WAS v8.5 > Secure applications > Secure web services > Define and managing secure policy set bindings

Configure the SSL transport policy

When working with policy sets in the dmgr console, we can customize policies to ensure message security by configuring the SSL transport policy.

The default policy sets provided with the product cannot be edited. To configure custom policy sets, first copy the default policy set or create a completely new policy set in order to specify the policies for it. See creating policy sets using the dmgr console.

The SSL transport policy provides the SSL transport security for the Hypertext Transfer Protocol (HTTP) protocol with web services applications. To view the default SSL transport policy set with the SSL transport policy, click Services > Policy sets > Application policy sets > WSHTTPS default > SSL transport.

  1. To edit the SSL transport policy, click a policy set that we have created or customized from the default. Select the SSL transport policy applicable check boxes to enable the SSL functions. The following check boxes determine how SSL security is configured for this transport:

    • Enable for outbound service requests

      Displays whether the SSL security transport is enabled for outbound service requests.

    • Enable for outbound asynchronous service responses

      Displays whether the SSL security transport is enabled for outbound asynchronous service responses.

    • Enable for inbound service responses

      Displays whether the SSL security transport is enabled for inbound service responses.

  2. To configure the binding for the SSL transport policy, click Services > Policy sets > General client policy set bindings > binding_name > SSL transport or Services > Policy sets > General provider policy set bindings > binding_name > SSL transport. Select the setting to configure the SSL bindings. The SSL transport window displays options for configuring the SSL security bindings.

    1. Select the setting to configure the SSL bindings for the Outbound service requests.

      • SSL settings

        SSL security transport binding that is enabled for outbound service requests. The default value for this field is CellDefaultSSLSettings.

      • SSL properties file path

        Path of the SSL properties file that is enabled for asynchronous service responses. Enter the location of the SSL properties file to enable for asynchronous service responses.

    2. Select the setting to configure the SSL bindings for the Inbound service responses.

      • SSL settings

        SSL security transport binding that is enabled for inbound service responses. The default value for this field is CellDefaultSSLSettings.

      • SSL properties file path

        Path of the SSL properties file that is enabled for inbound service responses. Enter the location of the SSL properties file to enable for inbound service responses.

    3. Select the setting to configure the SSL bindings for the Outbound asynchronous service responses.

      • SSL settings

        SSL security transport binding that is enabled for asynchronous service responses. The default value for this field is CellDefaultSSLSettings.

      • SSL properties file path

        File path of the SSL properties file that is enabled for outbound service requests. Enter the location of the SSL properties file to enable for outbound service requests.

      Custom properties

      Click one of the following buttons to enable the action described:
      Button Resulting Action
      New Creates a new custom property entry. To add a custom property, enter the name and value.
      Delete Removes the selected custom property.
      Edit Enables you to edit a selected custom property. It is only displayed when one or more properties exist.


Results

Once we have customized the SSL transport policy, the associated policy set uses this policy to protect message transmission. Similarly, we can also configure HTTP transport with the HTTP transport policy. Read about configuring the HTTP transport policy to learn how to configure the HTTP transport with the HTTP transport policy.

Depending on how you are using policies, you might want to configure the HTTP transport policy or the SSL transport security bindings.


Subtopics


Related


Create policy sets
Add policies to policy sets
Configure the HTTP transport policy
Delete policies from policy sets
Enable policies for policy sets
Disable policies from policy sets
Web services policies
Add and remove policies using wsadmin.sh
Create policy set attachments using wsadmin
Remove policy set attachments using wsadmin
Manage policy set attachments using wsadmin


Reference:

SSLTransport policy and binding properties
Application policy sets page
Application policy set settings


+

Search Tips   |   Advanced Search