+

Search Tips   |   Advanced Search

Configure the server security bindings using the administrative console

Use the WAS administrative console to edit bindings for a web service after these bindings are deployed on a server.

Important: There is an important distinction between Version 5.x and Version 6 and later applications. The information supports Version 5.x applications only used with WAS v6.0.x and later. The information does not apply to Version 6.0.x and later applications.

Create an EJB file JAR file or WAR file containing the security binding file (ibm-webservices-bnd.xmi) and the security extension file (ibm-webservices-ext.xmi). If this archive is acting as a client to a downstream service, we also need the client-side binding file (ibm-webservicesclient-bnd.xmi) and the client-side extension file (ibm-webservicesclient-ext.xmi). These files are generated using the WSDL2Java command. For more information, read about the WSDL2Java command for JAX-RPC applications. We can edit these files using the Web Services Editor in the assembly tools. For more information, read about assembly tools.

When configuring server-side security for Web Services Security, the security extensions configuration specifies what security is to be performed while the security bindings configuration indicates how to perform what is specified in the security extensions configuration. Use the defaults for some elements at the cell and server levels in the bindings configuration, including key locators, trust anchors, the collection certificate store, trusted ID evaluators, and login mappings and reference them from the WAR and JAR binding configurations.

The following steps describe how to edit bindings for a web service after these bindings are deployed on a server. When one web service communicates with another web service, we also must configure the client bindings to access the downstream web service.

  1. Deploy the web service using the WAS administrative console.

    (dist)(zos) Type http://localhost:port_number/ibm/console in our web browser unless we have changed the port number.

    (iseries) Type http://server_name:port_number/ibm/console in our web browser unless we have changed the port number.

    After you log into the administration console, click Applications > Install new application to deploy the web service. For more information, read about installing enterprise application files with the console.

  2. After you deploy the web service, click Applications > Enterprise applications > application_name .

  3. Under Manage modules, click URI_name.

  4. Under Web Services Security Properties, click Web services: client security bindings for outbound requests and inbound responses. Click Web services: server security bindings for inbound requests and outbound responses.

  5. If we click Web services: server security bindings, the following sections can be configured. These topics are discussed in more detail in other sections of the documentation.


Related concepts

  • Development and assembly tools


    Related tasks

  • Secure web services for Version 5.x applications using XML digital signature
  • Configure the client security bindings using an assembly tool
  • Configure the security bindings on a server acting as a client using the administrative console
  • Configure the server security bindings using an assembly tool
  • Install enterprise application files with the console

  • WSDL2Java command for JAX-RPC applications