AS2 setup

I am in process to configure AS2 setup. I did configuration in biztalk and trying to work with vendor to test it. During that all messages getting suspended with following reason.
A BTS MIME error was encountered when attempting to encode a message. Error: The Signing Certificate has not been configured for AS2 party. AS2-From: <ourcompany>AS2-To: <TradingPartner>
Note: I am just testing inbound only, with request-response receive port.
I am not able to understnd what exactly it mean or what I am missing .

I understand your concern that though you're just testing your inbound, why are you getting this error.
The reason is you're using Request-Response port, I believe you're using two-way receive port to return a synchronous MDN. In the response part of the 2-way
receive port, at "encoding" stage, component performs MIME processing, including applying a digital signature for MDN (based on AS2 agreement configuration and it is by default config), so it need certificate installed and configured for the
same.
This error could be due to various reasons around certificate installation and configuration.
MSND: KB: "The Signing Certificate has not been configured" error using certificates with EDI/AS2
MSDN Article: The Signing Certificate has not been configured for AS2 party
http://msinnovations.wordpress.com/2008/07/14/tips-for-the-signing-certificate-has-not-been-configured-for-the-as2-party/
If this answers your question please mark it accordingly. If this post is helpful, please vote as helpful by clicking the upward arrow mark next to my reply.

Similar Messages

Questions on AS2 setup for eXchange 5.1.3U2

All,
I am having some difficulty setting up the AS2 sample project. We got the X12 sample up and running with not too much trouble. The question I have is regarding AS2 setup on the B2B host configuration. In the B2B repository, you have your configurations. The one I am referencing for this forum in the sample project is named envEaiupgrepoDmnA_AS2. When I look at the transport under envEaiupgrepoDmnA_AS2 which is under B2B repository, the http configuration is shown. After clicking on the http configuration, I see the various properties of the HTTP transport:
· Outbound ToPartner
· Inbound FromPartner
· ACK - Outbound ToPartner
· ACK - Inbound FromPartner
In each of those properties, I see the “End URL” configuration which seems to be a required field in the configuration. The value currently in that field is “Set value.” This would lead me to believe why our AS2 sample project isn’t working. Furthermore, when I look HTTP external system in eDesigner for that specific domain, there is no URL specified in the properties.
Please advise.
Regards,
John Ferron

