Assigning Message Security Responsibilities

Message security responsibilities are assigned to the following:

Application Developer

The application developer can implement message security, but is not responsible for doing so. Message security can be set up by the System Administrator so that all web services are secured, or set up by the Application Deployer when the Application Server provider configuration is insufficient.

The application developer or assembler is responsible for the following:

Application Deployer

The application deployer is responsible for:

These security tasks are discussed in the Securing Applications chapter of the Developers’ Guide. For a link to this chapter, see "Further Information".

System Administrator

The system administrator is responsible for:

A system administrator uses the Admin Console to manage server security settings and keytool to manage certificates. This document is intended primarily for system administrators. For an overview of message security tasks, see "Configuring the Application Server for Message Security".


Legal Notices