Skip to Content

Why this blog?


I initially created part 1 and part 2 of this blog just to share the easiness of the Mendelson AS2 software.


Now, it seems to be that some people struggled with the setup of certificates and the signing mechanism in SAP PI/PO and the Mendelson (or other) AS2 software.

In this blog I will try to highlight, based on an example(*), the different steps needed to generate and import keys and certificates.

In case you feel parts are missing, please give me a sign and I will add it to this blog.

(*) the example here is an inbound scenario where Mendelson AS2 is used as a sender of messages and within SAP PI/PO, a sender AS2 communication channel is needed.

Introduction

2 key stores (.p12 files) are used:

  • Delivered by Mendelson
  • Created using the SAP NetWeaver Administrator

Within a key store, a private and a public key is available.

/wp-content/uploads/2013/10/1_310421.jpg

Configuration for keys and certificates

Do not forget to import SAP PO’s public key into the Mendelson key store and the other way around.

/wp-content/uploads/2013/10/2_310422.jpg

/wp-content/uploads/2013/10/3_310423.jpg

/wp-content/uploads/2013/10/4_310427.jpg

Configuration in the Mendelson AS2 software

Within Mendelson, 2 partners must be configured: 1 local station (being the sender) and 1 to receive messages.

/wp-content/uploads/2013/10/5_310428.jpg

/wp-content/uploads/2013/10/5_310428.jpg

Configuration of the sender AS2 communication channel

/wp-content/uploads/2013/10/6_310434.jpg

/wp-content/uploads/2013/10/7_310435.jpg

/wp-content/uploads/2013/10/8_310436.jpg

Important remark 1

Download and install the Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy.

If not, problems will arise concerning signing of messages on the SAP PO server.


Files local_policy.jar and US_export_policy.jar must be overwritten on the SAP PO host and on the machine where MendelsonAS2 is running.


URL to download: http://www.oracle.com/technetwork/java/javase/downloads/jce-6-download-429243.html

Important remark 2

The user to create this scenario and the one used in the HTTP authentication part in the Mendelson, needs the following roles

  • SAP_XI_B2B_CONFIGURATOR_J2EE
  • SAP_XI_B2B_ADMINISTRATOR_J2EE

Also, make sure the users PIAF<SAPSID>, PIDIR<SAPSID> and PIIS<SAPSID> are added to the Administrators group and they have role SAP_XI_ADMINISTRATOR_J2EE assigned.


To report this post you need to login first.

8 Comments

You must be Logged on to comment or reply to a post.

  1. Vishwanath D

    Hi Dimitri,

    Thanks a lot for the blog guiding beginners like me.

    I have created new keystores and certificates for mendelson and SAP PI using Portecle software with new password. I replaced the existing certificates.p12 file in the Mendelson Installed directory with the new file and changed the password in the File->Preferences->Security in Mendelson system. When I try reload the keystores option, I am getting an error as below –

    Unable to read keystore: Keystore data length must not be 0.

    Please let me know where am I missing or doing things wrong.

    Also where do I need to JCE in SAP PI system and where can I find the

    local_policy.jar and US_export_policy.jar

    jars in SAP PI and Mendelson AS2 to replace.

    Appreciate your kind help.

    Regards,

    Vish


    (0) 
    1. Vishwanath D

      Hi Dimitri,

      Also missed to include. In case I wish to use the Public and Private keys provided by Mendelson, where do I find these mentioned in your blog as I see only 1 file certificates.p12 under the installed directory. Also please guide how to create keys in NWA SAP PI.

      I understand am coming with too many questions and your assistance, since this is my first scenario in B2B integration and using B2B addon, am struck with simple things.

      Regards,

      Vish

      (0) 
  2. Jixin Wang

    hi dimitri,

    could the as2 adapter sender channel be synchronous(b2b add on as2 sp02),if so, and how to design my service interface, for example, data type for as2 to receive response,and data type for ecc to back response. Thanks you!

    (0) 
  3. Venkat Reddy

    Hi Team,

    I am facing below issue.
    Scenario is–from ECC we are sending EDI D96A Invoices to Third party using AS2 connection. Receiver is French customer. So in this invoice we have Special characters in Material Description.
    EX: Maille Huile d’Olive Vierge 0,685Kg 12X
    Since it is having ‘ (Apostrophe) in the EDI text, See burger BIC mapping appending ? before Apostrophe(‘) while sending  the EDI to Third party as below.
    EX: Maille Huile d?’Olive Vierge 0,685Kg 12X
    But user is complaining that we don’t need ? in the text of EDI, they want the text AS-IS.
    How can we deal this?

    (0) 

Leave a Reply