Andreas,
I have actually resolved a lot of issues since the last post. The last part I have a question on is the setup of the keystore in the environment. Can you go into detail on how you set that up? A colleague initially set this up and I am going back and resolving these issues to get the sample to work. In the Sun B2B Suite AS2 Protocol Manager User's Guide on page 118, the steps they show are not exactly the same what I did in the EPM webapp. For Step 7, I did not have to add a password for the companya_cert certificate.
Could you let me know what you did to get the certificates and encryption for the AS2 sample working? Here is the exception I am currently seeing:
[#|2008-06-02T15:46:33.572-0500|SEVERE|IS5.1.3|STC.smeks.com.stc.sme.ks.impl.JDKPasswordProtector|_ThreadID=34; ThreadName=Worker: 12;stacktrace-id=7;|null
java.io.EOFException
     at java.io.DataInputStream.readInt(DataInputStream.java:358)
     at com.stc.sme.ks.impl.JDKPasswordProtector.recover(JDKPasswordProtector.java:207)
     at com.stc.sme.ks.impl.SMESecurityFacade.getDecryptedPassword(SMESecurityFacade.java:74)
     at com.stc.sme.ks.impl.SMEPrivateKeyManager.getDecryptedPassword(SMEPrivateKeyManager.java:233)
     at com.stc.sme.wsadapter.webservice.impl.SMIMESigner.sign(SMIMESigner.java:375)
     at com.stc.sme.wsadapter.smime.webservice.impl.SignService.sign(com.stc.sme.wsadapter.smime.webservice.impl.SignService:92)
     at Deployment.SignService1.SignService_Runtime_Handler.handleRequest(Deployment.SignService1.SignService_Runtime_Handler:369)
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:585)
     at com.sun.enterprise.security.SecurityUtil.invoke(SecurityUtil.java:140)
     at com.sun.ejb.containers.EJBLocalObjectInvocationHandler.invoke(EJBLocalObjectInvocationHandler.java:135)
     at $Proxy45.handleRequest(Unknown Source)
     at com.stc.codegen.eInsightImpl.runtime.ejb.MDBWSProvider.invoke(MDBWSProvider.java:200)
     at sun.reflect.GeneratedMethodAccessor709.invoke(Unknown Source)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:585)
     at com.sun.enterprise.security.SecurityUtil$2.run(SecurityUtil.java:146)
     at java.security.AccessController.doPrivileged(Native Method)
     at com.sun.enterprise.security.application.EJBSecurityManager.doAsPrivileged(EJBSecurityManager.java:940)
     at com.sun.enterprise.security.SecurityUtil.invoke(SecurityUtil.java:151)
     at com.sun.ejb.containers.MessageBeanContainer.deliverMessage(MessageBeanContainer.java:948)
     at com.sun.ejb.containers.MessageBeanListenerImpl.deliverMessage(MessageBeanListenerImpl.java:42)
     at com.sun.enterprise.connectors.inflow.MessageEndpointInvocationHandler.invoke(MessageEndpointInvocationHandler.java:136)
     at $Proxy57.invoke(Unknown Source)
     at com.stc.bpms.bpelConnector.impl.AbstractWSProvider.invoke(AbstractWSProvider.java:105)
     at com.stc.bpms.bpelImpl.runtime.Interpreter$1.run(Interpreter.java:659)
     at com.stc.bpms.bpelConnector.impl.ExecutorImpl$WorkImpl.run(ExecutorImpl.java:338)
     at com.sun.enterprise.connectors.work.OneWork.doWork(OneWork.java:54)
     at com.sun.corba.ee.impl.orbutil.threadpool.ThreadPoolImpl$WorkerThread.run(ThreadPoolImpl.java:382)
|#]
[#|2008-06-02T15:46:33.578-0500|SEVERE|IS5.1.3|Deployment.SignService1.SignService_Runtime_Handler|_ThreadID=34; ThreadName=Worker: 12;stacktrace-id=8;|com.stc.codegen.framework.runtime.RequestException
com.stc.codegen.framework.runtime.RequestException
     at Deployment.SignService1.SignService_Runtime_Handler.handleRequest(Deployment.SignService1.SignService_Runtime_Handler:382)
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:585)
     at com.sun.enterprise.security.SecurityUtil.invoke(SecurityUtil.java:140)
     at com.sun.ejb.containers.EJBLocalObjectInvocationHandler.invoke(EJBLocalObjectInvocationHandler.java:135)
     at $Proxy45.handleRequest(Unknown Source)
     at com.stc.codegen.eInsightImpl.runtime.ejb.MDBWSProvider.invoke(MDBWSProvider.java:200)
     at sun.reflect.GeneratedMethodAccessor709.invoke(Unknown Source)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:585)
     at com.sun.enterprise.security.SecurityUtil$2.run(SecurityUtil.java:146)
     at java.security.AccessController.doPrivileged(Native Method)
     at com.sun.enterprise.security.application.EJBSecurityManager.doAsPrivileged(EJBSecurityManager.java:940)
     at com.sun.enterprise.security.SecurityUtil.invoke(SecurityUtil.java:151)
     at com.sun.ejb.containers.MessageBeanContainer.deliverMessage(MessageBeanContainer.java:948)
     at com.sun.ejb.containers.MessageBeanListenerImpl.deliverMessage(MessageBeanListenerImpl.java:42)
     at com.sun.enterprise.connectors.inflow.MessageEndpointInvocationHandler.invoke(MessageEndpointInvocationHandler.java:136)
     at $Proxy57.invoke(Unknown Source)
     at com.stc.bpms.bpelConnector.impl.AbstractWSProvider.invoke(AbstractWSProvider.java:105)
     at com.stc.bpms.bpelImpl.runtime.Interpreter$1.run(Interpreter.java:659)
     at com.stc.bpms.bpelConnector.impl.ExecutorImpl$WorkImpl.run(ExecutorImpl.java:338)
     at com.sun.enterprise.connectors.work.OneWork.doWork(OneWork.java:54)
     at com.sun.corba.ee.impl.orbutil.threadpool.ThreadPoolImpl$WorkerThread.run(ThreadPoolImpl.java:382)
Caused by: java.security.UnrecoverableKeyException
     at com.stc.sme.ks.impl.JDKPasswordProtector.recover(JDKPasswordProtector.java:234)
     at com.stc.sme.ks.impl.SMESecurityFacade.getDecryptedPassword(SMESecurityFacade.java:74)
     at com.stc.sme.ks.impl.SMEPrivateKeyManager.getDecryptedPassword(SMEPrivateKeyManager.java:233)
     at com.stc.sme.wsadapter.webservice.impl.SMIMESigner.sign(SMIMESigner.java:375)
     at com.stc.sme.wsadapter.smime.webservice.impl.SignService.sign(com.stc.sme.wsadapter.smime.webservice.impl.SignService:92)
     at Deployment.SignService1.SignService_Runtime_Handler.handleRequest(Deployment.SignService1.SignService_Runtime_Handler:369)
     ... 24 more
|#]Many thanks in advance!!
Regards,
John

Outbound Seeburger AS2 setup problem

Hello,
I am trying to setup Seeburger AS2 adapter in the way that I can post documents from our SAP system to the external server that is sitting in the internet. I was following the SAPXI30_AS2Adapter.pdf guide but it is still not working. When I initiate the posting in SAP it goes correctly to XI, XI correctly process the IDOC and maps it to XML document and pass it to AS2 adapter. But here it fails. In adapter monitoring I can see this error message:
Description: AS2 Adapter failure
Details: Outbound configuration error: Sender configuration incomplete - perhaps AS2ID missing..[8/31/06 9:23 AM]
ConnectionId: null-allianceTestingServer_Party >> PartnerAddressId: allianceTestingServer_Party >> Transferred: 0/0 >> Error type: pre plugin call failed >> Error date: 1157030604769 >> Description: [8/31/06 9:23 AM]
2006/08/31 - 09:28:28:40
Retryable fault in 'Channel:allianceTestingServer_AS2_outbound'.
I think I've setup everything correctly so no idea where can be the problem. It is saying that I probably do not have AS2ID setup but it is either not true or I do not know how to do it.
Any help would be very much appreciated.
Thank you.
Martin
Solved on my own:
I really didn't have sender configuration completed. I've created new Party, configured it as AS2, created AS2ID for it etc. and then forced it as a sender in the Receiver Agreement.

