Key information settings

Use this page to configure the key information for the selected policy set binding. Key information attributes define how cryptographic keys are generated or consumed.

You can configure the key information for the selected policy set binding when you are editing a default cell or server binding. You can also configure custom bindings for tokens and message parts that are required by the policy set.

To view this administrative console page when you are editing a default cell binding, complete the following actions:
  1. Click Services > Policy sets > Default policy set bindings.
  2. Click the WS-Security policy in the Policies table.
  3. Click the Keys and certificates link in the Main message security policy bindings section.
  4. Click a key in the Name column of the Key information table.
To view this administrative console page when you are configuring custom bindings for tokens and message parts that are required by the policy set, complete the following actions:
  1. Click Applications > Enterprise applications .
  2. Select an application that contains Web services. The application must contain a service provider or a service client.
  3. Click the Service provider policy sets and bindings link or the Service client policy sets and bindings in the Web Services Properties section.
  4. Select a binding. You must have previously attached a policy set and assigned a custom binding.
  5. Click the WS-Security policy in the Policies table.
  6. Click the Keys and certificates link in the Main message security policy bindings section.
  7. Click a key in the Name column of the Key information table.
Name

Specifies the unique name for the key information configuration.

The key information name field displays the unique name of the key that is being configured if you are editing a key. If you are creating one, enter a unique name.

Type

Lists the type of key reference.

This field appears only if you selected an encryption or signing key for the generator binding, such as gen_signkeyinfo, gen_signsctkeyinfo, gen_encsctkeyinfo, or gen_enckeyinfo.

You can select one of the following key types from this list:
Key identifier
The associated attribute in the binding file is KEYID.
Security token reference
The associated attribute in the binding file is STRREF.
Embedded token
The associated attribute in the binding file is EMB.
X.509 issuer name and issuer serial
The associated attribute in the binding file is X509ISSUER.
Thumbprint
The associated attribute in the binding file is THUMBPRINT.

The Thumbprint key information type requires a keystore with the public and private key pair instead of a shared key.

Data type: Selection list
Token generator or consumer name

Specifies the name of the token generator or consumer. Specifies a unique name for the token configuration.

The token generator or consumer name field displays the name of the pre-configured tokens that can be used in the key information configuration if you are editing a key or creating a new key.

You can select a token generator or consumer name from this list. The list of names changes, depending on whether the key information selected is for inbound (consumer) keys or outbound (generator) keys. For keys with outbound direction, the list of defined token generators is displayed. For keys with inbound direction, the list of defined token consumers is displayed.

Data type: String
Direction

Specifies whether the direction of the key is inbound or outbound.

The direction of generator tokens are outbound whereas the direction for consumer tokens and decryption keys are inbound.

Data type: String
Default values: Inbound (for consumer bindings) or Outbound (for generator bindings)
Custom Properties

Specifies additional configuration settings that token types might require.

Custom properties are arbitrary name-value pairs of data.

This table lists custom properties. Use custom properties to set internal system configuration properties. You are not required to define a custom property when you define a custom token.

Select

Specifies custom properties that you can add, edit, or delete from policy set bindings.

Click New to add and define a new custom property.

For existing custom properties, select the check box for the name of the custom property, and click one of the following actions:

Action Description
New Creates a new custom property entry. To add a custom property, enter the name and value.
Edit Specifies that you can edit the selected custom property. Click this option to provide input fields and create the list of cell values to edit. At least one custom property must exist before the Edit option is displayed.
Delete Removes the selected custom property.
Data type: Check box (unchecked)
Value

Specifies the custom property value.

This column displays the value for the custom property (for example, true). The value can be a string or the value can be a true or false Boolean value.

Data type: String or Boolean

Configuration tab

Name

Specifies the name of the custom property that you can use with default policy set bindings.

Custom properties are arbitrary name-value pairs of data. Custom properties are not initially displayed in this column until at least one custom property has been added.

Data type: String



Links marked (online) require access to the Internet.

Related tasks
Related reference
Application policy sets collection
Application policy set settings
Search attached applications collection
Policy set bindings settings
Token generator collection
Token generator configuration settings
Token consumer collection
Token consumer configuration settings

uwbs_wsspsbki