Trust service attachments collection

Use this page to view information about or manage system policy set attachments and bindings. Endpoints with at least one operation directly attached to a policy set are displayed.

To view this administrative console page, click Services > Trust service > Trust service attachments.

Show confirmation for update runtime command

Specifies whether to enable or disable the display of the confirmation window before the Web services security runtime configuration is updated for supported tokens, targets, and trust service attachments.

Click Preferences to expand the information. You can select or deselect the Show confirmation for update runtime command check box. If you do not select this check box, updates to the security runtime configuration are made without first displaying a confirmation window. If you select the check box, the confirmation window is displayed before updates to the security runtime configuration are made.

Data type: Check box
Default: Enabled (check box is selected)
Retain filter criteria

Specifies whether to retain the filter criteria.

Click Preferences to expand the information. You can select or deselect the Retain filter criteria check box. This check box determines whether Endpoint URL is used as the filter criteria to reduce the displayed list of endpoints.

Data type: String
Default: All (check box is not selected)
Search terms

Specifies the search criteria to use to reduce the displayed list of endpoints.

Click Preferences to expand the information. Type in the Search terms field the search term or search criteria you want to use. The asterisk (*) can be used as a wildcard character for all terms, or it allows you to search for multiple unknown or partial characters within the term. For example, typing the search term par* returns partly, participate, partial, and all other words beginning with the letters par.

Data type: String
Default: * (search for all)
Select

Specifies that you want to select an existing resource, such as an endpoint or an operation, for further actions.

For existing endpoints, select the check box next to an operation, and then select one of the following actions:

Actions Description
Attach

Displays a list of policy sets that are available to be attached to an endpoint operation (cancel, reset, validate, or issue) or to one of the trust service default operations. Highlight and click the policy set to attach the policy set to the selected operation. You cannot attach a policy set to an endpoint.

Inherit Operation Defaults

Detaches the currently attached policy set and binding for each selected operation and sets the operation to inherit the Trust Service Default policy set and binding for each operation.

Assign Binding

Lists the bindings that are available to select for the policy set to which you want to attach the binding. You can also create a new binding.

  • Select Default to create and assign the system default binding to the selected policy set attachment.
  • Select an existing custom binding to assign the binding to the selected policy set attachment.
  • Select Create New to create and name a new binding and assign it to the selected policy set attachment. After you create the new custom binding, you can use the custom binding for other existing policy set attachments.

Multiple selection is valid only when all the resources have the same policy set attached.

New Attachment

Specifies that you want to create an explicit policy set attachment.

Click New Attachment to access a new panel where you can enter an endpoint URL to create attachments for each of the four endpoint operations of the provided URL. Initially, the attachment consists of the policy set and binding that are listed as the Trust Service Default for that operation.

Data type: Button
Update Runtime

Updates the trust service configuration for any changed attachments, targets, and token information.

If the Show confirmation for update runtime command preference is enabled, then a panel is displayed where you can confirm that you want to update the trust service configuration. If the preference is disabled, updates the trust service configuration immediately without any confirmation.

Data type: Button
Service Endpoint URL / Operation

Displays a list of the trust service default operation attachments and every service endpoint URL that has at least one operation with a policy set attached.

Each endpoint has four operations: issue, cancel, renew, and validate. Each of the operations for all other endpoints inherits the Trust Service Defaults policy set and binding.

Data type: String
Default: Trust Service Defaults
Policy Set

Displays the attached or inherited policy set for each operation of all endpoint URLs. Any endpoint URL that is not displayed inherits the Trust Service Defaults policy set for each operation. Provides a list of default and custom system policy sets that are attached to the service endpoint URL.

The policy set names display in this column for each operation. If the policy set is inherited from the Trust Service Defaults, rather than being explicitly attached, the word inherited is displayed in parentheses following the policy set name. Because only operations can have a policy set attachment, the Policy Set column for each endpoint URL row displays Not applicable.

Click the system policy set name to view or edit the policy set details information. Note that you can view, but not edit, the default policy sets. Default policy sets cannot be changed.

Data type: String
Defaults: TrustServiceSecurityDefault or TrustServiceSymmetricDefault
Binding

Displays the binding that is assigned to each policy set attachment for each operation of the listed endpoint URLs. Any endpoint URL that is not displayed inherits the Trust Service Defaults binding for each of the four operations.

The name of the assigned binding for each policy set attachment displays in this column for each operation. If the attachment is inherited from the Trust Service Defaults, the word inherited is displayed in parentheses following the binding name. If you select Assign Binding -> Default the system default binding is applied to the policy set attachment, and the word Default is displayed in this column. If the system default binding is inherited, then inherited is displayed in parentheses following the word Default.

Note that the system default binding is also assigned when you attach a new policy set to an operation. Because only operations can have policy set attachments; therefore, the binding column for each endpoint URL row displays Not applicable. Rows that are not directly related to a token and display Trust Service Defaults, display the text Not applicable for the binding. Additionally, rows that are not directly related to a token and display only the service endpoint URL display the text Not applicable for the binding.

Click the custom binding name to view or edit the binding information. Note that you can view, but not edit, the TrustServiceSecurityDefault and TrustServiceSymmetricDefault default bindings. Access the system default bindings by clicking Services > Policy sets > Default policy set bindings.

Data type: String
Default: TrustServiceSecurityDefault or TrustServiceSymmetricDefault



Links marked (online) require access to the Internet.

Related tasks
Related reference
Trust service attachments settings

uwbs_confwstrustpsattach