Hi Anoop!
Yes, we use it on receiver side.
ModuleProcessorExitbean exists, so it should be ok.
What I'm not sure about is the thing with identifiers..
In Party (let's call it X) - Identifiers, we have default agency http://sap.com/xi/XI, scheme XIParty and name X.
What values should be there for Seeburger?
We have Agency: Seeburger, Scheme: AS2ID; Name: X.
Is it correct?
We also received some 9 char long number - probably some ID to adapter(?). Any idea, if it is necessary and where to use it?
Is it necessary to configure identifier seeburger also in Identifiers tab of Receiver communication channel? Or we can leave it empty (both- sender, receiver)?
We use this in B2B scenario, of course: Target system is party, but we use our R/3 as Business System w/o party. Is it ok, or do we laso have to "be" as Party in our configuration scenario?
A lot of questions, but points will be awarded 4 sure
Thanx!
Peter

AS2 setup -- AS2Receive Pipeline

Hi,
We have AS2 set up for communicating with some parties. For receiving the AS2 messages a HTTP receive location is configured, it uses AS2Receive and AS2Send pipeline.
I want to know how does AS2Receive pipeline decrypts the incoming message? How certificates are used to decrypt it? How can I find out which certificate is used for decryption, and where can I get that certificate?
Thanks, Girish R. Patil.

Hi Girish,
You can go through following articles based on AS2 :
Configuring Certificates for AS2 Messages
BizTalk Server Non-EDI
Scenario: Sending and Receiving a Non-EDI Message Over AS2 with an Asynchronous MDN Using Different BizTalk Servers
BizTalk Server EDI Scenario: Send an X12 Message Over AS2 and Receive
an Asynchronous MDN
Maheshkumar S Tiwari|User Page|Blog|BizTalk
Server : How Map Works on Port Level

AS2 error The FILE send adapter cannot open file

I have AS2 setup under biztalk. I have receive port which listen to HTTP adapter and keep listening on web site.Then there is corresponding send port which just write that file in folder . Send port just have filter for Receive adapter name.
It works fine, but some time I get error message
The FILE send adapter cannot open file <folder name\guid.txt > for writing.
Details: The system cannot find the path specified.
I am not able to understand what is error for this? Please help me to figure-out this.

Specifying the Backup transport is not going to solve the problem. Specifying the backup transport in this case is something like addressing the symptom of the issue and not finding the solution to root cause of the issue.
As you specified, if the mentioned error only happens some time but not always. In this case, the message "The
FILE send adapter cannot open file <folder name\guid.txt > for writing." would just be a warning message. Just by setting the retry in the send port will solve the issue. i..e Since this issue occurs rarely, it may be short lived glitch.
So by setting the retry count (lets say 3 times) with retry interval (let say 5 mins), this issue can be easily mitigated. You would not lose the message. So during the glitch you would get this message as warning, send port will retry "after specified
retry interval so after 5 mins", so by that time chances of files transfer is high. So this problem can be easily handled just by having retry count and retry interval in send port.
But you need to find the actual cause for this issue or you need to find the permanent resolution for this issue.
If this answers your question please mark it accordingly. If this post is helpful, please vote as helpful by clicking the upward arrow mark next to my reply.

AS2 decryption error on file sizes greater than 5MB.

We have a client who is not using biztalk but transmitting files to us via AS2. The AS2 file transmission occurs seamlessly when the file size is below 5MB, but Biztalk AS2 decoder fails to decrypt when file size exceeds 5MB. After searching the forums,
I learned that this is a known issue and there is a hot fix available to fix that issue. I wanted to replicate the same issue in my test environment so that i can apply the hot fix in that environment and make sure nothing breaks. I replicated the AS2
setup in 2 biztalk test machines . I used one machine as partner A and the other as partner B, then transmitted AS2 files from partner A to partner B. I sent files with sizes 2MB, 5MB, 15MB, and 50MB, but partner B received all the decrypted files successfully.
Production servers and test servers have biztalk 2010 installed.
In conclusion, the decryption issue is occurring in production machine only, and I am unable to replicate that issue in our test servers. I am scared to apply the hot fix or CU5 directly in production. Please advise if there is something else i am missing.
Thank you.
Error message:
Error details: An output message of the component "Microsoft.BizTalk.EdiInt.PipelineComponents" in receive pipeline "Microsoft.BizTalk.EdiInt.DefaultPipelines.AS2Receive, Microsoft.BizTalk.Edi.EdiIntPipelines, Version=3.0.1.0, Culture=neutral,
PublicKeyToken=31bf3856ad364e35" is suspended due to the following error:
An error occurred when decrypting an AS2 message..
The sequence number of the suspended message is 2
Hot fixes to fix the issue:
http://support.microsoft.com/kb/2480994/en-us
For some people CU5 fixed the issue.
Dilip Bandi

First, make sure CU5 wasn't unintentionally applied by Windows Update to your test config.
Second, either way, a valid strategy would be to apply CU5 as a normal patch, meaning DEV->TEST->UAT->PROD (or whatever your promotion path is). That way, you'll test for any breaking changes anyway and if the AS/2 issues isn't fixed, well,
you really no worse off.

