WAS v8.5 > Reference > SetsResponse receiver binding page
Use this page to specify the binding configuration for receiver response messages for Web Services Security.
There is an important distinction between v5.x and v6 and later applications. The information in this article supports v5.x applications only used with WebSphere Application Server v6.0.x and later. The information does not apply to v6.0.x and later applications. v5.x applications are based on Java 2 platform, Enterprise Edition (J2EE) 1.3.
To view this dmgr console page...
- Click Applications > Application Types > WebSphere enterprise applicationsapplication_name.
- Under Modules, click Manage modules > URI_file_name > Web Services: Client security bindings.
- Under Response receiver binding, click Edit.
Signing information
Configuration for the signing parameters. Signing information is used to sign and to validate parts of the message including the body and the timestamp.
We can also use these parameters for X.509 validation when the authentication method is IDAssertion and the ID type is X509Certificate, in the server-level configuration. In such cases, you must fill in the certificate path fields only.
Encryption information
Configuration for the encryption and decryption parameters.
Encryption information is used for encrypting and decrypting various parts of a message, including the body and the user name token.
Trust anchors
List of keystore objects containing the trusted root certificates that are self-signed or issued by a certificate authority.
The certificate authority authenticates a user and issues a certificate. After the certificate is issued, the keystore objects, which contain these certificates, use the certificate for certificate path or certificate chain validation of incoming X.509-formatted security tokens.
Collection certificate store
List of the untrusted, intermediate certificate files.
The collection certificate store contains a chain of untrusted, intermediate certificates. The CertPath API attempts to validate these certificates, which are based on the trust anchor.
Key locators
List of key locator objects that retrieve the keys for a digital signature and encryption from a keystore file or a repository.
The key locator maps a name or a logical name to an alias or maps an authenticated identity to a key. This logical name is used to locate a key in a key locator implementation.
Related concepts:
Response receiver
Related
Configure the client for response decryption: decrypting the message parts
Configure the client for response decryption: choosing a decryption method
Configure the client for response digital signature verification: verifying the message parts
Configure the client for response digital signature verification: choosing the verification method