Configure the encryption information for the generator binding on the server or cell level

 

Overview

The encryption information for the default generator specifies how to encrypt the information on the sender side if these bindings are not defined at the application level. WAS provides default values for the bindings. However, an administrator must modify the defaults for a production environment.

In a Network Deployment environment, one can configure the encryption information for the generator binding on the server level and the cell level. In the following steps, use the first step to configure the encryption information for the server level and use the second step to configure the encryption information for the cell level:

 

Procedure

  1. Access the default bindings for the server level.

    1. Click Servers > Application servers > servername.

    2. Under Security, click Web services: Default bindings for Web services security.

  2. Click Security > Web services to access the default bindings on the cell level.

  3. Under Default generator bindings, click Encryption information.

  4. Click New to create an encryption information configuration, click Delete to delete an existing configuration, or click the name of an existing encryption information configuration to edit the settings. If you are creating a new configuration, enter a unique name for the encryption configuration in the Encryption information name field. For example, you might specify gen_encinfo.

  5. Select a data encryption algorithm from the Data encryption algorithm field. This algorithm is used to encrypt the data. WebSphere Application Server supports the following pre-configured algorithms:

    The data encryption algorithm that you select for the generator side must match the data encryption algorithm that you select for the consumer side.

  6. Select a key encryption algorithm from the Key encryption algorithm field. This algorithm is used to encrypt the key. WebSphere Application Server supports the following pre-configured algorithms:

    If you select None, the key is not encrypted.

    The key encryption algorithm that you select for the generator side must match the key encryption algorithm that you select for the consumer side.

  7. Select a encryption key configuration from the Encryption key information field. This attribute specifies the name of the key that is used to encrypt the message. To configure the key information, see Configuring the key information for the generator binding on the server or cell level.

  8. Click OK and then click Save to save the configuration.

 

Result

You have configured the encryption information for the generator binding at the server or cell level.

 

What to do next

You must specify a similar encryption information configuration for the consumer.


 

Related Tasks


Configuring the encryption information for the consumer binding on the server or cell level
Configuring the key information for the generator binding on the server or cell level