BizTalk AS2 receive location (500.0 error) reported by eternal party when trying to reach BizTalk 2010.

Hi There -
We are facing AS2 connection problem with one of our customers. Following is scenario.
Problem Scenario –
We BizTalk 2010 server with which we are trying to connect one of our customer’s bank for secure communication.
Our UAT box has been done with a successful test connection with that bank however when we move to production server, whenever the Bank try to send any simple .txt file via AS2 protocol, we do not receive the file and bank receive an error following
message .
<div><fieldset>   <h2>500
- Internal server error.</h2>
<h3>There is a problem with the resource you are looking for, and it cannot be displayed.</h3>
Bank has AS2 setup on following environment.
AS2 Software Used
Connect Enterprise
AS2 Software Provider
Sterling Commerce (IBM Mail Slot)
Platform on which AS2 Software is installed
AIX
I have compared the UAT and Production servers AS2 receive URL configurations and these are completely alike.
Whenever I try browsing the virtual directory setup for AS2 from IIS 7.0 or from
internet explorer with hostname and virtual directory, I get 500.0 internal error which following post says is absolutely fine, this should not be a problem.
XXXXXXX
I have setup the IIS Log trace. Following are the traces from IIS.
Action Performed to resolve the issue.
Compared the UAT and Production server settings both are alike.
Setup the AS2 receive with reference of following URL .
http://msdn.microsoft.com/en-us/library/bb727975.aspx
http://biztalk-dish.blogspot.com.au/2012/07/guidance-on-edi-over-as2-in-biztalk.html
http://www.biztalkbill.com/Home/tabid/40/EntryId/66/Configuring-BTSHTTPReceive-dll-to-work-on-IIS-7.aspx
Installed the party certificates by referring following URL
http://msdn.microsoft.com/en-us/library/aa559902.aspx#step5
App Pool a/c and (Isolated and Inproc) host a/c and the receive pipline host a/c are same and certificates has been installed by loggin to server with same account .
Firewall ports are open to accept the traffic, I have to log from network team.
I tried following URL.
http://go4answers.webhost4life.com/Example/http-receive-url-without-78425.aspx (I have suffix the DLL name to the URL which party has to reach.
Example - http://XXXXXXX/EDIIN/BTSHTTPReceive.dll
http://hostname/virutalDirectory/BTSDLL
I have tried resolving 403/ 405 error which sometimes reported in my IIS error log, which generally arrive after reset of IIS 7.0
Using URL -
http://go4answers.webhost4life.com/Example/btshttpreceivedll-405-error-57131.aspx
http://biztalk-diary.blogspot.com.au/2010/05/btshttpreceive-error-405-method-not.html
IIS errors has been referenced using following Url
http://support.microsoft.com/kb/943891/en-us
following are the error logs from IIS 7.0 log file, whenever party sends any message to our server.
2013-12-14 19:02:59 10.83.241.83 POST /EDIIN/BTSHTTPReceive.dll - 80 - 10.83.251.4 Jakarta+Commons-HttpClient/3.0-rc4 500 0 0 9812
2013-12-14 19:03:48 10.83.241.83 POST /EDIIN/BTSHTTPReceive.dll - 80 - 10.83.251.4 Jakarta+Commons-HttpClient/3.0-rc4 500 0 0 343
2013-12-14 19:04:48 10.83.241.83 POST /EDIIN/BTSHTTPReceive.dll - 80 - 10.83.251.4 Jakarta+Commons-HttpClient/3.0-rc4 500 0 0 406
Sometimes I find following entries though
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) sc-status sc-substatus sc-win32-status time-taken
2013-12-14 20:10:55 ::1 GET /EDIIN - 80 - ::1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+6.1;+WOW64;+Trident/4.0;+SLCC2;+.NET+CLR+2.0.50727;+.NET+CLR+3.5.30729;+.NET+CLR+3.0.30729;+.NET4.0C;+.NET4.0E)
301 0 0 453
2013-12-14 20:10:55 ::1 GET /EDIIN/ - 80 - ::1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+6.1;+WOW64;+Trident/4.0;+SLCC2;+.NET+CLR+2.0.50727;+.NET+CLR+3.5.30729;+.NET+CLR+3.0.30729;+.NET4.0C;+.NET4.0E)
500 0 193 15
Any advice will be a great help.
Please Note: We have setup other virtual directories for receive HTTP connection using (BTSHTTPReceive.dll) file and these connections has been setup using same user account and are working perfectly fine.
I repeat,
>>           I have compared all the configurations for AS2 receive location with other setup on Production for other customers ( this is similar)
>>           I have cross checked the setting with UAT box where connection with this Bank is working absolutely fine but in production it is NOT and configurations are similar.

