+

Search Tips   |   Advanced Search

WS-Security authentication and protection for general bindings

Use the links on this page to configure authentication, protection, signature, and encryption information that the policy requires when using general bindings.

We can configure authentication, protection, signature, and encryption information for tokens and message parts when editing a general binding.

To view this administrative console page when editing a general binding at the cell level...

  1. Click Services > Policy sets > General provider policy set bindings or General client policy set bindings.

  2. Click on the name of the bindings to edit.

  3. Click WS-Security policy in the Policies table.

  4. Click the Authentication and protection link in the Main message security policy bindings section.

This administrative console page applies only to JAX-WS applications.


Disable implicit protection for signature confirmation

Whether implicit protection of the SignatureConfirmation element is enabled or disabled.

The explicitlyProtectSignatureConfirmation attribute in the Web Services Security binding is provided to disable implicit signature and encryption of the SignatureConfirmation element on the response message. If this checkbox is selected, the attribute is added and implicit protection is disabled. This provides interoperability with earlier versions of WAS.

Information Value
Default: Not selected (implicit protection is enabled)


Protection tokens - Protection token name

List of protection tokens that can be configured in the Protection tokens table.

The following actions are available for general bindings:

Button Resulting Action
New Token Creates a new protection token type.
Delete Removes the selected protection token type.


Protection tokens - Usage

Policy assertion usage names that we can customize in the Protection tokens table.

For the usage field, the following options are available for the general bindings:


Authentication tokens - Authentication token name

List of authentication tokens that we can customize in the Authentication tokens table when using general bindings.

If we are working with a Username token or LTPA token that is using general bindings, the user names and passwords might have been provided as examples. When you click a Username token or LTPA token link, we need to update the values for these token types using the Callback handler link found on the Authentication token settings page.

The following actions are available for general bindings:

Button Resulting Action
New Token Creates a new authentication token type.
Delete Removes the selected authentication token type.


Authentication tokens - Usage

Usage names for the Authentication tokens table for general bindings.

The following options are available for general bindings:


Request message signature and encryption protection - Name

Unique name to identify the request message part from the Request message signature and encryption protection table that is protected.

The following actions are available for general bindings. The Move up and Move down actions are available only when using service client policy sets and bindings.

Button Resulting Action
New Signature Creates a new signature.
New Encryption Creates a new encryption protection.
Delete Removes the selected request message part.
Move up Moves the selected request message part up in the order.
Move down Moves the selected request message part down in the order.


Request message signature and encryption protection - Protection

Type of protection from the Request message signature and encryption protection table. This field displays the type of protection enabled for the general binding.


Response message signature and encryption protection - Name

Unique name to identify the response message part from the Response message signature and encryption protection table that is protected.

The following actions are available for general bindings. The Move up and Move down actions are available only when using service provider policy sets and bindings.

Button Resulting Action
New Signature Creates a new response message signature.
New Encryption Creates a new encryption.
Delete Removes the selected response message part.
Move up Moves the selected response message part up in the order.
Move down Moves the selected response message part down in the order.


Response message signature and encryption protection - Protection

Type of protection enabled from the Response message signature and encryption protection table. This field displays the type of protection enabled for the response message part.


Response message signature and encryption protection - Order

Specifies the order in which the signatures and encryptions occur. Use the Move up and Move down actions to order the list of protection types in this table.


Related tasks

  • Define and manage policy set bindings
  • Manage policy sets using the administrative console

    Protection token settings (generator or consumer)

    Authentication generator or consumer token settings

    WS-Security authentication and protection for application specific bindings

    Signed or Encrypted message part settings

    Callback handler settings for JAX-WS

    Policy set bindings settings

    Keys and certificates