Configure policy sets through metadata exchange (WS-MetadataExchange).
Configure and administer the Web Services Security runtime environment.
Step Parent
Secure JAX-WS web services using message-level security
In WAS v7 and later, using JAX-WS, we can enable the Web Services Metadata Exchange (WS-MetadataExchange) protocol so that the policy configuration of the service provider is included in the WSDL and is available to a WS-MetadataExchange GetMetadata request. One advantage of using the WS-MetadataExhange protocol is that we can apply message-level security to WS-MetadataExchange GetMetadata requests by using a suitable system policy set. Another advantage is that the client does not have to match the provider configuration, or have a policy set attached. The client only needs the binding information, and then the client can operate based on the provider policy, or based on the intersection of the client and provider policies. We can configure a service provider to share its policy configuration using the console. For more information, read the following topics:
- Configure security for a WS-MetadataExchange request
- Configure a service provider to share its policy configuration
- Transformation of policy and binding assertions for WSDL