Signing parameter configuration settings
Use this page to configure new signing parameters.
The specifications listed on this page for the signature method, digest
method, and canonicalization method are located in the World Wide Web Consortium
(W3C) document entitled, XMLSignature Syntax and Specification: W3C Recommendation
12 Feb 2002.
To view this administrative console page, complete the following steps:
- Click Enterprise Applications > application_name.
- Under Related Items, click Web Modules > URI_file_name > Web
Services: Client Security Bindings.
- In the Request Sender Binding column, click Edit > Signing Information.
If the signing information is not available, select None.
If the signing information is available, select Dedicated Signing Information and
specify the configuration in the following fields:
- Signature Method
- Specifies the algorithm Uniform Resource Identifiers (URI) of the
signature method. This method contains the actual value of the digital signature
encoded using base64.
The following algorithms are supported:
- http://www.w3.org/2000/09/xmldsig#rsa-sha1
- http://www.w3.org/2000/09/xmldsig#dsa-sha1
- Digest Method
- Specifies the algorithm URI of the digest method.
The http://www.w3.org/2000/09/xmldsig#sha1 algorithm is supported.
- Canonicalization Method
- Specifies the algorithm URI of the canonicalization method.
The following algorithms are supported:
- http://www.w3.org/2001/10/xml-exc-c14n#
- http://www.w3.org/2001/10/xml-exc-c14n#WithComments
- http://www.w3.org/TR/2001/REC-xml-c14n-20010315
- http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments
- Signing Key
- Specifies the key information that is used for signing. These fields
are ignored in receiver-side configuration.
If the signing key is not available, select None.
- Certificate Path
- Specifies the settings for the certificate path validation. When
you select Trust Any, this validation is skipped and all the incoming
certificates are trusted. These fields are ignored in sender-side configuration.
If there is not a certificate path, select None.
If there is a certificate path, select Trust Any or select a Trust
Anchor and a Certificate Store.
Trust Anchor
Specify the selections for the Trust Anchor field by clicking Servers
> Application Servers > server_name. Under Additional Properties,
click Web Services: Default bindings for Web Services Security > Trust
Anchors.
Certificate Store
Specify the selections for the Collection Store field by clicking Servers
> Application Servers server_name. Under Related Items, click Web
Services: Default bindings for Web Services Security > Collection Certificate
Store.

Request sender binding collection
Searchable topic ID:
uwbs_wsclientsign
Last updated: Jun 21, 2007 4:12:58 PM CDT
WebSphere Application Server Express, Version 5.0.2
http://publib.boulder.ibm.com/infocenter/wasinfo/index.jsp?topic=/com.ibm.websphere.exp.doc/info/exp/ae/uwbs_wsclientsign.html