Callback handler settings

Use this page to configure callback handler settings which determine how security tokens are acquired from messages headers.

You can configure callback handler settings when you are editing a default cell or server binding. You can also configure custom bindings for tokens and message parts that are required by the policy set.

To view this administrative console page when you are editing a default cell binding, complete the following actions:
  1. Click Services > Policy sets > Default policy set bindings.
  2. Click the WS-Security policy in the Policies table.
  3. Click the Authentication and protection link in the Main message security policy bindings section.
  4. Click the name_of_token link in the Protection tokens section or the Authentication tokens section.
  5. Click the Callback handler link.
To view this administrative console page when you are configuring custom bindings for tokens and message parts that are required by the policy set, complete the following actions:
  1. Click Applications > Enterprise applications .
  2. Select an application that contains Web services. The application must contain a service provider or a service client.
  3. Click the Service provider policy sets and bindings link or the Service client policy sets and bindings in the Web Services Properties section.
  4. Select a binding. You must have previously attached a policy set and assigned a custom binding.
  5. Click the WS-Security policy in the Policies table.
  6. Click the Authentication and protection link in the Main message security policy bindings section.
  7. Click the name_of_token link in the Protection tokens section or the Authentication tokens section.
  8. Click the Callback handler link.

The Callback Handler displays fields differently for different tokens being configured. Depending on whether you are configuring generator or consumer tokens for protection or you are configuring inbound or outbound tokens for authentication, the sections and fields on this panel display some or all of the fields explained in this topic, as noted in the description of each field.

Class name

The fields in the Class name section are available for all types of token configuration.

Select the class name to use for the callback handler. Select the Use built-in default option for normal operation. Use the Use custom option only if your are using a custom token type

Certificates

The fields in the Certificates section are available if you are configuring a protection token. For a consumer token, you can use the Trust any certificate or the Certificate store options to configure the certificate. For a generator token, you can click a certificate from the listing or click the New button to add one.

Certificates – Trust any certificate

Specifies, if the protection token has a certificate configured, a to trust any certificate and not define the certificate store. Select this option to trust each certificate. This option is mutually exclusive to the Certificate store option and is only applicable to the token consumer.

Certificates – Certificate store

Specifies, if the protection token has a certificate configured, the certificate store to be trusted. Select this option to trust each certificate store specified in the entry field. This option is mutually exclusive to the Trust any certificate option. When you select this option, the New button is enabled so that you can configure a new certificate store. You can also add a second certificate store to the Trusted anchor store entry field when you click Certificate store. The Trusted anchor store field is only applicable to the token consumer.

Basic authentication

The fields in the Basic authentication section are available if you are configuring an authentication token that is not an LTPA Propagation token.

Keystore

The fields in the Keystore section are available if you are configuring a protection token.

In the Keystore name list, you can click Custom to define a custom keystore, click one of the externally defined keystore names, or click None if no keystore is required.

Key

The fields in the Key section are available if you are configuring a protection token.

Custom properties

The fields in the Custom properties section are available for all types of token configuration.

You can add custom properties needed by the callback handler here using name-value pairs.




Links marked (online) require access to the Internet.

Related tasks
Related reference
Protection token settings (generator or consumer)
Application policy sets collection
Application policy set settings
Search attached applications collection
Policy set bindings settings

uwbs_wsspsbch