Custom keystore settings
Use this page to configure custom keystore files. Custom keystore files are alternatives to the key management support built into the WebSphere® Application Server. The callback handler uses the custom version of the keystore configuration that includes keys.
You can configure custom keystore files for message parts when you are editing a default cell or server binding. You can also configure application specific bindings for tokens and message parts that are required by the policy set.
- Click .
- Click the WS-Security policy in the Policies table.
- Click the Authentication and protection link in the Main message security policy bindings section.
- Click a protection_token link in the Protection tokens table.
- Click the Callback handler link in the Additional bindings section.
- Select Custom from the list in the Keystore section.
- Click the Custom keystore configuration link.
- Click .
- Select an application that contains web services. The application must contain a service provider or a service client.
- Click the Service provider policy sets and bindings link or the Service client policy sets and bindings in the Web Services Properties section.
- Select a binding. You must have previously attached a policy set and assigned a application specific binding.
- Click the WS-Security policy in the Policies table.
- Click the Authentication and protection link in the Main message security policy bindings section.
- Click a protection_token link in the Protection tokens table.
- Click the Callback handler link in the Additional bindings section.
- Select Custom from the list in the Keystore section.
- Click the Custom keystore configuration link.
這個管理主控台頁面只適用於 Java™ API for XML Web Services (JAX-WS) 應用程式。
Keystore
Use this section to specify information about the custom keystores.
Full path
Specifies the full path to where the keystore file is located. Enter the path to the keystore file in this required field. You can use system variables for portions of the path. For example you might enter ${USER_INSTALL_ROOT}/etc/ws-security/myKeyStore.jks. This field is required for the custom keystore configuration.
Type
Specifies the type of the keystore file to use.
Password
Specifies the password to use.
Confirm password
Specifies the password to be use and confirms the one entered in the Password field.
Key
Use this section to specify information about the key.
Name
Specifies the name of the key to use. Enter the name of the key to be used in this required field.
Alias
Specifies the alias name of the key that you want to use. Enter the alias of the name of the key to use in this required field.
Password
Specifies the password for the key that you want to use.
Client or server | Asymmetric value | Key |
---|---|---|
client | asymmetric signature outbound | AsymmetricBindingInitiatorSignatureToken0 |
client | asymmetric encryption inbound | AsymmetricBindingInitiatorEncryptionToken0 |
server | asymmetric signature outbound | AsymmetricBindingRecipientSignatureToken0 |
server | asymmetric encryption inbound | AsymmetricBindingRecipientEncryptionToken0 |
Confirm password
Specifies the confirmation of the password for the key that you want to use. Enter the password that you entered in the Password field to confirm.
Similar to the Password field, you cannot confirm the password for public keys for asymmetric signature inbound and encryption outbound.