+

Search Tips   |   Advanced Search

 

Configure HTTP outbound transport level security with the administrative console

 

This topic explains configuring HTTP outbound transport level security with the console.

This task is one of several ways that you can configure the HTTP outbound transport level security for a Web service acting as a client to another Web service server. You can also configure the HTTP outbound transport level security with an assembly tool or by using the Java properties. If you do not configure the HTTP outbound transport level security, the Web services runtime defers to the J2EE security runtime in the WebSphere product for an effective SSL configuration. If there is no SSL configuration with the J2EE security runtime in the WebSphere product, the Java Secure Socket Extension (JSSE) system properties are used.

 

Overview

If you choose to configure the HTTP outbound transport level security with the console or an assembly tool, the Web services security binding information is modified. You can use the console to configure the Web services client security bindings if you have deployed or installed the Web services application into WebSphere Application Server. If you have not installed the Web services application, you can configure the HTTP SSL configuration with an assembly tool. This task assumes that you have deployed the Web services application into the WebSphere product.

If you configure the HTTP outbound transport level security using the standard Java properties for JSSE, the properties are configured as system properties. The configuration specified in the binding takes precedence over the Java properties. However, the configurations that are specified by the J2EE security programming model , or that are associated the Dynamic selection , have higher precedence.

Review the topic Secure communications using Secure Sockets Layer for more information.

Configure the HTTP outbound transport level security with the following steps provided in this task section.

 

Procedure

  1. Open the console.

  2. Click Applications > Enterprise Applications > application_instance > Manage Modules > module_instance . Under Web Services Security Properties, click Web Services: Client security bindings.

  3. Under the heading, HTTP SSL Configuration, click Edit to access the HTTP SSL configuration panel. Select the Centrally-managed radio button so that the system runtime chooses the SSL configuration that is based on the current context. Select the Specific to this Web service port radio button if you want to choose the SSL configuration in the HTTP SSL configuration drop down box.

 

Results

You have configured the HTTP outbound transport level security for a Web service acting as a client to another Web service with the administrative console.


HTTP SSL Configuration collection

 

Related tasks


Configure Federal Information Processing Standard Java Secure Socket Extension files
Securing Web services for V5.x applications based on WS-Security
Securing Web services applications using JAX-RPC at the message level
Authenticating Web services clients using HTTP basic authentication
Securing Web services applications at the transport level