[Version 5 only]WebSphere Application Server - Express, Version 6.0.x     Operating Systems: AIX, HP-UX, Linux, Solaris, Windows

Configuring the server-side collection certificate store using an assembly tool

Why and when to perform this task

Important distinction between Version 5.x and Version 6.0.x applications
Note: The information in this article supports version 5.x applications only that are used with WebSphere Application Server Version 6.0.x. The information does not apply to version 6.0.x applications.

A collection certificate store is a collection of non-root, certificate authority (CA) certificates and certificate revocation lists (CRLs). This collection of CA certificates and CRLs are used to check the signature of a digitally signed SOAP message.

You can configure the collection certificate either by using an assembly tool or the WebSphere Application Server administrative console. Complete the following steps to configure the server-side collection certificate store using an assembly tool.

Steps for this task

  1. Start an assembly tool. For more information on the assembly tools, see Assembly tools.
  2. Click Windows > Open perspective > Other > J2EE.
  3. Click EJB projects > application_name > ejbModule > META-INF
  4. Right-click the webservices.xml file, select Open with > Web Services Editor.
  5. Click the Binding configurations tab in the Web services editor within the assembly tool. The Web Service Binding Configuration window is displayed.
  6. Select one of the Web service description binding entries under the Port Component Binding section.
  7. Expand the Request receiver binding configuration details > Certificate store list > Collection certificate store section.
  8. Click Add to create a new collection certificate store, click Edit to edit an existing certificate store, or click Remove to delete an existing certification store.
  9. Enter a name in the Name field. This name is referenced in the Certificate store reference field in the Signing info dialog.
  10. Leave the Provider field as IBMCertPath.
  11. Click Add to enter the path to your certificate store. For example, the path might be: ${USER_INSTALL_ROOT]/etc/ws-security/samples/intca2.cer. If you have additional certificate store paths, click Add to add the paths.
  12. Click OK when you finish adding paths.



Related tasks
Configuring the client-side collection certificate store using an assembly tool
Configuring the client-side collection certificate store using the administrative console
Securing Web services for version 5.x applications using XML digital signature

Task topic    

Terms of Use | Feedback

Last updated: Jun 8, 2005 12:45:23 PM EDT
http://publib.boulder.ibm.com/infocenter/wasinfo/v6r0/index.jsp?topic=/com.ibm.websphere.express.doc/info/exp/ae/twbs_confclcertsvrastk.html

© Copyright IBM Corporation 2003, 2005. All Rights Reserved.
This information center is powered by Eclipse technology. (http://www.eclipse.org)