X.509 certificates collection

To view a list of untrusted, intermediate certificate files. This collection certificate store is used for certificate path validation of incoming X.509-formatted security tokens.

To view the admin console panel for the collection certificate store on the cell level...

1. Click Security > JAX-WS and JAX-RPC security runtime.

2. Under Additional properties, click Collection certificate store.

3. Click the name of a configured collection certificate store or create a new collection certificate store first.

4. Under Additional properties, click X.509 certificates.

To view the admin console panel for the collection certificate store on the server level...

1. Click Servers > Server Types > WebSphere application servers > server_name .

2. Under Security, click JAX-WS and JAX-RPC security runtime.

   In a mixed node cell with a server using Websphere Application Server version 6.1 or earlier, click Web services: Default bindings for WS-Security

3. Under Additional properties, click Collection certificate store.

4. Click the name of a configured collection certificate store or create a new collection certificate store first.

5. Under Additional properties, click X.509 certificates.

To view this admin console page for an X.509 certificate on the application level...

1. Click Applications > Application Types > WebSphere enterprise apps > application_name.

2. Under Modules, click Manage modules > URI_name.

3. Under WS-Security Properties, we can access collection certificate stores for the following bindings:

   • For the Request generator, click Web services: Client security bindings. Under Request generator (sender) binding, click Edit custom > Collection certificate store.

   • For the Request consumer, click Web services: WAS security bindings. Under Request consumer (receiver) binding, click Edit custom > Collection certificate store.

   • For the Response generator, click Web services: WAS security bindings. Under Response generator (sender) binding, click Edit custom > Collection certificate store.

   • For the Response consumer, click Web services: Client security bindings. Under Response consumer (receiver) binding, click Edit custom > Collection certificate store.

4. Under Additional properties, we can access the collection certificate stores for the following bindings.

   • For the Response receiver binding, click Web services: Client security bindings. Under Response receiver binding, click Edit > Collection certificate store.

   • For the Request receiver binding, click Web services: WAS security bindings. Under Request receiver binding, click Edit > Collection certificate store.

5. Click the name of a configured collection certificate store or create a new collection certificate store first.

6. Under Additional properties, click X.509 certificates.

X.509 certificate path

Location of the X.509 certificate.

---

 

Related tasks

Set the collection certificate store for the generator binding on the application level

 

Related

X.509 certificate settings
Collection certificate store collection
Collection certificate store settings