鼓勵此網誌:0
下列表格摘錄自微軟網站,主要是說明Certificate的存放地點,還有當需要用來做signing與encrypt時,需要在BizTalk的哪個地方做設定,我個人是覺得滿清楚的啦.
http://msdn.microsoft.com/en-us/library/bb728096.aspx
| Certificate Usage | Certificate Type | Pipeline Component | User Context | Certificate Store | Where Defined |
|---|---|---|---|---|---|
Signature (outbound) | Own private key (.pfx) | MIME/SMIME encoder | Account used by the host instance associated with the send handler. | Current User\ | Certificate page of the Group Properties dialog box |
Signature verification (inbound) | Trading partner's public key (.cer) | MIME/SMIME decoder | Account used by the host instance associated with the receive handler. | Local computer\Other People store of each BizTalk server that hosts a MIME/SMIME decoder pipeline as each host instance service account | Certificate page of the Party Properties dialog box Note: The certificate used to verify a signature for a party must be unique from the certificates used to verify signatures for other parties. |
Encryption (outbound) | Trading partner's public key (.cer) | MIME/SMIME encoder | Account used by the host instance associated with the send handler. | Local computer\Other People store of each BizTalk server that hosts a MIME/SMIME encoder pipeline | Certificate page of the Send Port Properties dialog box |
Decryption (inbound) | Own private key (.pfx) | MIME/SMIME decoder | Account used by the host instance associated with the receive handler. | Current User\Personal store of each BizTalk server that hosts a MIME/SMIME decoder pipeline as each host instance service account | The AS2 Decoder will determine the certificate based upon certificate information in the message. For the BizTalk MIME Decoder, the certificate must be in the Certificate page of the host used for receiving the message. This is not necessary for the AS2 Decoder. |
