Use this page to view a
list of trusted identity (ID) evaluators.
The trusted ID evaluator determines whether to trust the identity-asserting
authority. After the ID is trusted, the application server issues
the proper credentials based on the identity, which are used in a
downstream call for invoking resources. The trusted ID evaluator implements
the com.ibm.wsspi.wssecurity.id.TrustedIDEvaluator interface.
This administrative console page applies only
to Java API for XML-based RPC (JAX-RPC) applications.
To view this administrative console page for trusted ID
evaluators
on the server level, complete the following steps:
- Click .
- Under Security, click JAX-WS and JAX-RPC security runtime.
Mixed-version environment: In a mixed node cell with a server using Websphere
Application Server version 6.1 or earlier, click
Web services:
Default bindings for Web Services Security.
mixv
- Under
Additional properties, click Trusted ID evaluators.
- Click New to create a trusted ID evaluator
or click Delete to a delete a trusted ID evaluator.
To view this administrative console page for trusted ID
evaluators
on the application level, complete the following steps:
- Click .
- Under Modules, click .
- Under Web Services Security Properties, click Web services:
Server security bindings.
- Under Request receiver
binding, click Edit.
- Click Trusted
ID evaluators.
- Click New to
create a trusted ID evaluator
or click Delete to delete a trusted ID evaluator.
Important: Trusted
ID evaluators are only required for the request consumer (Version
6.x applications), if identity assertion is configured.
Using this trusted ID evaluator collection panel, complete the
following steps:
- Specify a trusted ID evaluator name and a
trusted ID evaluator
class name.
- Save your changes by clicking Save in
the
messages section at the top of the administrative console.
- Click Update
run time to update the Web
Services Security run time with the default binding information, which
is found in the ws-security.xml file. The configuration
changes made to the other web services also are updated in the Web
Services Security run time.