+

Search Tips   |   Advanced Search

Trusted ID evaluator collection

Use this page to view a list of trusted identity (ID) evaluators. The trusted ID evaluator determines whether to trust the identity-asserting authority. After the ID is trusted, the appserver issues the proper credentials based on the identity, which are used in a downstream call for invoking resources. The trusted ID evaluator implements the com.ibm.wsspi.wssecurity.id.TrustedIDEvaluator interface. To view this console page for trusted ID evaluators on the cell level...

  1. Click Security > Web services.

  2. Under Additional properties, click Trusted ID evaluators.

  3. Click New to create a trusted ID evaluator or click Delete to delete a trusted ID evaluator.

To view this console page for trusted ID evaluators on the server level...

  1. Click Servers > Application servers > server.

  2. Under Security, click Web services: Default bindings for Web services security.

  3. Under Additional properties, click Trusted ID evaluators.

  4. Click New to create a trusted ID evaluator or click Delete to a delete a trusted ID evaluator.

To view this console page for trusted ID evaluators on the application level...

  1. Click Applications > Enterprise applications > application.

  2. Under Related items, click EJB modules or Web modules.

  3. Click URI_name.

  4. Under Additional properties, click Web services: Server security bindings.

  5. Under Request consumer (receiver) binding, click Edit custom.

  6. Click Trusted ID evaluators.

  7. Click New to create a trusted ID evaluator or click Delete to delete a trusted ID evaluator.

To view this console page for trusted ID evaluators on the application level...

  1. Click Applications > Enterprise applications > application.

  2. Click Manage modules > URI_name.

  3. Under Web Service Security Properties, click Web services: Server security bindings.

  4. Click Edit under Request receiver binding.

  5. Click Trusted ID evaluators.

  6. Click New to create a trusted ID evaluator or click Delete to delete a trusted ID evaluator.

Trusted ID evaluators are only required for the request receiver (V5.x applications) and the request consumer (V6.0.x.x applications), if identity assertion is configured.

Use this trusted ID evaluator collection panel, complete the following steps:

  1. Specify a trusted ID evaluator name and a trusted ID evaluator class name.

  2. Save your changes by clicking Save in the messages section at the top of the console.

  3. Click Update run time to update the Web services security run time with the default binding information, which is found in the ws_security.xml file. The configuration changes made to the other Web services also are updated in the Web services security run time.

Trusted ID evaluator name

Unique name of the trusted ID evaluator.

Trusted ID evaluator class name

Specify the class name of the trusted ID evaluator.



 

Related tasks


Configure trusted ID evaluators on the server or cell level

 

Related Reference

Trusted ID evaluator configuration settings

 

Reference topic