Signing information collection
To view a list of signing parameters. Signing information is used to sign and validate parts of a message including the body, time stamp, and user name token. We can also use these parameters for X.509 validation when the authentication method is IDAssertion and the ID type is X509Certificate in the server-level configuration. In such cases, fill in the certificate path fields only.
To view this admin console page on the cell level for signing information...
- Click Security > JAX-WS and JAX-RPC security runtime.
- Under JAX-RPC Default Generator Bindings or JAX-RPC Default Consumer Bindings, click Signing information.
- Click New to create a signing parameter. Click Delete to delete a signing parameter.
To view this admin console page on the server level for signing information...
- Click Servers > Server Types > WebSphere application Servers > server_name.
- Under Security, click JAX-WS and JAX-RPC security runtime.
In a mixed node cell with a server using Websphere Application Server version 6.1 or earlier, click Web services: Default bindings for WS-Security
- Under JAX-RPC Default Generator Bindings or JAX-RPC Default Consumer Bindings, click Signing information.
- Click New to create a signing parameter. Click Delete to delete a signing parameter.
To view this admin console page on the application level for signing information...
- Click Applications > Application Types > WebSphere enterprise apps > application_name.
- Under Modules, click Manage modules > URI_name.
- Under WS-Security Properties, we can access the signing information for the following bindings:
- For the Request generator (sender) binding, click Web services: Client security bindings. Under Request generator (sender) binding, click Edit custom.
- For Response consumer (receiver) binding, click Web services: Client security bindings. Under Response consumer (receiver) binding, click Edit custom.
- For the Request consumer (receiver) binding, click Web services: Server security bindings. Under Request consumer (receiver) binding, click Edit custom.
- For the Response generator (sender) binding, click Web services: Server security bindings. Under Response generator (sender) binding, click Edit custom.
- Under Required properties, click Signing information.
- Under Additional properties, we can use this panel to configure the following bindings:
- For the Request receiver binding, click Web services: WAS security bindings. Under Request receiver binding, click Edit.
- For the Response receiver binding, click Web services: Client security bindings. Under Response receiver binding, click Edit.
- Under Additional properties, click Signing information.
- Click New to create a signing parameter. Click Delete to delete a signing parameter.
- Signing information name
Unique name assigned to the signing configuration.
- Signature method
Signature method algorithm that is chosen for the signing configuration.
- Canonicalization method
Canonicalization method algorithm that is chosen for the signing configuration.
Related tasks
Set the signing information using JAX-RPC for the generator binding on the application level
Related
Signing information settings