+

Search Tips   |   Advanced Search

Certificate store settings

Use this page to specify the location where certificates are stored. We can reference certificate revocation for service generators or consumers.

We can specify the location where certificates are stored when editing a default cell or server binding. We can also configure application specific bindings for tokens and message parts that are required by the policy set.

To view this administrative console page when editing a default cell binding...

  1. Click Services > Policy sets > Default policy set bindings.

  2. Click the WS-Security policy in the Policies table.

  3. Click the Keys and certificates link in the Main message security policy bindings section.

  4. Click the certificate_store_name link in the Certificate store section.

To view this administrative console page when we are configuring application specific bindings for tokens and message parts that are required by the policy set...

  1. Click Applications > Application Types > WebSphere enterprise applications.

  2. Select an application containing web services. The application must contain a service provider or a service client.

  3. Click the Service provider policy sets and bindings link or the Service client policy sets and bindings in the Web Services Properties section.

  4. Select a binding. We must have previously attached a policy set and assigned a application specific binding.

  5. Click the WS-Security policy in the Policies table.

  6. Click the Keys and certificates link in the Main message security policy bindings section.

  7. Click the certificate_store_name link in the Certificate store section.

This administrative console page applies only to JAX-WS applications.


Name

Name of the certificate store. The name field displays the name of the certificate store if you are editing a certificate store, or enter a name if you are creating a new certificate store.


Revoked certificates - Full path

Specifies, in the Revoked certificates table, the paths for any certificates that are revoked. The Full Path column of this table lists any certificates that have been revoked.

We can add, edit, or remove these entries with the following buttons:

Button Resulting Action
New Creates a revoked generator or consumer certificate store.
Delete Removes the selected revoked generator or consumer certificate store.
Edit Allows you to edit the applied entries selected in the checkbox. This button is only displayed if revoked certificates exist in our configuration.


Intermediate X.509 certificates - Full Path

Specifies, for the consumer certificate store only, the paths for any intermediate X.509 certificates. The Full Path column of this table lists any intermediate X.509 certificate stores. This table is only displayed for the consumer version of this panel. It is not valid for generator certificate stores.

If the certificate store is outbound, the Intermediate X.509 certificates field is not displayed.

We can create, edit, or remove intermediate X.509 certificates with the following buttons:

Button Resulting Action
New Creates an intermediate X.509 consumer certificate store.
Delete Removes an intermediate X.509 consumer certificate store.
Edit Allows you to edit the applied entries selected in the checkbox.


Related tasks

  • Define and manage policy set bindings
  • Manage policy sets using the administrative console

    Application policy sets collection

    Application policy set settings

    Search attached applications collection

    Policy set bindings settings