Hi,
It maybe windows firewall issue. you can try create a Windows Firewall exception if
Windows Firewall is running on your server. And please refer the blog about 500 error in iis which might helpful:
http://support.microsoft.com/kb/942031/en-us
We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place. <br/> Click <a
href="http://support.microsoft.com/common/survey.aspx?showpage=1&scid=sw%3Ben%3B3559&theme=tech"> HERE</a> to participate the survey.

AS2 connectivity issue

Hi,
I am facing an issue with connecting through AS2 server to PI server. Below is the scenario:
We receive different types of files from customer (EDI and Non EDI). We have maintained one configuration scenario (CS) for EDI and another one for non EDI. But there is only one Party. Two communication channels, one for EDI transactions and one for non EDI transactions.
I have configured the AS2 setup for EDI transaction and tested. It worked fine. Then I set up the AS2 configuration for Non EDI transaction. (basically two communication channels polling the same AS2 server). When I tested the setup using the stand alone tool i am getting the error as HTTP protocol error. 403 Forbidden.
It works fine if I set up the configuration for only one communication channel. Not working with both the configuration at the same time.
Is it because of two different configuration scenarios (two communincation channels) and same Party? Is there any configuration I need to set up for this scenario?
Please help.
Regards,
Vas

The only option seems to be saving the file at some location and then pick them from there for differnt scenarios. If you go with this approach, you can use single communication channel towards AS2 sender partner. You may agree upon a message subject or AS2 Filename with your EDI partner and then based on Subject or Filename value, place the file in different directories or with different names. For this you may use Dynamic Configuration as I have explained here:
http://wiki.sdn.sap.com/wiki/display/XI/AttribMapper-AssignAS2Filename+Dynamically
Regards,
Prateek Raj Srivastava

B2B-51125: No certificate to sign

I have created a keystore with private certificate, imported the TP certificate and did the AS2 setup in Oracle B2B. While trying to sent a document over AS2 to the TP, I am getting below error.
B2B-51125: No certificate to sign
Can someone please give some ideas on why would I get this error and how to resolve this.
Here is the log message.
Message
Error -: B2B-51125: No certificate to sign
Supplemental Detail
at oracle.tip.b2b.utility.Utility.getCertUsingAlias(Utility.java:1703)
at oracle.tip.b2b.tpa.RepoDataAccessor.addEnvelopeInfo(RepoDataAccessor.java:1742)
at oracle.tip.b2b.tpa.RepoDataAccessor.setDCInfo(RepoDataAccessor.java:898)
at oracle.tip.b2b.tpa.RepoDataAccessor.addToPartyInfo(RepoDataAccessor.java:1048)
at oracle.tip.b2b.tpa.RepoDataAccessor.getAgreementDetails(RepoDataAccessor.java:447)
at oracle.tip.b2b.tpa.TPAProcessor.processTPA(TPAProcessor.java:464)
at oracle.tip.b2b.tpa.TPAProcessor.processOutgoingTPA(TPAProcessor.java:222)
at oracle.tip.b2b.engine.Engine.processOutgoingMessageImpl(Engine.java:1454)
at oracle.tip.b2b.engine.Engine.processOutgoingMessage(Engine.java:801)
at oracle.tip.b2b.engine.Engine.handleMessageEvent(Engine.java:3788)
at oracle.tip.b2b.engine.Engine.processEvents(Engine.java:3205)
at oracle.tip.b2b.engine.ThreadWorkExecutor.processEvent(ThreadWorkExecutor.java:677)
at oracle.tip.b2b.engine.ThreadWorkExecutor.run(ThreadWorkExecutor.java:211)
at oracle.integration.platform.blocks.executor.WorkManagerExecutor$1.run(WorkManagerExecutor.java:120)
at weblogic.work.j2ee.J2EEWorkManager$WorkWithListener.run(J2EEWorkManager.java:184)
at weblogic.work.DaemonWorkThread.run(DaemonWorkThread.java:30)
Error -: B2B-51125: No certificate to sign
at oracle.tip.b2b.utility.Utility.getCertUsingAlias(Utility.java:1703)
at oracle.tip.b2b.tpa.RepoDataAccessor.addEnvelopeInfo(RepoDataAccessor.java:1742)
at oracle.tip.b2b.tpa.RepoDataAccessor.setDCInfo(RepoDataAccessor.java:898)
at oracle.tip.b2b.tpa.RepoDataAccessor.addToPartyInfo(RepoDataAccessor.java:1048)
at oracle.tip.b2b.tpa.RepoDataAccessor.getAgreementDetails(RepoDataAccessor.java:447)
at oracle.tip.b2b.tpa.TPAProcessor.processTPA(TPAProcessor.java:464)
at oracle.tip.b2b.tpa.TPAProcessor.processOutgoingTPA(TPAProcessor.java:222)
at oracle.tip.b2b.engine.Engine.processOutgoingMessageImpl(Engine.java:1454)
at oracle.tip.b2b.engine.Engine.processOutgoingMessage(Engine.java:801)
at oracle.tip.b2b.engine.Engine.handleMessageEvent(Engine.java:3788)
at oracle.tip.b2b.engine.Engine.processEvents(Engine.java:3205)
at oracle.tip.b2b.engine.ThreadWorkExecutor.processEvent(ThreadWorkExecutor.java:677)
at oracle.tip.b2b.engine.ThreadWorkExecutor.run(ThreadWorkExecutor.java:211)
at oracle.integration.platform.blocks.executor.WorkManagerExecutor$1.run(WorkManagerExecutor.java:120)
at weblogic.work.j2ee.J2EEWorkManager$WorkWithListener.run(J2EEWorkManager.java:184)
at weblogic.work.DaemonWorkThread.run(DaemonWorkThread.java:30)

