To use pluggable tokens to secure your web services, you
must configure both the client request sender and the server request
receiver. You can configure your pluggable tokens using the WebSphere® Application Server administrative
console.
About this task
Important: There is an important distinction
between Version 5.x and Version 6.0.x and later applications.
The information in this article supports Version 5.x applications
only that are used with WebSphere Application Server
Version 6.0.x and later. The information does not apply to
Version 6.0.x and later applications.
WebSphere Application
Server provides several different methods to secure your web services.
A pluggable token is one of these methods. You might secure your Web
services by using any of the following methods:
- XML digital signature
- XML encryption
- Basicauth authentication
- Identity assertion authentication
- Signature authentication
- Pluggable token
Complete the following steps to secure your web services
using a pluggable token: