In this tutorial, you will learn how to configure the AS2 client in GoAnywhere MFT. The AS2 client is used to send messages to an AS2 service. AS2 messages can be compressed, signed, encrypted and then sent over an SSL tunnel, making AS2 a very secure option for transferring files. AS2 also implements MDN receipts to ensure the delivery of the message.
Contact each of the trading partners with whom you will send AS2 messages.
Obtain the following key pieces of information from each partner:
In addition, provide each partner with the following:
To assist you with sharing AS2 service information with your trading partner, download the AS2 Trading Partner Form. Fill out the form in its entirety, and then send the form to your trading partner.
If you plan to encrypt messages, you’ll need to import your partner’s public certificate. To do this, log in to GoAnywhere MFT as an Admin User with the Key Manager role.
From the main menu, select the Encryption menu, and click the SSL Certificate Manager link. You will arrive at the Trusted Certificates Store by default.
On the tool bar, click Import > Certificates.
Browse for the location where the trading partner’s public certificate was saved and then click Import.
Specify an Alias to identify the certificate. Note the Alias, as it will be used later.
If the import was successful, your partner’s public certificate will now reside in your Default Trusted Certificates Key Store.
If your trading partner provided you their HTTPS public certificate, follow the instructions above to import it in to your trusted key store.
Resources are the names and connection properties of the servers, and other data sources, that GoAnywhere can interact with. Admin users with the Resource Manager role can create and edit Resources.
Log in as an Admin User with the Resource Manager role.
On the main menu, click Resources. On the Resources page, click the AS2 Servers link in the Resource Type panel, and then in the page toolbar, click Add AS2 Server.
Specify the parameters and the credentials for the AS2 server obtained in the Initial Planning section.
When sending a message to a trading partner, it is highly recommended and sometimes required to encrypt the contents of a message. To add encryption, set the Encrypt Messages option to Yes in the AS2 Resource.
Next, specify the trading partner's public certificate in the Encryption Certificate Alias field. Type the alias name or click the browse icon to browse for the certificate.
Digital signatures added to an AS2 message allow the recipients to verify who you are. To add a digital signature to a message, set the Sign Messages option to Yes.
In the AS2 Resource, specify your private key in the Signature Certificate Alias field. Type the alias name or click the browse icon to browse for the key. In order for your trading partner to verify your signature, you will need to export and send them the public certificate associated to this private key.
Compressing messages reduces the message size and can improve transmission time. To add compression, set the Compress Messages option to Yes in the AS2 Resource.
In order to transfer files to the AS2 Server you defined above, you will need to create a Project in GoAnywhere.
Login to GoAnywhere MFT as an Admin User with the Project Designer role. On the main menu bar, click Projects and select the folder for the new Project.
In the page toolbar, click Create a Project, specify a Project Name, and then click Save.
From within the Project Designer page, expand the File Transfer folder in the Component Library, and then drag the AS2 task to the Project Outline.
Within the AS2 Task page, select the AS2 server resource created above from the drop-down list.
Type the path and file name of the Source File or click the browse icon to browse for the file. A File Set can also be defined to send multiple files in one message.
Optionally specify the Subject, Content Type, and Receipt options for this message. When complete, click the Save button. The Project is ready to execute.
The AS2 Task provides the option of receiving delivery confirmation in the form of a Receipt. If a Receipt is desired, use the Request Receipt panel to select signed or unsigned receipts. Receipts that are signed ensure authenticity. Signed messages and receipts are considered a Non-Repudiation of Receipt (NRR), which is a “legal event” indicating that both party’s identities and the message’s integrity are valid.
When using receipts, an AS2 Task Output variable can be defined and used elsewhere in the Project to control how other tasks function based on the receipt message or status. If a receipt is requested, the following Receipt Destinations (or types) are available:
In a synchronous scenario, the connection remains open between the AS2 server until a receipt is received or a timeout occurs. The following Receipt Destination options require synchronous receipts:
In an asynchronous scenario, the connection closes immediately after the transmission is complete. When the AS2 server is finished processing the message, the server will open a new connection and send the receipt. The following Receipt Destination options require asynchronous receipts:
Now that you have created a project for transfering files to an AS2 Server, check out the Automating Project Workflows tutorial to learn how to automate your project.
How to Enable SSL for HTTPS/AS2 Connections