Key locator collection
Use this page to view a list of key locator configurations that retrieve keys from the keystore for digital signature and encryption. A key locator must implement the com.ibm.wsspi.wssecurity.config.KeyLocator interface. To view the console panel for the key locator collection on the cell level...
- Click Security > Web services.
- Under Additional properties, click Key locators.
To view this console page for the key locator collection on the server level...
- Click Servers > Application servers > server .
- Under Security, click Web services: Default bindings for Web services security.
- Under Additional properties, click Key locators.
To use this console page for the key locator collection on the application level...
- Click Applications > Enterprise applications > application.
- Click Manage modules > URI_name.
- Under Web Services Security Properties, you can access key locators for the following bindings:
- For the Request generator, click Web services: Client security bindings. Under Request generator (sender) binding, click Edit custom > Key locators.
- For the Request consumer, click Web services: Server security bindings. Under Request consumer (receiver) binding, click Edit custom > Key locators.
- For the Response generator, click Web services: Server security bindings. Under Response generator (sender) binding, click Edit custom > Key locators.
- For the Response consumer, click Web services: Client security bindings. Under Response consumer (receiver) binding, click Edit custom > Key locators.
Under Additional properties, you can access key locators for the following bindings:
- For the Request sender, click Web services: Client security bindings. Under Request sender binding, click Edit > Key locators.
- For the Request receiver, click Web services: Server security bindings. Under Request receiver binding, click Edit > Key locators.
- For the Response sender, click Web services: Server security bindings. Under Response sender binding, click Edit > Key locators.
- For the Response receiver, click Web services: Client security bindings. Under Response receiver binding, click Edit > Key locators.
The bindings for a version 5.x application has a link that says Edit and the bindings for a V6.0.x. or later application has a link that says Edit custom. This is quick reference to determine which application version that you are configuring.
Use this Key locator collection panel, complete the following steps:
- Specify a key locator name and a key locator class name on the panel.
- Save your changes by clicking Save in the messages section at the top of the console. The console home panel is displayed.
- After saving your changes, update the Web services security run time with the default binding information by clicking Update runtime. When you click Update runtime, the configuration changes made to the other Web services also are updated in the Web services security run time.
- After you define key locators, click the key locator name to specify additional properties and keys under Additional Properties.
- Key locator name
Unique name of the key locator.
- Key locator class name
Specify the class name of the key locator, which retrieves the key that is used for digital signing and encryption.
Related tasks
Configure the key locator using JAX-RPC for the generator binding on the application level
Related Reference
Key locator configuration settings
Reference topic