Modifying an existing WS-Security configuration

You can add or modify the configuration details for a WS-Security configuration that is configured for use with service integration bus-enabled web services. You use WS-Security configurations to secure the SOAP messages that pass between service requesters (clients) and inbound services, and between outbound services and target web services.

About this task

WS-Security configurations specify the level of security that you require (for example "The body must be signed"). This level of security is then implemented through the run-time information contained in a WS-Security binding. You receive the security configuration information direct from the service requester or target service provider, in the form of an ibm-webservicesclient-ext.xmi file for the client, and an ibm-webservices-ext.xmi file for the target web service, which contain the information about the levels of security (integrity, confidentiality and identification) that are required. You extract the information from these .xmi files, then manually enter it into the WS-Security configuration forms.

Configurations are administered independently from any web service that uses them, so you can create a configuration then apply it to many web services. However, the security requirements for an inbound service (which acts as a target web service) are significantly different to those required for an outbound service (which acts as a client). Consequently, configurations are further divided by service type (inbound or outbound).

To list the WS-Security configurations, and to view and modify their configuration details, complete the following steps:

Procedure

  1. Start the administrative console.
  2. In the navigation pane, click 服務整合 -> Web 服務 -> WS-Security 配置. A list of WS-Security configurations is displayed in a WS-Security service configurations collection form.

    Each available configuration is flagged as either Inbound or Outbound. You use an inbound configuration to secure the SOAP messages that pass between a service requester (client) and an inbound service (which acts as a target web service). You use an outbound configuration to secure the SOAP messages that pass between an outbound service (which acts as a client) and a target web service.

    Each available configuration is also flagged as complying with either the Web Services Security (WS-Security) 1.0 specification or the WS-Security Draft 13 specification.
    Note:WebSphere® Application Server 6.0 版中,已淘汰「WS-Security 初稿 13」的使用。「WS-Security 初稿 13」已淘汰,它只應該用在容許繼續使用遵循「WS-Security 初稿 13」規格來撰寫的現有 Web 服務用戶端應用程式。
  3. Click the name of a WS-Security configuration in the list. The current settings for this WS-Security configuration are displayed.
  4. Modify the configuration details for this WS-Security configuration. For detailed reference information about each value that you can set, click on the associated link in the following table:
  5. 儲存對主要配置所做的變更。

Results

If the processing completes successfully, the list of WS-Security configurations is redisplayed. Otherwise, an error message is displayed.

指出主題類型的圖示 作業主題



時間戳記圖示 前次更新: July 9, 2016 11:16
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=cord&product=was-nd-mp&topic=tjw_wss_conf_config
檔名:tjw_wss_conf_config.html