Why and when to perform this task
The key locator information for the default generator bindings specifies which key locator implementation is used to locate the key that is used for signature and encryption information if these bindings are not defined at the application level. The key locator information for the default consumer bindings specifies which key locator implementation is used to locate the key that is used for signature validation or decryption if these bindings are not defined at the application level. WebSphere Application Server provides default values for the bindings. However, you must modify the defaults for a production environment.
Complete the following steps to configure the key locator on the server or cell level:
Steps for this task
For example, you might specify the com.ibm.wsspi.wssecurity.keyinfo.KeyStoreLeyLocator implementation if you need the configuration to be the key locator for signing information.
You must use a fully qualified distinguished name for the key name. For example, you might use CN=Bob,O=IBM,C=US.
Result
You have configured the key locator for the server or cell level.What to do next
Configure the key information for the default generator and the default consumer bindings that reference this key locator.