[Version 5.0.2 and later]Editing the target service security configuration

Before you begin

Before you can select the security settings that are applied for a target Web service, you must configure the gateway security bindings.

Why and when to perform this task

For each target Web service, you can select the security settings that are applied between the target Web service and the gateway. These settings are specified for each stage of the transmission:

You receive this security settings information from the service requester and from the target service provider - usually in the following form:

To set the security settings that are applied between the target service and the gateway, complete the following steps:

Steps for this task

  1. List the gateway-deployed Web services
  2. Click the name of a Web service in the list.
    A form is displayed that you can use to view and modify the current deployment details for this Web service, and add or remove multiple target services.
  3. In the Target Services section, click the name of a target Web service in the list.
    A form is displayed, containing the same fields that you filled in when you added the target service, and also the following additional fields:
    • Started (a check box).
    • Enable target service security (a check box).
    • Edit target service security configuration.
  4. Select the Edit target service security configuration option.

    The target service security configuration form is displayed. This form is divided into the following sections:

    • Target Service Security Properties (the Actor URI)
    • Target Service Request Security Properties (the Target Actor URI, and the integrity, confidentiality and identification settings)
    • Target Service Response Security Properties (integrity and confidentiality settings)
    • Security bindings (request bindings and response bindings).

    The following comments apply to every section:

    • Help is provided in comments on the form, and in hover-help next to each field.
    • There are no required fields.
    • Many fields are populated by making a selection from a list.

  5. In the Target Service Security Properties section, set the Actor URI.

    If you specify an Actor URI, then only SOAP security headers with this Actor URI are processed.

  6. In the Target Service Request Security Properties section, set the following security levels:
    1. Set the Target Actor URI.

      If you specify a Target Actor URI, then the SOAP security header in the request message has this Actor URI.

    2. Set the Integrity level.
      Set the parts of the outgoing SOAP message that must be signed (the Body, the Timestamp and the Security Token).
    3. Set the Confidentiality level.
      Set the parts of the outgoing SOAP message that must be encrypted (the Body and the Username Token).
    4. Set the Identification level.
      Set the identification methods that will be accepted (None, Basic Authentication , Digital Signature, ID Assertion).
  7. In the Target Service Response Security Properties section, set the following security levels:
    1. Set the Integrity level.
      Set the parts of the response SOAP message that must be signed (the Body and the Timestamp).
    2. Set the Confidentiality level.
      Set whether or not the Body of the response SOAP message must be encrypted.
  8. In the Security bindings section, set the Request bindings and the Response bindings to use.

    You choose these bindings (Signing Information, Encryption Information and Login Binding) from pull-down lists. The available items in these lists are those that you previously entered, as described in Configuring the gateway security bindings.

  9. When you finish editing the target service security configuration, click Apply changes.

Related tasks
Enabling Web Services Security (WS-Security) for the gateway[Version 5.0.2 and later]
Configuring the gateway security bindings[Version 5.0.2 and later]
Editing the service security configuration[Version 5.0.2 and later]
Troubleshooting the Web services gateway



Searchable topic ID:   twsg_security_wss_targetws
Last updated: Jun 21, 2007 9:56:50 PM CDT    WebSphere Application Server for z/OS, Version 5.0.2
http://publib.boulder.ibm.com/infocenter/wasinfo/index.jsp?topic=/com.ibm.websphere.zseries.doc/info/zseries/ae/twsg_security_wss_targetws.html

Library | Support | Terms of Use | Feedback