WAS v8.5 > Secure applications > Secure web services > Secure web services > Administer Web Services Security

Configure XML digital signature for v5.x web services with the dmgr console

XML digital signature provides both message integrity and authentication capabilities when it is used with SOAP messages. XML digital signature is one of the methods WebSphere Application Server provides to secure web services. We can use the WebSphere Application Server dmgr console to configure XML digital signature.

Subtopics

• Login mappings page
  Use this page to view a list of configurations for validating security tokens within incoming messages. Login mappings map an authentication method to a JAAS login configuration to validate the security token. Four authentication methods are predefined in the WebSphere Application Server: BasicAuth, Signature, IDAssertion, and LTPA.
• Login mapping configuration settings
  Use this page to specify the JAAS login configuration settings used to validate security tokens within incoming messages.
• Configure nonce using Web Services Security tokens
  Nonce is a randomly generated, cryptographic token used to thwart the highjacking of user name tokens, used with SOAP messages. Use nonce in conjunction with the BasicAuth authentication method.
• Configure trust anchors
  Use the WAS dmgr console to configure trust anchors that specify key stores which contain trusted root certificates to validate the signer certificate.
• Configure the client-side collection certificate store
  We can configure the client-side collection certificate store using the dmgr console.
• Configure the server-side collection certificate store
  We can configure the collection certificate either using an assembly tool or the WAS dmgr console.
• Configure default collection certificate stores at the server level in the WAS dmgr console
  We can define a single collection certificate store for all of the applications that need to use the same certificates. Use the WAS dmgr console to configure the default collection certificate store at the server level.
• Configure key locators
  You can configure binding information and key locators using the WAS dmgr console.
• Configure the security bindings on a server acting as a client
  Use the web services client editor within an assembly tool to include the binding information, that describes how to run the security specifications found in the extensions, in the client EAR file.
• Configure the server security bindings
  Use the WAS dmgr console to edit bindings for a web service after these bindings are deployed on a server.

+

Search Tips   |   Advanced Search