[Fix Pack 9 or later]

Configuring client and provider bindings for the SAML sender-vouches token

Configure the client and provider policy set attachments and bindings for the SAML sender-vouches token, which includes the sender-vouches confirmation method. The sender-vouches confirmation method is used when a server needs to propagate the client identity or behavior of the client.

Before you begin

This function is enabled in WebSphere® Application Server Version 7.0.0.9 and later releases. To use the function, you must first install WebSphere Application Server Version 7.0.0.9, which includes SAML sender-vouches support. After installing Version 7.0.0.9, you must create one or more new server profiles, or add SAML configuration settings to an existing profile. For example, in a WebSphere Application Server, Network Deployment environment, there are multiple profiles. Read about setting up the SAML configuration for more information. The sender-vouches token must be protected using either message-level security or HTTPS transport. Therefore, you must determine which type of security you want to use.

About this task

WebSphere Application Server with SAML provides numerous default SAML token application policy sets and several general client and provider binding samples. The policy set for the SAML sender-vouches token is similar to the SAML bearer token policy set. The procedure shows how to create a sender-vouches policy set based on the attached SAML bearer token policy set. Before you can configure the client and provider bindings for the SAML sender-vouches token, you must attach SAML bearer token client and provider bindings to the JAX-WS application. For more information about the bearer policy sets, read about configuring client and provider bindings for the SAML bearer token.

You must use application-specific custom bindings instead of general bindings for sender-vouches. Therefore, if you configure sender-vouches policy sets and bindings from attached bearer token policy sets and bindings, you must ensure that the assigned bindings are application-specific bindings.

The procedure for creating the sender-vouches policy set begins with attaching the Web services bearer token policy sets.

Procedure

Complete the associated steps to configure the selected protection method. Follow the first set of steps to protect messages using message-level security, or follow the second set of steps to protect messages using HTTPS transport.



In this information ...


IBM Redbooks, demos, education, and more

(Index)

Use IBM Suggests to retrieve related content from ibm.com and beyond, identified for your convenience.

This feature requires Internet access.

Task topic    

Terms of Use | Feedback

Last updated: Oct 21, 2010 1:44:59 AM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=compass&product=was-express-dist&topic=configsamlsendervouches
File name: twbs_configsamlsendervouches.html