WAS v8.5 > Reference > SetsWS-Security authentication and protection for general bindings
Use the links on this page to configure authentication, protection, signature, and encryption information the policy requires when using general bindings.
We can configure authentication, protection, signature, and encryption information for tokens and message parts when editing a general binding.
To view this dmgr console page when editing a general binding at the cell level:
- Click Services > Policy sets > General provider policy set bindings or General client policy set bindings.
- Click on the name of the bindings to edit.
- Click WS-Security policy in the Policies table.
- Click the Authentication and protection link in the Main message security policy bindings section.
This dmgr console page applies only to JAX-WS applications.
Disable implicit protection for signature confirmation
Whether implicit protection of the SignatureConfirmation element is enabled or disabled.
The explicitlyProtectSignatureConfirmation attribute in the Web Services Security binding is provided to disable implicit signature and encryption of the SignatureConfirmation element on the response message. If this checkbox is selected, the attribute is added and implicit protection is disabled. This provides interoperability with earlier versions of WebSphere Application Server.
Information Value Default: Not selected (implicit protection is enabled)
Protection tokens – Protection token name
List of protection tokens that can be configured in the Protection tokens table.
The following actions are available for general bindings:
Button Resulting Action New Token Creates a new protection token type. Delete Removes the selected protection token type.
Protection tokens – Usage
Policy assertion usage names that we can customize in the Protection tokens table.
For the usage field, the following options are available for the general bindings:
- Asymmetric encryption generator
- Asymmetric encryption consumer
- Asymmetric signature generator
- Asymmetric signature consumer
- Symmetric generator
- Symmetric consumer
- Custom generator
- Custom consumer
Authentication tokens – Authentication token name
List of authentication tokens that we can customize in the Authentication tokens table when using general bindings.
If you are working with a Username token or LTPA token that is using general bindings, the user names and passwords might have been provided as examples. When you click a Username token or LTPA token link, you need to update the values for these token types using the Callback handler link found on the Authentication token settings page.
The following actions are available for general bindings:
Button Resulting Action New Token Creates a new authentication token type. Delete Removes the selected authentication token type.
Authentication tokens – Usage
Usage names for the Authentication tokens table for general bindings.
The following options are available for general bindings:
- Inbound
- Outbound
Request message signature and encryption protection – Name
Unique name to identify the request message part from the Request message signature and encryption protection table that is protected.
The following actions are available for general bindings. The Move up and Move down actions are available only when using service client policy sets and bindings.
Button Resulting Action New Signature Creates a new signature. New Encryption Creates a new encryption protection. Delete Removes the selected request message part. Move up Moves the selected request message part up in the order. Move down Moves the selected request message part down in the order.
Request message signature and encryption protection – Protection
Type of protection from the Request message signature and encryption protection table. This field displays the type of protection enabled for the general binding.
Response message signature and encryption protection – Name
Unique name to identify the response message part from the Response message signature and encryption protection table that is protected.
The following actions are available for general bindings. The Move up and Move down actions are available only when using service provider policy sets and bindings.
Button Resulting Action New Signature Creates a new response message signature. New Encryption Creates a new encryption. Delete Removes the selected response message part. Move up Moves the selected response message part up in the order. Move down Moves the selected response message part down in the order.
Response message signature and encryption protection – Protection
Type of protection enabled from the Response message signature and encryption protection table. This field displays the type of protection enabled for the response message part.
Response message signature and encryption protection – Order
Order in which the signatures and encryptions occur. Use the Move up and Move down actions to order the list of protection types in this table.
Related
Define and managing policy set bindings
Manage policy sets
Reference:
Protection token settings (generator or consumer)
Authentication generator or consumer token settings
WS-Security authentication and protection for application specific bindings
Signed or Encrypted message part settings
Callback handler settings for JAX-WS
Policy set bindings settings
Keys and certificates