To use pluggable tokens to secure your Web services, you must configure
both the client request sender and the server request receiver. You can configure
your pluggable tokens using the WebSphere® Application Server administrative
console.
About this task
Important: There is an important distinction between
Version 5.x and Version 6.0.x and later applications. The information
in this article supports Version 5.x applications only that are used
with WebSphere Application
Server Version 6.0.x and later. The information does not apply to Version
6.0.x and later applications.
WebSphere Application Server provides
several different methods to secure your Web services. A pluggable token is
one of these methods. You might secure your Web services by using any of the
following methods:
- XML digital signature
- XML encryption
- Basicauth authentication
- Identity assertion authentication
- Signature authentication
- Pluggable token
Complete the following steps to secure your Web services using a
pluggable token: