I'm attempting two-way certificate communications using BizTalk Server
2006. I'm using two BizTalk Servers - for the sake of discussion I'll
call A and B. I'm attempting to HTTP send an xml file from A to an
HTTP receive ****t on B.
Server B setup (receiver of xml do***ent):
On B, we have a valid certificate installed on the web server (IIS 6).
I've setup IIS to use SSL on the virtual directory that BizTalk
listens on and to map the inbound certificate to an account on the
machine that is assigned to the respective BizTalk groups for
processing. On B, I've installed the A cert public key into "Local
Machine\Other People" cert store. I've also assigned the personal
certificate to the BizTalk Group properties section of the BizTalk
Administration Console for signing messages.
Server A setup (sender of xml do***ent):
On A, I've setup a basic FILE receive ****t drop and HTTP send ****t
(https://serverB/http/BTSHTTPReceive.dll)
filtering on the receive
****t. Server A has a valid certificate installed in "User\Personal"
certificate store. I created the certificate on A, so I added the
certificate to the "Local Computer\Trusted Root Certificate
Authorities". I assigned the certificate in the BizTalk Administration
Console in the BizTalk Group properties section. This should allow
signing of the outbound messages with the cert. I also added the thumb
print of the server B cert to the HTTP send ****t on A with
Authentication Type set to "Anonymous".
Now, when attempting to send the message from A to B, the message goes
into the "Retrying Idle ****ts" queue. In the event log, I get the
message "The client certificate is not found in the certificate store
Parameter name: Certificate".
Any idears are appreciated?
-ak
|
