Web Services Security property configuration settings
Use this page to configure additional security properties.
You can view a Web Services Security property configuration settings panel at the cell level.
Complete the following steps to view one of these administrative console pages:
- Click .
- Under JAX-RPC Default Generator Bindings or JAX-RPC Default Consumer Bindings, click .
Property Name
Specifies the name of the property.
Information | Value |
---|---|
Data type: | String |
Property Value
Specifies the value for the property.
Information | Value |
---|---|
Data type: | String |
The following table lists the properties that you can configure by using the Web Services
Security property panels.
Configuration panel name | Property name | Property value | Description |
---|---|---|---|
JAAS configuration | com.ibm.wsspi.wssecurity. token.X509.issuerName | Specify the SubjectDN or the IssuerDN of the issuer for the X.509 certificate. | This property is used to specify the issuer of the certificate in the token consumer component. |
JAAS configuration | com.ibm.wsspi.wssecurity. token.X509.issuerSerial | Specify the serial number of the X.509 certificate. | This property is used to specify the serial number of the certificate in the token consumer component. |
Key information | com.ibm.wsspi.wssecurity. keyinfo.EncodingNS | Specify the namespace Uniform Resource Identifier (URI) for the qualified name (QName). | This property is used to specify the namespace URI part of the QName that represents the encoding method. |
Properties | com.ibm.ws.wssecurity.handler. hardwareCacheEntryRefreshHours | Specify a numeric value from 1 to 24 that represents the number of hours that a temporary key is valid. | This property is used to specify the amount of time before a key is retranslated. Temporary keys outside the keystore typically expire in a short period of time, measured in days or hours. If the server is configured to use a hardware acceleration card, but not the hardware keystore, you can configure it to translate the temporary keys periodically before they expire. If this property is not set , a key will be retranslated after 8 hours. Setting this value to 0 disables retranslation. |
Request generator and Response generator | com.ibm.wsspi.wssecurity. timestamp.SOAPHeaderElement | Specify 1 or true. | This property is used with the Add nonce option to set the mustUnderstand flag in the deployment descriptor. |
Request generator and Response generator | com.ibm.wsspi.wssecurity. timestamp.dialect |
The default value is dialect-was. See the com.ibm.wsspi.wssecurity Interface Constants for more information about the values that can be specified. |
This property is used in conjunction with the
The
property is used to place the timestamp header in a specific position in a message. |
Signing information | com.ibm.wsspi.wssecurity. dsig.dumpPath | Specify the path used to locate the output file. | This property is used to specify an output file for dumping the target UTF-8 binary data before signing and verifying messages. |
Token generator | com.ibm.wsspi.wssecurity. token.username.timestampExpires | Specify 1 or true. | This property is used to specify an expiration date for the user name token. |
Transform algorithms | com.ibm.wsspi.wssecurity. dsig.XPathExpression |
|
This property is used with this algorithm:
|