IBM Sterling B2B: Configuring SB2Bi to connect Microsoft Sharepoint

From Wiki
Draft!!!
Draft!!! 
Draft!!!
Draft!!! 
Draft!!!
Draft!!! 
Draft!!!
Draft!!! 

SharePoint setup

1) MS Sharepoint: Create a site,

2) MS Sharepoint: Setup Permissions on MS EntraID for Restapi


The SharePoint administrator must provide the following:

  • Tenant ID
  • Application ID


These values are required to configure the SharePointClient Adapter.

3) Obtain the directory ID and application ID:

  1. Open the Microsoft Entra admin center Home page.
  2. Browse to Entra ID > App registrations, then select your application.
  3. On the app's overview page, copy the Directory (tenant) ID value and store it in your application code.
  4. Copy the Application (client) ID value and store it in your application code.

4) Upload a trusted certificate issued by a certificate authority

To upload the certificate file:

  1. Browse to Entra ID > App registrations, then select your application.
  2. Select Certificates & secrets.
  3. Select Certificates, then select Upload certificate and then select the certificate file to upload.
  4. Select Add. Once the certificate is uploaded, the thumbprint, start date, and expiration values are displayed.

After registering the certificate with your application in the application registration portal, enable the confidential client application code to use the certificate.

Importing Certificates into Sterling B2Bi=

We need to import the Intermediate and Root certificates from the following domains:

  • login.microsoft.com
  • MY_SHAREPOINT.sharepoint.com

These certificates were then added to the CA store.

1) Retrieve and Convert Certificates using OpenSSL

Use the command below to retrieve the certificate chain:

openssl s_client -connect login.microsoft.com:443 -showcerts </dev/null \
 | awk '/-----BEGIN CERTIFICATE-----/,/-----END CERTIFICATE-----/{print > ("cert" ++i ".pem")}'


This will generate files like `cert1.pem`, `cert2.pem`, etc., for each certificate in the chain.

2) Import Certificates into Java KeyStore (JKS)

keytool -importcert -trustcacerts -keystore truststore.jks -storepass changeit -alias login_cert1 -file cert1.pem

Repeat the `keytool` command for each `cert*.pem` file, using different aliases (e.g., `login_cert2`, etc.).


2. Creating System Certificate

A system certificate was created in IBM B2Bi.

The public part of this certificate was shared with the SharePoint team, who added it to their trusted certificates.

Sterling B2Bi: Setup SharePointClient Adapter Configuration

The adapter was configured with the following parameters:

  • SharePoint URL: https://MY_SHAREPOINT.sharepoint.com
  • Tenant ID: As provided by your SharePoint administrator
  • Application ID: As provided by your SharePoint administrator
  • System Certificate: (he one created in Step 2
  • Site Name: SFG-MSP
  • Document Library: sfg_ReasonsList
  • Proxy Server: No
  • CA Certificate: All certificates captured in Step 1 and imported into the truststore
  • Min Thread / Max Thread / Timeout / ReadTimeout: Configure according to system performance and usage needs

Please ensure all certificates and IDs are valid and tested to avoid connection or authentication issues.

Ver também