Creating and managing lists of certificates and SWIFTNet services

An SAG contains certificates that specify DNs. You can use FTM SWIFT to create and maintain lists of these certificates, and to associate one such certificate list with each message partner.

Each message specifies the DNs of the users on whose behalf the message is to be transferred. You can use FTM SWIFT to create and maintain lists of SWIFTNet services, and associate one such service list with each message partner. An SAG allows a message partner to transfer messages only to those SWIFTNet services contained in that list. If no service list is associated with a message partner, that message partner can exchange messages with any SWIFTNet service.

To create, manage, and use certificate and service lists:

  1. Create a certificate list by issuing the addCert command and specifying the name of the first certificate that the list is to contain. This command is described in addCert. Issue the following commands as needed to maintain the list:
    • Issue the addCert command to add additional certificates to the list.
    • Issue the updateCert command, described in updateCert, to change a certificate in the list.
    • Issue the deleteCert command, described in deleteCert, to delete a certificate from the list. If the deleted certificate is the last in the list, the list is also deleted.
    You can issue the following commands to obtain information about certificate lists:
    • To list all certificate lists, issue the listCertLists command, which is described in listCertLists.
    • To list the certificates contained in a certificate list, issue the readCertList command, which is described in readCertList.
  2. Create a service list by issuing the addService command and specifying the name of the first service that the list is to contain. This command is described in addService. Issue the following commands as needed to maintain the list:
    • Issue the addService command to add additional services to the list.
    • Issue the updateService command, described in updateService, to change a service in the list.
    • Issue the deleteService command, described in deleteService, to delete a service from the list. If the deleted service is the last in the list, the list is also deleted.
    You can issue the following commands to obtain information about service lists:
    • To list all service lists, issue the listServiceLists command, which is described in listServiceLists.
    • To list the services contained in a service list, issue the readServiceList command, which is described in readServiceList.

You specify the names of the certificate and service lists when you create the message partner as described in Configuring message partners. The creation of a new list or changes to an existing list do not become effective for an SAG until its configuration is approved and deployed as described in Approving and deploying SAG configuration data. To find out which SAGs are associated with (and therefore affected by a change to) a certificate or service list, issue the listCertLists or listServiceLists command.

The examples in Examples of how to configure an SAG illustrate how to configure lists of certificates.