Before you begin
Before you begin this task, configure the key locators and the token consumers that are referenced by the Key locator reference and Token reference fields within the key information panel.Why and when to perform this task
This task provides the steps needed for configuring the key information for the request generator (client side) and the response generator (server side) bindings at the application level. The key information is used to specify the configuration needed to generate the key for digital signature and encryption. The signing information and the encryption information configurations can share the key information, which is why they are both defined at the same level.Complete the following information to configure the key information for the generator binding on the application level:
Steps for this task
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <wsse:SecurityTokenReference> <wsse:KeyIdentifier ValueType="wsse:X509v3">/62wXO...</wsse:KeyIdentifier> </wsse:SecurityTokenReference> </ds:KeyInfo>
<ds:KeyInfo> <ds:KeyName>CN=Group1</ds:KeyName> </ds:KeyInfo>
<ds:KeyInfo> <wsse:SecurityTokenReference> <wsse:Reference URI="#mytoken" /> </wsse:SecurityTokenReference> </ds:KeyInfo>
<ds:KeyInfo> <wsse:SecurityTokenReference> <wsse:Embedded wsu:Id=”tok1” /> … </wsse:Embedded> </wsse:SecurityTokenReference> </ds:KeyInfo>
<ds:KeyInfo> <wsse:SecurityTokenReference> <ds:X509Data> <ds:X509IssuerSerial> <ds:X509IssuerName>CN=Jones, O=IBM, C=US</ds:X509IssuerName> <ds:X509SerialNumber>1040152879</ds:X509SerialNumber> </ds:X509IssuerSerial> </ds:X509Data> </wsse:SecurityTokenReference> </ds:KeyInfo>
Result
You have configured the key information for the generator binding at the application levelWhat to do next
You must specify a similar key information configuration for the consumer.Related tasks
Configuring the key information for the consumer binding on the application
level
Configuring the signing information for the generator binding on the
application level
Configuring the key locator for the generator binding on the application
level
Configuring the token generator on the application level
Securing Web services for version 6.0.x applications based on WS-Security