Protection token settings (generator or consumer)

Use this page to configure protection tokens. Protection tokens sign messages to protect integrity or encrypt messages to provide confidentiality.

You can add protection token settings for message parts when you are editing a default cell or server binding. You can also configure custom bindings for tokens and message parts that are required by the policy set.

To view this administrative console page when you are editing a default cell binding, complete the following actions:
  1. Click Services > Policy sets > Default policy set bindings.
  2. Click the WS-Security policy in the Policies table.
  3. Click the Authentication and protection link in the Main message security policy bindings section.
  4. Click New token to create a new token generator or consumer or click an existing consumer or generator token link from the Protection Tokens table.
To view this administrative console page when you are configuring custom bindings for tokens and message parts that are required by the policy set, complete the following actions:
  1. Click Applications > Enterprise applications .
  2. Select an application that contains Web services. The application must contain a service provider or a service client.
  3. Click the Service provider policy sets and bindings link or the Service client policy sets and bindings in the Web Services Properties section.
  4. Select a binding. You must have previously attached a policy set and assigned a custom binding.
  5. Click the WS-Security policy in the Policies table.
  6. Click the Authentication and protection link in the Main message security policy bindings section.
  7. Click a consumer or generator token link from the Protection Tokens table.
Name

Specifies the token generator or consumer name. Enter a name in this field when you create a new token.

Token type

Specifies the type of token. When using custom bindings, the token type is determined from the policy and cannot be edited.

Valid values are:
  • Secure Conversation Token v200502
    Note: The Secure Conversation Token v200502 token type for the WS-Security policy represents the requirement for a Security Context Token as defined in WS-SecureConversation.
  • X509V3 Token v1.1
  • X509V3 Token v1.0
  • X509PKCS7 Token v1.1
  • X509PKCS7 Token v1.0
  • X509PkiPathV1 Token v1.1
  • X509PkiPathV1 Token v1.0
  • X509V1 Token v1.1
  • Custom Token
Local name

Specifies the local name of the custom token generator or consumer. The Local name field is populated based on the token type displayed. Use this field to edit custom token types only.

URI

Specifies the uniform resource identifier (URI) of the custom token generator or consumer. The URI field is populated based on the token type displayed. Use this field to edit custom token types only.

JAAS login

Specifies the Java Authentication and Authorization Service (JAAS) application login information. Click New to add a new JAAS application login or JAAS system login entry.

Custom properties – Name

Specifies the name of the custom property. Custom properties are not initially displayed in this column until they are added.

Select one of the following actions for custom properties:

Button Resulting Action
New Creates a new custom property entry. To add a custom property, enter the name and value.
Edit Specifies that you can edit the selected custom property. Select this action to provide input fields and create the listing of cell values for editing. The Edit button is not available until at least one custom property has been added.
Delete Removes the selected custom property.
Custom properties – Value

Specifies the value of the custom property. With the Value field, you can enter, edit, or delete the value for a custom property.

Callback handler

After all other configurations on the protection token page are applied or saved, this section appears and links to the configuration settings for the callback handler. Click this link to specify callback handler settings that determine how security tokens are acquired from message headers.




Links marked (online) require access to the Internet.

Related tasks
Related reference
Callback handler settings
Application policy sets collection
Application policy set settings
Search attached applications collection
Policy set bindings settings

uwbs_wsspsbpt