Microsoft Knowledge Base Email Alertz
All KB/RSS Links  |  Hot Kb!  |  New Kb!  |  Scott Cate  |  FAQ / KB  |  Web Hosting  |  Unsubscribe  

(842698) - Describes support for signing certificates on outgoing messages in BizTalk Server 2004.

Search KbAlertz

Advanced Search

Receive Microsoft Knowledge Base articles by E-Mail?

Every night we scan the Microsoft Knowledge Base. If technologies you're interested in are updated, we'll send you an e-mail. You only get one e-mail a day, and only when new articles are added.
Click here to create a
FREE account
Already have an account?
[Click here to Login]











Microsoft Knowledge Base Article

This article contents is Microsoft Copyrighted material.
©2005-©2007 Microsoft Corporation. All rights reserved. Terms of Use | Trademarks
Article ID: 842698 - Last Review: April 3, 2007 - Revision: 3.3

BizTalk Server support for signing certificates on outgoing messages

View products that this article applies to.

INTRODUCTION

This article discusses support for signing certificates on outgoing message in Microsoft BizTalk Server 2004.

MORE INFORMATION

BizTalk Server uses private key certificates for signing outgoing messages. You apply a signing certificate to an outgoing message by adding an encoding component (S/MIME) in the send pipeline. You then configure the encoding component to sign all outgoing messages by clicking True for the Add signing certification to message property. The signing certificate that is used to sign the outgoing message is retrieved from the personal certificate store for the host service account where the pipeline is running.

BizTalk Server only supports one personal certificate for each BizTalk group. A BizTalk group can represent an enterprise, a department, a hub, or another business unit. The personal certificate that is used by the BizTalk group is specified by setting the thumbprint of the personal certificate in the BizTalk group properties.

Note You must make sure that the signing certificate is available in the certificate store of the service account of the hosts where the send pipelines are running.

To enter a thumbprint for the personal certificate for the host service account that is running the pipeline, follow these steps:
  1. Start BizTalk Server Administration.
  2. Right-click the BizTalk group that you want, and then click Properties.

    Note In BizTalk Server 2006, you must also click Certificates.
  3. In the Thumbprint box, type the thumbprint of the private key certificate that is used to digitally sign outgoing messages from this group.

    Note The certificate thumbprint has the following format (where H is a hexadecimal digit):
    HHHH HHHH HHHH HHHH HHHHH HHHHH HHHHH HHHHH HHHHH HHHHH
  4. Click OK to close the Microsoft BizTalk Server 2004 (Local) Properties dialog box.
Note The certificate thumbprint is a digest of the certificate data. The thumbprint is located on the Details tab of the Certificate dialog box for the certificate.

For more information about signing certificates in BizTalk Server 2004, visit the following MSDN Web site:
http://msdn2.microsoft.com/en-us/library/ms961813.aspx (http://msdn2.microsoft.com/en-us/library/ms961813.aspx)
For more information about implementing pipes and filters by using BizTalk Server 2004, visit the following MSDN Web site:
http://msdn2.microsoft.com/en-us/library/ms978668.aspx (http://msdn2.microsoft.com/en-us/library/ms978668.aspx)
APPLIES TO
  • Microsoft BizTalk Server 2006 Standard Edition
  • Microsoft BizTalk Server 2006 Enterprise Edition
  • Microsoft BizTalk Server 2006 Developer Edition
  • Microsoft BizTalk Server 2004 Standard Edition
  • Microsoft BizTalk Server 2004 Enterprise Edition
  • Microsoft BizTalk Server 2004 Developer Edition
  • Microsoft BizTalk Server 2004 Partner Edition
Back to the top
Keywords: 
kbbiztalk2004-2006swept kbtshoot kbinfo KB842698
        

Community Feedback System

Very often, it takes hours to solve a problem. Very often, you've looked high and low, and have tried a lot of solutions. When you finally found it, chances are, it was because someone else helped you. Here's your chance to give back. Use our community feedback tool to let others know what worked for you and what didn't.

Please also understand that the community feedback system is not warranted to be correct, it's simply a system that we've built to let people try and help each other. If something in a feedback response doesn't make sense to you, or you're not comfortable making changes that the feedback talks about (like registry edits), please consult a professional.

Thank you for using kbAlertz.com Feedback System.

-- Scott Cate

Copyright © 2002-2007 KBALERTZ.COM.  All Rights Reserved. Terms / PrivacyDiscount ASP.NET Hosting