Creating a Message Security Configuration
The Application Server provides a default message security configuration for the SOAP authentication layer. You can modify this configuration and/or add new message security providers to this configuration. For more information, see "Configuring Message Security".
To create a new message security configuration, follow these steps.
- In the Admin Console tree component, expand the Configuration node.
- Expand the Security node in the Admin Console tree.
- Select the Message Security node.
- On the Message Security Configuration page, click New.
- On the Create Message Security Configuration page, enter the following:
- Authentication Layer– Enter SOAP for the name of the message layer on which authentication processing must be performed. SOAP is the only valid option in this release.
- Default Provider – Check the box beside this field if you want to make the new message security provider the default for this server.
- Provider Type – Select
client
, server
, or client-server
to establish whether the provider is to be used as a client authentication provider, a server authentication provider, or both (a client-server provider). The default value is client-server
.
- Provider ID - Enter an identifier that can be used to reference this provider configuration in the Admin Console tree.
- Class Name - Enter the Java implementation class of the provider. Client authentication providers must implement the
com.sun.xml.wss.provider.ClientSecurityAuthModule
interface. Server-side providers must implement the com.sun.xml.wss.provider.ServerSecurityAuthModule
interface. A provider may implement both interfaces, but it must implement the interface corresponding to its provider type.
- Add additional properties by clicking the Add Property button. Valid properties include:
server.config
: the directory and file name of an XML file that contains the server configuration information. For the default provider, this value is install_dir/
domain_dir/config/wss-server-config.xml
.
- Click OK to save this configuration, or click Cancel to quit without saving.
See also:
Legal Notices