Authentication token settings (generator or consumer)

Use this page to configure authentication tokens. Authentication tokens sign messages to provide integrity or encrypt messages to provide confidentiality.

You can add authentication token settings for message parts when you are editing a default cell or server binding. You can also configure custom bindings for tokens and message parts that are required by the policy set.

To view this administrative console page when you are editing a default cell binding, complete the following actions:
  1. Click Services > Policy sets > Default policy set bindings.
  2. Click the WS-Security policy in the Policies table.
  3. Click the Authentication and protection link in the Main message security policy bindings section.
  4. Click New token to create a new token generator or consumer or click an existing consumer or generator token link from the Authentication Tokens table.
To view this administrative console page when you are configuring custom bindings for tokens and message parts that are required by the policy set, complete the following actions:
  1. Click Applications > Enterprise applications .
  2. Select an application that contains Web services. The application must contain a service provider or a service client.
  3. Click the Service provider policy sets and bindings link or the Service client policy sets and bindings in the Web Services Properties section.
  4. Select a binding. You must have previously attached a policy set and assigned a custom binding.
  5. Click the WS-Security policy in the Policies table.
  6. Click the Authentication and protection link in the Main message security policy bindings section.
  7. Click a consumer or generator token link from the Protection Tokens table.
Name

Specifies the name of the token being configured. When using custom bindings, this field does not display.

Token type

Specifies the type of token being configured.

When you are using custom bindings, the token type is obtained from the policy file and it is read-only. When you are using default bindings, select a token type from the list. The following token types are available.

  • X509V3 Token v1.1
  • X509V3 Token v1.0
  • Username Token v1.1
  • Username Token v1.0
  • X509PKCS7 Token v1.1
  • X509PKCS7 Token v1.0
  • X509PkiPathV1 Token v1.1
  • X509PkiPathV1 Token v1.0
  • LTPA Propagation Token
  • X509V1 Token v1.1
  • LTPA Token
  • Custom Token
Local name

Specifies the local name of the authentication token generator or consumer. The Local name field is populated based on the token type displayed. Use this field to edit custom token types only.

URI

Specifies the uniform resource identifier (URI) of the authentication token generator or consumer. The URI field is populated based on the token type displayed. Use this field to edit custom token types only.

Security token reference

Specifies the security token reference. The security token reference field displays only for authentication tokens in custom bindings. This field is not available for default bindings.

JAAS login

Specifies the Java Authentication and Authorization Service (JAAS) application login information. Click New to add a new JAAS application login or JAAS system login entry.

Custom properties – Name

Specifies the name used for the custom property.

Custom properties are not initially displayed in this column. Clicking one of the following buttons enables the actions described:

Button Resulting Action
New Creates a new custom property entry. To add a custom property, enter the name and value.
Edit Enables the selected custom property to be edited. Clicking this button provides input fields and creates the listing of cell values to be edited. The Edit button is not available until at least one custom property has been added.
Delete Removes the selected custom property.
Custom properties – Value

Specifies the value of the custom property to be used. Use this the Value field to enter, edit, or delete the value for a custom property.

Callback Handler

Links to the Callback handler page where you can configure callback handlers. Callback handler settings determine how security tokens are acquired from messages headers.

If you are working with a Username token or LTPA token that is using default bindings, the user names and passwords might have been provided as examples. You need to update the values for these token types.




Links marked (online) require access to the Internet.

Related tasks
Related reference
Callback handler settings
Protection token settings (generator or consumer)
Application policy sets collection
WS-Security authentication and protection

uwbs_wsspsbat