Free cookie consent management tool by TermsFeed Creating an AS2 Station | Aayu Technologies Cookies preferences
Link Search Menu Expand Document

Creating an AS2 Station

Watch video ▶️

1 What is an AS2 Station

An AS2 ‘Station’ defines an identity for your Organization to communicate over the AS2 protocol. An AS2 Station will have a unique AS2 ID, URL, and a certificate used for encryption and digital signatures. While most organizations would be using just one AS2 Station, some advanced users may prefer to use two or more stations. Some large organizations may decide to create two stations to use one for testing, and the other for production use.

2 Creating an AS2 Station

An AS2 Station is analogous to an email address. A significant aspect is the ‘AS2 ID’, which is a unique identifier you would choose to identify your AS2 identity. If your company name is Acme Trading, you may choose ‘ACME_PROD’ as an example of your AS2 identifier. You will receive messages from your Partners destined to a specific AS2 ID, and if you have more than one Station, the messages will show to which Stations they have been received. Similarly, when sending out messages, you can choose the outgoing Station to be used, if you have more than one Station created for your Organization.

To create a new Station, navigate to the Stations page from the navigation menu. Then click on the ‘New Station’ button.

Empty Station list view

2.1 Basic information for the Station

To add the trading station:

  1. Specify a name for the trading station. This is solely used for labeling the station within MFT Gateway with a user-friendly name. This name will not be used in AS2 message communication. So specify a descriptive name such as ‘Acme AS2 Production’. For any reason, if you decide to use some external identifier, say ‘08111999US00,” as your AS2 ID (specified next), this ‘name’ will be easier to relate to.

  2. Specify an AS2 identifier. This is the identifier used to identify the MFT Gateway station, analogous to an email address, and used within AS2 message communication. This has to be unique among a set of agreed-upon partners and also within the MFT Gateway service (which the Gateway will ensure at creation time).

    Note: Its length should be between 1 and 128 characters (inclusive).

  3. Specify an email address for the station. It will be used in From header of sent messages (not AS2-From - which is the AS2 identifier). It will also be used to send email notifications to you regarding the station, such as incoming messages, message send failures, incomplete messages, and enabling email notifications for MDN-related issues.

Create station view

2.2 Certificate configuration

Next, configure the certificate details for your Station. The following screen shows the generation and use of a self-signed certificate, which is the most common option used by most organizations. AS2 certificates do not require a third party Certification Authority (CA) to sign certificates. However, users can choose to get the certificates signed, if the remote Partners require it. Using self-signed certificates incur no additional costs, such as the charges by third party CA’s, which charge fees for certificate signing.

  • If you already have a keystore containing a key-pair and certificate, you may choose to upload it through the From Keystore tab.
  • If you have already imported such a key-pair and certificate previously, you can select that entry from your certificate store through the From Cert Store tab.

Certificate details on create station view

Note: These fields follow the general certificate attributes as defined in RFC 5280.

  1. Specify a common name for the new certificate. This can be your name or domain name; for example, “John Doe” or “”.
  2. Specify your organization unit. This can be something like a division or department name in your organization; for example, “Information Technology”.
  3. Specify your organization. This can be your company name; for example, “Acme Ltd.”.
  4. Specify your city; for example, “Houston”.
  5. Specify a state; for example, “Texas”
  6. Select your country from the drop-down list.
  7. Select a preferred key length.
  8. Select the certificate validity period. Once this period has expired, you would need to regenerate a new certificate and share it with your partners again.
  9. Enter a password for the certificate.

Note: It is recommended to leave the key length at 2048, and the validity at 5 years, unless you have any specific reasons.

Once the certificate configuration is complete, go ahead and submit the form by clicking on the Create button.

2.3 Advanced Options

You can skip this section during the standard set-up.

Refer to the Advanced Options section for details on modifying these.

3 AS2 Station Listing

Once you add the station, you will be directed to the AS2 station listing page, from which you can view the partner configuration of the station just created.

station list view

You can delete a station by clicking the delete icon in the top right corner of the station card. The actions icons at the bottom allows you to

  • manage station details/settings,
  • go to the partner view/configuration of the station, and
  • navigate to the Received, Sent, Queued, Failed and Incomplete messages for the station. navigate to the Received, Sent, Queued, Failed and Incomplete messages for the station.

3.1 Partner Configuration of an AS2 Station

Click on the ‘View Partner Configuration’ button from the action panel of the trading station card. This shows you the configuration that you need to share with your partners.

partner configuration view

If a HTTPS URL is available, you can export the corresponding root TLS/HTTPS certificate in a desired format (PEM or CER).

Under Download Certificate button in Partner Certificate section, you can export your own AS2 certificate in a preferred format.

You can also use the Share Partner Configuration option to quickly share the full configuration with your partner via email:

  • AS2 ID of the station
  • URL to reach/transmit to the station
  • an IP address to whitelist, if applicable (for above URL)
  • station (AS2/S-MIME) certificates as a zip file attachment
  • You can use the Note area to include any additional notes/comments to be included in the email.

AS2 Station: Share Partner Configuration

Now that we have created a trading station, the next step would be to add a partner so that we can start communicating.