Hello,
We are facing a weird situation for few trading partners when they send EDIINT to us. Our Public and Intermediate certificate is SHA-256, however the Root certificate is SHA-1 signed. Trading partner uses Colo AS2 software to send to us. The inbound request to us is Encrypted, signed and receipt requested. MDN Receipt is signed and MIC algorithm is SHA-1.
When the partner uses the above mentioned configuration settings to send to us EDIINT everything works fine. However as we are on SHA-256, we are wanting partner to use MIC algorithm of SHA-256 when sending us. When they use SHA-256, we receive “insufficient-message-security” in MWS transaction. I’m trying to understand on why the communication is still working fine when it is set to SHA-1 though our public certificate is SHA-256 and errors seen when used SHA-256 algorithm.
Any information related to this topic is much appreciated.
#edi#Integration-Server-and-ESB#webMethods