System policy set collection

Use this page to view information about or manage system policy sets. A policy set is a named collection of policies. Use the system policy sets, or assertions about how services are defined, to configure access to the trust service.

To view this administrative console page, click Services > Policy sets > System policy sets.

Select

Provides a check box next to the name of an existing system policy set that you want to select for further actions.

To manage existing system policy sets, select the check box for a system policy set and then select one of the following actions:

Actions Description
Delete Removes one or more selected system policy sets. You cannot delete any of the default policy sets.
Copy Opens a new panel where you can create a copy of the selected existing policy set. Provide a unique name and, optionally, a description for the copied policy set. You must also specify whether to transfer the attachment and binding from the original version to the copy. You can select only one policy set to be copied at one time.
Export Opens a new panel where you can export the selected policy set. You can select only one policy set to be exported at one time.

Importing of a policy set is not supported.

New

Specifies to create and define a custom system policy set.

Data type: Button
Name

Provides a list of available system policy sets.

This column displays a list of default and custom system policy set names. WebSphere Application Server provides two default system policy sets:
  • TrustServiceSecurityDefault is a default trust policy set. This trust policy set specifies the asymmetric algorithm as well as the public and private keys to provide message security. Message integrity is provided by digitally signing the body, time stamp, and WS-Addressing headers using RSA. Message confidentiality is provided by encrypting the body and signature using RSA. This policy set follows the WS-Security specifications for the issue and renew trust operation requests.
  • TrustServiceSymmetricDefault is a default trust policy set. This trust policy set specifies the symmetric algorithm as well as the derived key algorithms to provide message security. Message integrity is provided by digitally signing the body, time stamp, and WS-Addressing headers using HMAC-SHA1. Message confidentiality is provided by encrypting the body and signature using AES. This policy set follows the WS-Security and WS-SecureConversation specifications for the validate and cancel trust operation requests.

All custom system policy sets (for example, EcommerceTrustServiceSecurity) are also displayed in the list. Click the system policy set name to view additional details about the selected policy set.

Data type: String
Defaults: TrustServiceSecurityDefault and TrustServiceSymmetricDefault
Editable

Provides information as to whether the system policy set can be edited.

This column shows whether the policy set is a user-defined, custom policy set, which can be edited or whether the policy set is a default policy set, which is read only and cannot be edited. Values displayed in this field are: Editable or Read only.

Data type: String
Default: Read only
Description

Provides brief descriptions of the system policy sets that currently exist.

This column provides a brief description of the policy sets that are available. You cannot edit information for the default system policy sets. For custom policy sets that you create, you can create this description when you create the policy set. Or, you can edit any custom policy set and modify the description on the details panel at any time. The description field is optional.

Data type: String



Links marked (online) require access to the Internet.

Related tasks
Related reference
System policy set settings

uwbs_confwstrustpolicysets