+

Search Tips   |   Advanced Search

Collection certificate store collection

View a list of certificate stores containing untrusted, intermediary certificate files awaiting validation. Validation might consist of checking to see if the certificate is on a certificate revocation list (CRL), checking that the certificate is not expired, and checking that the certificate is issued by a trusted signer.

The following list provides recommendations for using CRLs:

To view the administrative console panel for the collection certificate store on the cell level:

  1. Click Security > JAX-WS and JAX-RPC security runtime.

  2. Under Additional properties, click Collection certificate store.

To view the administrative console panel for the collection certificate store on the server level:

  1. Click Servers > Server Types > WebSphere application servers > server.

  2. Under Security, click security runtime.

    Mixed-version environment: In a mixed node cell with a server using WebSphere Application Server version 6.1 or earlier, click Web services: Default bindings for Web Services Security.mixv

  3. Under Additional properties, click Collection certificate store.

To view this administrative console page for the collection certificate store on the application level:

  1. Click Applications > Application Types > WebSphere enterprise applications > application_name.

  2. Under Modules, click Manage modules > URI_name.

  3. Under Web Services Security Properties, we can access collection certificate stores for the following bindings:

    • For the Request generator, click Web services: Client security bindings. Under Request generator (sender) binding, click Edit custom > Collection certificate store.

    • For the Request consumer, click Web services: Server security bindings. Under Request consumer (receiver) binding, click Edit custom > Collection certificate store.

    • For the Response generator, click Web services: Server security bindings. Under Response generator (sender) binding, click Edit custom > Collection certificate store.

    • For the Response consumer, click Web services: Client security bindings. Under Response consumer (receiver) binding, click Edit custom > Collection certificate store.

  4. Under Additional properties, we can access collection certificate stores for the following bindings:

Complete the following steps:

  1. Click New to specify a new certificate store name and certificate store provider.

  2. Click OK and messages are displayed.

  3. Within the messages shown, click Save.
  4. Return to the collection certificate store collection panel and click Update runtime to update the Web Services Security run time with the default binding information, which is found in the ws-security.xml file. When we click Update runtime, the configuration changes made to the other web services are also updated in the Web Services Security run time.


Certificate store name

Name of the certificate store.


Certificate store provider

Provider of the certificate store.

  • Configure the collection certificate store for the generator binding on the application level
  • Collection certificate store configuration settings
  • X.509 certificates collection
  • X.509 certificate configuration settings
  • Certificate revocation list collection
  • Certificate revocation list configuration settings