Outbound AS2 component
The Outbound AS2 component provides a secure endpoint for sending AS2 messages. AS2 (Applicability Statement 2) is a protocol used to securely exchange business messages (like invoices, orders, or reports) over the internet.
Configuration
The Outbound AS2 component has the following configuration options:
Host
Hostname of the AS2 server.
Port
Port of the AS2 server.
Uri
The Request URI (or path) for the AS2 message. This is the path on the recipient's server that comes after the host and port. For example: /path/of/uri.
From
AS2 name of the sender. This sets the value of the AS2From header of the AS2 message.
To
AS2 name of the recipient. This sets the value of the AS2To header of the AS2 message.
Subject
Message subject. This sets the value of the Subject header of the AS2 message.
Message content type
The content type of the AS2 message. The following options are available:
application/edifact(default)application/edi-x12application/edi-consentapplication/xml
The default is application/edifact which is mostly used.
Message structure
The security and compression operations applied to the outgoing AS2 message. You must select one of the following operations:
SIGNEDENCRYPTEDSIGNED_ENCRYPTEDCOMPRESSED_SIGNEDSIGNED_COMPRESSEDENCRYPTED_COMPRESSEDENCRYPTED_COMPRESSED_SIGNED(default)ENCRYPTED_SIGNED_COMPRESSED
Recommended is to use at least SIGNED_ENCRYPTED. Note that in the case of COMPRESSED_SIGNED, the message is first compressed and then signed. And for SIGNED_COMPRESSED the message is first signed and then compressed.
Signing Algorithm
The signing algorithm in AS2 is a way to ensure the authenticity and integrity of the message sender and the data being transmitted. The default algorithm is SHA256WITHRSA.
The following algorithms are supported:
SHA3_224WITHRSASHA3_256WITHRSASHA3_384withRSASHA3_512WITHRSAMD5WITHRSASHA1WITHRSAMD2WITHRSASHA224WITHRSASHA256WITHRSA(default)SHA384WITHRSASHA512WITHRSARIPEMD128WITHRSARIPEMD160WITHRSARIPEMD256WITHRSASHA224WITHDSASHA256WITHDSASHA384WITHDSASHA512WITHDSASHA3_224WITHDSASHA3_256WITHDSASHA3_384WITHDSASHA3_512WITHDSASHA1WITHDSASHA3_224WITHECDSASHA3_256WITHECDSASHA3_384WITHECDSASHA3_512WITHECDSASHA1WITHECDSASHA224WITHECDSASHA256WITHECDSASHA384WITHECDSASHA512WITHECDSASHA1WITHPLAIN_ECDSASHA224WITHPLAIN_ECDSASHA256WITHPLAIN_ECDSASHA384WITHPLAIN_ECDSASHA512WITHPLAIN_ECDSARIPEMD160WITHPLAIN_ECDSASHA1WITHRSAANDMGF1SHA224WITHRSAANDMGF1SHA256WITHRSAANDMGF1SHA384WITHRSAANDMGF1SHA512WITHRSAANDMGF1SHA3_224WITHRSAANDMGF1SHA3_256WITHRSAANDMGF1SHA3_384WITHRSAANDMGF1SHA3_512WITHRSAANDMGF1
The first part of the algorithm name refers to the hash function used to create a message digest (MIC), which is then signed. SHA-256 and SHA-512 are part of the Secure Hash Algorithm 2 (SHA-2) family, which is the current industry standard.
The second part of the algorithm name refers to the public-key cryptosystem used for the actual signature. RSA is the traditional and most widely compatible choice.
P12 File
The file containing your organization's private key and public certificate required to sign the outgoing AS2 message.
The P12 format is formally defined by the PKCS #12 (Public-Key Cryptography Standards #12) specification. It is also often referred to by the file extension .pfx (Personal Information Exchange).
Alias
The certificate alias (or friendly name) associated with your private key within the P12 file.
Password
The password used to unlock and access the private key within the P12 file.
Encrypting Algorithm
The algorithm used to encrypt the message using the recipient's public certificate.
Public certificate file
Encrypt the message with a public certificate file provided by the receiver.
Insecure transport
Enable to use plain HTTP (not encrypted). Insecure transport should be only used for testing.