WS-Security authentication and protection for application specific bindings
Use the links on this page to configure authentication, signature, and encryption information that the policy requires when using application specific bindings.
You can configure application specific bindings for tokens and message parts that are required by the policy set.
- Click .
- Select an application that contains web services. The application must contain a service provider or a service client.
- Click the Service provider policy sets and bindings link or the Service client policy sets and bindings in the Web Services Properties section.
- Select a binding. You must have previously attached a policy set and assigned a application specific binding.
- Click the WS-Security policy in the Policies table.
- Click the Authentication and protection link in the Main message security policy bindings section.
이 관리 콘솔 페이지는 JAX-WS(Java™ API for XML Web Services) 애플리케이션에만 적용됩니다.
Disable implicit protection for Signature Confirmation
Specifies whether implicit protection of the SignatureConfirmation element is enabled or disabled.
The explicitlyProtectSignatureConfirmation attribute in the Web Services Security binding is provided to disable implicit signature and encryption of the SignatureConfirmation element on the response message. If this checkbox is selected, the attribute is added and implicit protection is disabled. This provides interoperability with earlier versions of WebSphere® Application Server.
Information | Value |
---|---|
Default: | Not selected (implicit protection is enabled) |
Protection tokens – Protection token name
Specifies a list of protection tokens that can be configured in the Protection tokens table for application specific bindings.
Button | Resulting Action |
---|---|
Unconfigure | Removes the selected protection token from the binding. |
Protection tokens – Protection token type
Specifies the protection token type for application specific bindings.
Protection tokens – Usage
Specifies the policy assertion usage names that you can customize in the Protection tokens table.
- Asymmetric encryption generator
- Asymmetric encryption consumer
- Asymmetric signature generator
- Asymmetric signature consumer
- Symmetric encryption generator
- Symmetric encryption consumer
- Symmetric signature generator
- Symmetric signature consumer
Protection tokens – Status
Specifies the status of the protection token when using application specific bindings. The valid values are configured, not configured, or incompatible.
Authentication tokens – Security token reference
Specifies a list of authentication tokens that you can customize in the Authentication tokens table when using application specific bindings.
Button | Resulting Action |
---|---|
Unconfigure | Removes the selected authentication token from the binding. |
Authentication tokens – Authentication token type
Specifies the authentication token type for the security token reference when using application specific bindings.
Authentication tokens – Usage
Specifies the usage names from the Authentication tokens table for application specific bindings.
- Inbound request
- Outbound request
- Inbound response
- Outbound response
Authentication tokens – Status
Specifies the status of the authentication token form the Authentication tokens table for application specific bindings. The valid values are configured, not configured, or incompatible.
Request message signature and encryption protection – Request message part reference
Specifies the name of the request message part in the policy from the Request message signature and encryption protection table that is protected.
Button | Resulting Action |
---|---|
Unconfigure | Removes the selected request message part from the binding. |
Move up | Moves the selected request message part up in the order. |
Move down | Moves the selected request message part down in the order. |
Request message signature and encryption protection – Protection
Specifies the type of protection from the Request message signature and encryption protection table. This field displays the type of protection enabled for the application specific binding.
Request message signature and encryption protection – Order
Specifies the order in which signatures and encryptions occur when using service client policy sets and bindings. Use the Move up and Move down actions to order the list of protection types in this table.
Request message signature and encryption protection – Status
Specifies the status of the request message signature and encryption protection token when using application specific bindings. The valid values are configured, not configured, or incompatible.
Response message signature and encryption protection – Response message part reference
Specifies the name of the response message part in the policy from the Response message signature and encryption protection table that is protected.
Button | Resulting Action |
---|---|
Unconfigure | Removes the selected response message part from the binding. |
Move up | Moves the selected response message part up in the order. |
Move down | Moves the selected response message part down in the order. |
Response message signature and encryption protection – Protection
Specifies the type of protection enabled from the Response message signature and encryption protection table. This field displays the type of protection enabled for the response message part.
Response message signature and encryption protection – Order
Specifies the order in which signatures and encryptions occur when using service provider policy sets and bindings. Use the Move up and Move down actions to order the list of protection types in this table.
Response message signature and encryption protection – Status
Specifies the status of the response message signature and encryption protection token when using application specific bindings. The valid values are configured, not configured, or incompatible.