Fix Pack 8550

WS-Security behavior differences between the full profile and the Liberty profile

The WS-Security constraints that can be added to a web service application in the Liberty profile may behave differently from the same constraints applied to a service in the full profile.

WS-Security enablement and configuration

WS-Security in the Liberty profile is configured by using the WS-SecurityPolicy within the WSDL file of a web service application, and is enabled by adding the wsSecurity-1.1 feature in the server.xml file. WS-Security in the full profile is configured by using a policyset and enabled by attaching a policyset. If you deploy a WS-Security enabled Liberty profile web service application to the full profile, you must create and attach an equivalent policyset and bindings to get the same level of web service security.

WS-Security Policy

Unrecognized elements in the Security headers

Encrypted header

Intermediate non-trusted certificates

Known issues

Not tested and not supported features


Icon that indicates the type of topic Concept topic

Terms and conditions for information centers | Feedback


Timestamp icon Last updated: Monday, 21 April 2014
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=phil&product=was-nd-mp&topic=cwlp_wssec_cxf_diff
File name: cwlp_wssec_cxf_diff.html