You can configure the encryption information for the generator
binding on the server or cell level.
Before you begin
About this task
The encryption information for the default generator specifies
how to encrypt the information on the sender side if these bindings
are not defined at the application level. WebSphere Application Server
provides default values for the bindings. However, an administrator
must modify the defaults for a production environment.
Complete the
following steps to configure the encryption information for the generator
binding on the server level:
Procedure
- Access the default bindings for the server level.
- Click Servers > Application servers > server_name .
- Under Security, click Web services: Default bindings
for Web services security.
- Under Default generator bindings, click Encryption information.
- Click New to create an encryption information configuration,
click Delete to delete an existing configuration, or click
the name of an existing encryption information configuration to edit
the settings. If you are creating a new configuration,
enter a unique name for the encryption configuration in the Encryption
information name field. For example, you might specify gen_encinfo.
- Select a data encryption algorithm from the Data encryption
algorithm field. This algorithm is used to encrypt the
data. WebSphere Application Server supports the following pre-configured
algorithms:
Important: Your country of origin
might have restrictions on the import, possession, use, or re-export
to another country, of encryption software. Before downloading or
using the unrestricted policy files, you must check the laws of your
country, its regulations, and its policies concerning the import,
possession, use, and re-export of encryption software, to determine
if it is permitted.
The data encryption algorithm that you select for the generator
side must match the data encryption algorithm that you select for
the consumer side.
- Select a key encryption algorithm from the Key encryption
algorithm field. This algorithm is used to encrypt the
key. WebSphere Application Server supports the following pre-configured
algorithms:
If you select None, the key is not encrypted.
The
key encryption algorithm that you select for the generator side must
match the key encryption algorithm that you select for the consumer
side.
- Select a encryption key configuration from the Encryption
key information field. This attribute specifies the name
of the key that is used to encrypt the message. To configure the key
information, see Configuring the key information for the generator binding on the server level.
- Click OK and then click Save to save the
configuration.
Results
You have configured the encryption information for the generator
binding at the server or cell level.
What to do next
You must specify a similar encryption information configuration
for the consumer.