X.509 certificates collection

Use this page to view a list of untrusted, intermediate certificate files. This collection certificate store is used for certificate path validation of incoming X.509-formatted security tokens.

To view the console page for the collection certificate store on the cell level in a network deployment (ND) environment...

1. Click Security > JAX-WS and JAX-RPC security runtime.

2. Under Additional properties, click Collection certificate store.

3. Click the name of a configured collection certificate store or create a new collection certificate store first.

4. Under Additional properties, click X.509 certificates.

To view the console page for the collection certificate store on the server level...

1. Click Servers > Server Types > WebSphere application servers > server_name.

2. Under Security, click JAX-WS and JAX-RPC security runtime.

   In a mixed node cell with a server using Websphere Application Server version 6.1 or earlier, click Web services: Default bindings for Web Services Security.

3. Under Additional properties, click Collection certificate store.

4. Click the name of a configured collection certificate store or create a new collection certificate store first.

5. Under Additional properties, click X.509 certificates.

To view this console page for an X.509 certificate on the application level...

1. Click Applications > Application Types > WebSphere enterprise applications > application_name.

2. Under Modules, click Manage modules > URI_name.

3. Under Web Services Security Properties, we can access collection certificate stores for the following bindings:

   • For the Request generator, click Web services: Client security bindings. Under Request generator (sender) binding, click Edit custom > Collection certificate store.

   • For the Request consumer, click Web services: Server security bindings. Under Request consumer (receiver) binding, click Edit custom > Collection certificate store.

   • For the Response generator, click Web services: Server security bindings. Under Response generator (sender) binding, click Edit custom > Collection certificate store.

   • For the Response consumer, click Web services: Client security bindings. Under Response consumer (receiver) binding, click Edit custom > Collection certificate store.

4. Under Additional properties, we can access the collection certificate stores for the following bindings.

   • For the Response receiver binding, click Web services: Client security bindings. Under Response receiver binding, click Edit > Collection certificate store.

   • For the Request receiver binding, click Web services: Server security bindings. Under Request receiver binding, click Edit > Collection certificate store.

5. Click the name of a configured collection certificate store or create a new collection certificate store first.

6. Under Additional properties, click X.509 certificates.

X.509 certificate path

Location of the X.509 certificate.

Related tasks

Configure the collection certificate store for the generator binding on the application level

X.509 certificate configuration settings

Collection certificate store collection

Collection certificate store configuration settings