The below document lists the error codes and messages.
http://docs.oracle.com/cd/E15586_01/core.1111/e10113/chapter_b2b_messages.htm
It says that the reason for Error code B2B-51125 is that a certificate to sign the message is not available in the keystore.
B2B-51125: No certificate to sign
Cause: Certificate used to sign the message was not available in the keystore.
Action: Check if the certificate is available in the keystore.
I have listed the certificates in the keystore and the private key that is used to sign the message it available. It also shows up in the security tab of the TP AS2 Channel setup.
Thanks
Ismail-M.

AS2 Proxy Authentication Setup on 11GPS2

Hi all,
I am experiencing problems with outbound AS2 traffic. All of our outbound traffic must go through a corporate proxy setup using authentication. I have tried specifying use proxy and starting the managed server with the proxy information. No matter my configuration I get a http 407 error. I have tried starting my server using various combinations of the properties below in my server start arguements. But it seems like B2B only reads the proxy host and port ignoring the user credentials. Is it possible to use a proxy that requires authentication? The thing is if I logon the server (oracle linux) and manually authenticate using the browser, my as2 traffic will be successful until the browser times out. The proxy uses IWA authentication. Are there any other configurations needed to make this setup possible?
-Dhttp.proxySet=true
-Dhttp.proxyHost=proxysg
-Dhttp.proxyPort=8080
-Dhttp.proxyUser=+user+
-Dhttp.proxyPassword=*****
-Dhttp.proxyRealm=+realm+
-Dhttp.nonProxyHosts=localhost|localhost.localdomain|127.0.0.1|10.2.*
Error Message:
Machine Info: (cprorapd11.osk.corp.truck) Transport error: [IPT_HttpSendError] HTTP encounters send error :407 <HTML><HEAD> <TITLE>Access Denied</TITLE> </HEAD> <BODY> <FONT face="Helvetica"> <big><strong></strong></big><BR> </FONT> <blockquote> <TABLE border=0 cellPadding=1 width="80%"> <TR><TD> <FONT face="Helvetica"> <big>Access Denied (authentication_failed)</big> <BR> <BR> </FONT> </TD></TR> <TR><TD> <FONT face="Helvetica"> Your credentials could not be authenticated: "Credentials are missing.". You will not be permitted access until your credentials can be verified. </FONT> </TD></TR> <TR><TD> <FONT face="Helvetica"> This is typically caused by an incorrect username and/or password, but could also be caused by network problems. </FONT> </TD></TR> <TR><TD> <FONT face="Helvetica" SIZE=2> <BR> For assistance, please contact your Support Desk. </FONT> </TD></TR> </TABLE> </blockquote> </FONT> </BODY></HTML>
TRANSPORT TRACE
[2010-10-13T15:35:56.475-05:00] [soa_server1] [TRACE] [] [oracle.soa.b2b.transport] [tid: weblogic.work.j2ee.J2EEWorkManager$WorkWithListener@4d940959] [userId: <anonymous>] [ecid: 0000IibJYdAFw000jzwkno1CgnKh000Ye^,0] [SRC_CLASS: oracle.tip.b2b.transport.basic.TransportLogger] [APP: soa-infra] [dcid: 11d1def534ea1be0:57437010:12b9c07be53:-8000-0000000000002127] [SRC_METHOD: log] TransportProperties.TransportProperties():http.sender.proxy_host=proxysg;http.sender.password=******;http.sender.proxy_port=8080;
[2010-10-13T15:35:56.482-05:00] [soa_server1] [TRACE] [] [oracle.soa.b2b.transport] [tid: weblogic.work.j2ee.J2EEWorkManager$WorkWithListener@4d940959] [userId: <anonymous>] [ecid: 0000IibJYdAFw000jzwkno1CgnKh000Ye^,0] [SRC_CLASS: oracle.tip.b2b.transport.basic.TransportLogger] [APP: soa-infra] [dcid: 11d1def534ea1be0:57437010:12b9c07be53:-8000-0000000000002127] [SRC_METHOD: log] Proxy host = proxysg Proxy port= 8080
[2010-10-13T15:35:56.483-05:00] [soa_server1] [TRACE] [] [oracle.soa.b2b.transport] [tid: weblogic.work.j2ee.J2EEWorkManager$WorkWithListener@4d940959] [userId: <anonymous>] [ecid: 0000IibJYdAFw000jzwkno1CgnKh000Ye^,0] [SRC_CLASS: oracle.tip.b2b.transport.basic.TransportLogger] [APP: soa-infra] [dcid: 11d1def534ea1be0:57437010:12b9c07be53:-8000-0000000000002127] [SRC_METHOD: log] Basic authentication is not used due to one of security parameters not set. Make sure username, password, and realm are set in delivery channel.
[2010-10-13T15:35:56.483-05:00] [soa_server1] [TRACE] [] [oracle.soa.b2b.transport] [tid: weblogic.work.j2ee.J2EEWorkManager$WorkWithListener@4d940959] [userId: <anonymous>] [ecid: 0000IibJYdAFw000jzwkno1CgnKh000Ye^,0] [SRC_CLASS: oracle.tip.b2b.transport.basic.TransportLogger] [APP: soa-infra] [dcid: 11d1def534ea1be0:57437010:12b9c07be53:-8000-0000000000002127] [SRC_METHOD: log] Number of headers to be added is 11
[2010-10-13T15:35:56.495-05:00] [soa_server1] [TRACE] [] [oracle.soa.b2b.transport] [tid: weblogic.work.j2ee.J2EEWorkManager$WorkWithListener@4d940959] [userId: <anonymous>] [ecid: 0000IibJYdAFw000jzwkno1CgnKh000Ye^,0] [SRC_CLASS: oracle.tip.b2b.transport.basic.TransportLogger] [APP: soa-infra] [dcid: 11d1def534ea1be0:57437010:12b9c07be53:-8000-0000000000002127] [SRC_METHOD: log] [IPT_HttpSendResponseStatusCode] HTTP Response status code: 407

