Use this page to view a list of trusted identity (ID) evaluators.
The trusted ID evaluator determines whether to trust the identity-asserting
authority. After the ID is trusted, the application server issues the proper
credentials based on the identity, which are used in a downstream call for
invoking resources. The trusted ID evaluator implements the com.ibm.wsspi.wssecurity.id.TrustedIDEvaluator
interface.
This administrative console panel applies
only to Java™ API for XML-based RPC (JAX-RPC)
applications.
To view this administrative console page for trusted ID
evaluators on the cell level, complete the following steps:
- Click Security > JAX-WS and JAX-RPC security runtime.
- Under Additional properties, click Trusted ID evaluators.
- Click New to create a trusted ID evaluator or click Delete to
delete a trusted ID evaluator.
To view this administrative console page for trusted ID evaluators on the
server level, complete the following steps:
- Click server_name.
- Under Security, click JAX-WS and JAX-RPC security runtime.
Mixed-version environment: In a mixed node cell with a server using Websphere Application
Server version 6.1 or earlier, click
Web services: Default bindings
for Web services security.
mixv
- Under Additional properties, click Trusted ID evaluators.
- Click New to create a trusted ID evaluator or click Delete to
a delete a trusted ID evaluator.
To view this administrative console page for trusted ID evaluators on the
application level, complete the following steps:
- Click .
- Under Modules, click Manage Modules > URI_name.
- Under Web Service Security Properties, click Web services: Server security
bindings.
- Under Request receiver binding, click Edit.
- Click Trusted ID evaluators.
- Click New to create a trusted ID evaluator or click Delete to
delete a trusted ID evaluator.
Important: Trusted ID evaluators
are only required for the request receiver (Version 5.x applications) and
the request consumer (Version 6.0.x applications), if identity assertion is
configured.
Using this trusted ID evaluator collection panel, complete the following
steps:
- Specify a trusted ID evaluator name and a trusted ID evaluator class name.
- Save your changes by clicking Save in the messages section at the
top of the administrative console.
- Click Update run time to update the Web services security run time
with the default binding information, which is found in the ws_security.xml file.
The configuration changes made to the other Web services also are updated
in the Web services security run time.