Configure the client for basic authentication: Specifying the methodBasicAuth refers to the user ID and password of a valid user in the registry of the target server. Collection of BasicAuth information can occur in many ways including through a GUI prompt, a standard in (Stdin) prompt, or specified in the bindings, which prevents user interaction. For more information on BasicAuth authentication, see: BasicAuth authentication method.
Note that WebSphere Application Server supports nonce (randomly generated token) with BasicAuth authentication. For more information, see Nonce.
Complete the following steps to specify BasicAuth as the authentication method...
- Launch the Assembly Toolkit.
- Open the J2EE perspective by clicking Window > Open Perspective > Other > J2EE.
- Select the Web services enabled Enterprise JavaBean (EJB) module or Web module.
- In the Project Navigator window, locate the META-INF directory for an EJB module or the WEB-INF directory for a Web module.
- Right-click the webservicesclient.xml file, and click Open With > Web Services Client Editor.
- Click the Security Extensions tab, which is located at the bottom of the Web services client editor within the Assembly Toolkit.
- Expand the Request Sender Configuration > Login Configuration section. The only valid login configuration choices for a pure client are BasicAuth and Signature.
- Select BasicAuth to authenticate the client using a user ID and a password.This user ID and password must be specified in the target user registry. The other choice, Signature, attempts to authenticate the client using the certificate used to digitally sign the message.
For more information on getting started with the Web services client editor within the Assembly Toolkit, see either of the following topics...
- Configuring the client security bindings using the Assembly Toolkit
- Configuring the security bindings on a server acting as a client using the administrative console
After you specify the BasicAuth authentication method, specify how to collect the authentication information. See Configuring the client for basic authentication: Collecting the authentication information.
See AlsoBasicAuth authentication method
Nonce, a randomly generated token
Securing Web services using basicauth authentication
Configuring the client for basic authentication: collecting the authentication information
Configuring the client for identity assertion: specifying the method
Configuring the client for identity assertion: Collecting the authentication method
Configuring the client for LTPA token authentication: specifying LTPA token authentication
Configuring the client for LTPA token authentication: Collecting the authentication method information
Configuring the client security bindings using the Assembly Toolkit
Configuring the security bindings on a server acting as a client using the administrative console
Configuring nonce for the application level
Configuring nonce for the server level