The proxy uses IWA authenticationThis is the problem I think. As far as I know, to use IWA authentication, you have to configure Identity Management. Please raise a case with Oracle Support and they should guide you correctly to the root cause and possible solutions.
Regards,
Anuj

AS2(SOA-B2B) Channel Setup for Inbound/Outbound

Hi
Can anyone share a document on how to setup AS2(SOA-B2B) Channel Setup for Inbound/Outbound? We are trying to configure AS2 (SSL), but test with partner is failing.. any document would help...
Appreciate your help
--Sri

One options is to use a java callout in the inbound agreement.
Ismail M.

AS2 communication setup

Hi,
We are using AS2 adapter to communicate with the customer. In QA system, in order not to send the files to customer, we have stopped the receiver communication channel manually. We have tested our scenarios by checking the payload of the data. (we could have used the file adapter for testing purpose, we did the same in DEV environment).
All the messages are failed in receiver communication channel with the error "Communication channel is currently stopped".
If we start the AS2 communication channel, will all the message transfer to our customer? If so, how can I delete those entries, as we don't want to send those data to customer. I have canceled the messages in message monitoring.
Please help.
Regards,
Vasantha

Got it.. deleted the message in RWB!!!

Sender AS2 Adapter Setup

Hi,
I am trying to send an EDIFACT file to IDOC through AS2 Adapter (sender). Can you please tell me how to configure the sender AS2 Channel.I have configured it, but it is giving me the following error in Channel Monitoring.
Alert: Maximum number of retries reached. Retry 20. Message initiation failed: Adapter call failed. Reason: Fatal exception: com.seeburger.xi.connector.queue.TaskBuildException: failed to lookup CPA cache: Couldn't retrieve outbound binding for the given P/S/A values: FP=B2B_Certipost;TP=B2B_PH_BE;FS=B2B_SND;TS=B2B_RCV;AN=MI_E_ORDERS_D96A_oa;ANS=urn:novartis.com:pi:ph:be:OM_DD_750_LBE_L0X:Order;, failed to lookup CPA cache: Couldn't retrieve outbound binding for the given P/S/A values: FP=B2B_Certipost;TP=B2B_PH_BE;FS=B2B_SND;TS=B2B_RCV;AN=MI_E_ORDERS_D96A_oa;ANS=urn:novartis.com:pi:ph:be:OM_DD_750_LBE_L0X:Order; [4/30/09 4:19 PM]
Please share your valuable inputs.
Thanks,
Amit..

Hi,
follow the below steps;
AS2 identifier is the party identified which will be provided by the WAN network provider.
Under the party identifiere tab
Agency will be seeburger
Scheme=AS2ID
Name = WAN network no of the partner who is sending the file
Few changes in the module parameter tab.
localejbs/CallBicXIRaBean bic
CallSapAdapter 0
Module configuration:
bic= destSourceMsg = MainDocument
bic= destTargetMsg = MainDocument
bic= mappingName= See_E2X_EDIFACT_ORDERS_UN_D93A
-S

How to setup filename in AS2 protocol

Hi,
We are posting a .csv document to partner via AS2. We developed a BPEL process which reads .csv file on FTP and enqueue the binary data into B2B queue.
We passed the file name to below property in Invoke activity connected to B2B adapter in BPEL.
jms.jca.contentDisposition
At the receiving end the file name is missing. The below message received from partner.
<?xml version="1.0" encoding="UTF-8"?>
<IDataXMLCoder version="1.0">
<record javaclass="com.wm.data.ISMemDataImpl">
<value name="Content-Type">application/XML; name=Custom</value>
<value name="Content-Transfer-Encoding">binary</value>
<value name="Content-Disposition">attachment; filename=1.0</value>
</record>
</IDataXMLCoder>

