Enabling cryptographic keys stored in hardware devices in Web Services Security

You can enable individual web service applications to use cryptographic keys stored in hardware devices in Web Services Security.

Before you begin

You must first configure the hardware acceleration device using the key management panels in the administrative console. See Configuring hardware cryptographic devices for Web Services Security

Procedure

  1. In the administrative console, click Servers > Server types > WebSphere application servers and then select the server name.
  2. Under Security, click JAX-WS and JAX-RPC security runtime.
  3. Under Additional properties, click key locators.
  4. Select the key locator name.
  5. Under Key store, specify the name of the keystore configuration.

    If the keystore reference is specified to a hardware device configuration, the Web Services Security runtime first attempts to obtain the cryptographic algorithm from the hardware device. If the hardware device is not supported or if it fails, the runtime for Web Services Security obtains the cryptographic algorithm from the security providers list. Read about creating a keystore configuration for a preexisting keystore file for more information about how to create the name of a keystore configuration.

  6. Click OK.

Results

If the name of the keystore reference is a Java keystore file, a hardware acceleration device that is configured at the application server level (ws-security.xml) will be used for cryptographic operations.



In this information ...


IBM Redbooks, demos, education, and more

(Index)

Use IBM Suggests to retrieve related content from ibm.com and beyond, identified for your convenience.

This feature requires Internet access.

Task topic Task topic    

Terms and conditions for information centers | Feedback

Last updatedLast updated: Jan 30, 2014 9:17:32 AM CST
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=matt&product=was-nd-iseries&topic=twbs_enable_harddev
File name: twbs_enable_harddev.html