I need to create an AS2 connection in BizTalk Server 2006 R2 to communicate with a business partner. I've worked with BizTalk AS2 config before and the BizTalk docs have pretty good walkthroughs about how to configure everything, but they don't talk about how to get/generate a certificate, and I don't have much experience there.
What is the best way to generate a key pair? My basic understanding of the process is that you generate the public and private keys (.pfx file?), install them, export the public key certificate (.cer?) and send it to the partner. The certificate won't be used for HTTPS, only for the AS2 connection, and the partner has stated that it can be self signed (doesn't need a trusted CA?). We trade public key certificates directly with the partner in a secure fashion in the form of .cer files. Is MakeCert an appropriate tool here?
I believe we need to use the same key for both encryption and signing, so according to the docs, the Key Usage attribute of the certificate must include Digital Signature and either Data Encipherment or Key Encipherment.
Thanks!