I am trying the same in oracle b2b 11g, but I don't see jca.jms.JMSProperty.ACTION_NAME property. I see only upto jca.jms.JMSProperty . I am trying to set this property friom BPEL. jca.jms.JMSProperty is used to set any user defined JMS header. To make it clear, all headers required by B2B, are user defined headers and they do not belong to standard JMS headers. Please refer below link to know how to add these headers -
How to set JMS user property in JMS Adapter.
SOA Suite 11g - how to set/get JMS headers ?
JMSAdapter : jca.jms.JMSProperty
I hope it's clear now.
Regards,
Anuj

Not able to generate AS2 MDN when receiving custom XML via AS2

Hi friends,
I have setup the trading partner and the corresponding TP certificate import for receiving the custom XML via AS2 channel.
I am receiving the custom xml properly to oracle b2b and able to receive the same to bpel as well. however in the oracle b2b console under reports tab i am seeing only one record for inbound document receive and i am not seeing the other record for the AS2 MDN going back to vendor. I have setup the AS2 channel under the external trading partner --> Channel using the vendor AS2 URL and selected all the security parameters while creating the Outbound AS2 channel.
1. Not able to generate AS2 MDN when receiving custom XML via AS2.
2. eventhough i am able to decrypt the inbound custom XML and ablr to recieve it in bpel also for processing, in the reports tab the inbound message state is changing to MSG_ERROR and it has the folloing error message:
Error Code
B2B-50037
Error Description
Machine Info: (***********) Description: B2B inbound message processing error
Error Level
ERROR_LEVEL_COLLABORATION
for AS2 MDN generation for custom XML receiving using As2 protocol, do we need to setup anything other than the outbound As2 Channel using the external vendor AS2 URL?
Can you please help me how can i generate the AS2 MDN for the inbound custom XML document i have received and also why the inbound message is failing even though i am receiving the custom XML properly to bpel?
Thanks,
Amirineni.

Hi Prasanna,
Vendor has enabled the ACK mode as SYNC.
Below are the headers for the inbound message to B2B. and we are able to receive the input message to bpel also.
Protocol Transport Binding
ChannelName=******** AS2-To=****AS2 TE=trailers, deflate, gzip, compress Date=Thu, 02 Oct 2014 14:26:31 GMT AS2-Version=1.2 Accept-Encoding=deflate, gzip, x-gzip, compress, x-compress AS2-From=****AS2 Disposition-Notification-Options=signed-receipt-protocol=optional, pkcs7-signature; signed-receipt-micalg=optional, sha1 Disposition-Notification-To=https://******/as2 Message-ID=<CLEO-20141002_142630452-31X54N@****_*****AS2.pcwbedi1-O> Content-type=application/pkcs7-mime; smime-type=enveloped-data; name=smime.p7m Content-length=747006 MSG_RECEIVED_TIME=Thu Oct 02 10:26:39 EDT 2014 Subject=EDI ECID-Context=1.005175bK7U^AXNJCAnf9Cx0002pW000yjX;kXjE1ZDLIPGIj2QCYV8QoKSSILRO_PQT_IS Proxy-Client-IP=****** Recipient-Address=https://******/b2b/httpReceiver User-Agent=RPT-HTTPClient/0.3-3I (Windows 2003) X-Forwarded-For=****** Content-Disposition=attachment; filename="smime.p7m" Host=****** EDIINT-Features=CEM, multiple-attachments, AS2-Reliability Connection=Keep-Alive X-WebLogic-KeepAliveSecs=30 X-WebLogic-Force-JVMID=-1497702782 From=****** Mime-Version=1.0
Message Digest
Message Digest
Digest Algorithm
sha1
Transport Protocol
HTTP
Transport Protocol Version
1.0
Url
http://******
security
Transport Headers
ChannelName=****** AS2-To=******AS2 TE=trailers, deflate, gzip, compress Date=Thu, 02 Oct 2014 14:26:31 GMT AS2-Version=1.2 Accept-Encoding=deflate, gzip, x-gzip, compress, x-compress AS2-From=****AS2 Disposition-Notification-Options=signed-receipt-protocol=optional, pkcs7-signature; signed-receipt-micalg=optional, sha1 Disposition-Notification-To=https://******/as2 Message-ID=<CLEO-20141002_142630452-31X54N@****AS2_*****AS2.pcwbedi1-O> Content-type=application/pkcs7-mime; smime-type=enveloped-data; name=smime.p7m Content-length=747006 MSG_RECEIVED_TIME=Thu Oct 02 10:26:39 EDT 2014 Subject=EDI ECID-Context=1.005175bK7U^AXNJCAnf9Cx0002pW000yjX;kXjE1ZDLIPGIj2QCYV8QoKSSILRO_PQT_IS Proxy-Client-IP=***** Recipient-Address=*******/b2b/httpReceiver User-Agent=RPT-HTTPClient/0.3-3I (Windows 2003) X-Forwarded-For=******* Content-Disposition=attachment; filename="smime.p7m" Host=***** EDIINT-Features=CEM, multiple-attachments, AS2-Reliability Connection=Keep-Alive X-WebLogic-KeepAliveSecs=30 X-WebLogic-Force-JVMID=-1497702782 From=***** Mime-Version=1.0
Thanks,
Amirineni

AS2 setup

Similar Messages

Maybe you are looking for