WAS v8.5 > Secure applications > Secure web services > Secure web services > Administer Web Services Security > Administer message-level security for JAX-RPC web services > Configure Web Services Security using JAX-RPC at the platform level

Distributing nonce caching to servers in a cluster

Distributed nonce caching enables you to distribute the cache for a nonce to different servers in a cluster.

Before configuring distributed nonce caching, configure cache replication. In previous releases of WebSphere Application Server, the nonce was cached locally. To use this feature, you must complete the following actions:

  1. Verify created an appropriate domain setting when we form a cluster.
  2. Verify that replication domain is properly secured. The nonce cache is crucial to the integrity of the nonce validation process. If the nonce cache is compromised, then we cannot trust the result of the validation process.
  3. In the dmgr console for the server level, select the Distribute nonce caching option. We can enable the option by completing the following steps:

    1. Click Security > Web services.

    2. Select the Distribute nonce caching option.

  4. Restart the servers within your cluster.


Results

When you select the Distribute nonce caching option in the dmgr console, the nonce is propagated to other servers in the environment. However, the nonce might be subject to a one-second delay in propagation and subject to any network congestion.

For more information on distributed nonce caching, see Web Services Security enhancements.


Related concepts:

Nonce, a randomly generated token
Web Services Security enhancements
Distributed nonce cache


Reference:

Security considerations for web services


+

Search Tips   |   Advanced Search