks can import files that have a .der, .cer, or .p7b extension. If you import a .der file, Trading Networks appends it to the existing certificate chain list. If you import a .cer or .p7b file, Trading Networks appends the certificate chain list with the .cer or .p7b file.
Likewise, if you add a private key, you must also add the certificate and CA certificates that are associated with the private key.
Note:
If you are adding this information to your Enterprise profile, you would specify the private key alias and the keystore alias associated with the certificate.
The following table lists the types of certificate sets you can add to a profile:
Type
Description
Sign/Verify
Certificate information to use to sign a document or verify the digital signature.
In your profile, Trading Networks uses the private key associated with the sending partner to digitally sign documents your corporation sends to partners. Trading Networks digitally signs a document when the wm.tn.doc:sign built-in service is invoked.
In a partner profile, Trading Networks uses the sender’s public key that is associated with this partner to verify the document that was digitally signed by the sender (Verify Digital Signature pre-processing action).
Encrypt/ Decrypt
Certificate information to use to decrypt or encrypt information.
In your profile, Trading Networks uses the private key of the corporation to decrypt documents that partners send. When the corporation receives these documents from partners, the documents are encrypted using the public key of the corporation.
In a partner profile, Trading Networks uses your public key to encrypt information that is being sent to you.
Note: 
*Trading Networks maintains this information for other webMethods products, such as webMethods RosettaNet Module, that take advantage of this feature. You can also add your own functionality that takes advantage of this certificate information. You can obtain the certificate information by using built-in services.
*Trading Networks does not check whether the CA that signed the certificate is included in the list of trusted CAs maintained by Integration Server.
SSL
Certificate that enables Trading Networks to act as an SSL client and connect to a remote secure server.