Configuring Document Authentication

Basic (Username/Password)

Configuration:

Procedure:

Configuration in the IDE (Web Service)

...

       1.      Select a configuration of the Web service and open the security configuration.

       2.      Set the Authentication Mechanism to Document Authentication.

       3.      Choose the value Basic (username/password) to use an wsse:Username token for authentication.

       4.      In the tab Document Security set Username for the request and None for the response. This will accept a wsse:username security token for authentication. The settings need to be made for each operation.

Configuration in the IDE (proxy)

...

       1.      After the Web service has been deployed, generate a deployable proxy based on the WSDL.

       2.      Open the logical port.

       3.      Choose the value Basic (username/password) to use an wsse:Username token for authentication.

Runtime Configuration in the Visual Administrator

Username and password are maintained in the Visual Administrator.

...

       1.      Open the Visual Administrator.

       2.      Select the service Web Service Security.

       3.      Create an inbound profile:

                            a.      Select the tab Profile Administration.

                            b.      In the tab Inbound Messages select New to create a new profile.

                            c.      Enter a profile name.

                            d.      Choose the template Username.

                            e.      Save the profile.

       4.      Create an outbound profile:

                            a.      Select the tab Profile Administration

                            b.      In the tab Outbound Messages select New to create a new profile:

                            c.      Enter a profile name.

                            d.      Choose the template Username.

                            e.      Enter username and password.

                              f.      Save the profile.

       5.      Select the proxy in the Web Service Clients tree in the list of Web service proxies.

       6.      In the tab Document Security assign the corresponding profile to the operations.

       7.      In the list of Web services, select the service in the Web Services tree.

       8.      In the tab Document Security assign the corresponding profile to the operations.

Strong (X.509 Client Certificate)

Configuration:

Procedure:

Configuration in the IDE (Web service)

...

       1.      Select a configuration of the Web service and open the security configuration.

       2.      Set the Authentication Mechanism to Document Authentication.

       3.      Choose the value X.509 certificate to use an XML Signature for authentication.

       4.      In the tab Document Security set Signature for the request and None for the response. This will accept a XML Signature for authentication. The settings need to be made for each operation.

Configuration in the IDE (proxy)

...

       1.      After the Web service has been deployed, generate a deployable proxy based on the WSDL.

       2.      Open the logical port.

       3.      Choose the value X.509 Certificate to use an XML Signature token for authentication.

Runtime Configuration in the Visual Administrator

Inbound and outbound profiles are maintained in the Visual Administrator.

...

       1.      Open the Visual Administrator

       2.      Select the service Web Service Security

       3.      Create an inbound profile:

                            a.      Select the tab Profile Administration.

                            b.      In the tab Inbound Messages select New to create a new profile.

                            c.      Enter a profile name.

                            d.      Choose the template Signature

                            e.      Select a keystore view with trusted root certificates.

                              f.      Save the profile.

       4.      Create an outbound profile:

                            a.      Select the tab Profile Administration.

                            b.      In the tab Outbound Messages select New to create a new profile.

                            c.      Enter a profile name.

                            d.      Choose the template Signature.

                            e.      Select a key from the keystore for signing the message.

                              f.      Save the profile.

       5.      In the list of Web service proxies, select the proxy in the Web Service Clients tree.

       6.      In the tab Document Security assign the corresponding profile to the operations.

       7.      In the list of Web services, select the service in the Web Services tree.

       8.      In the tab Document Security assign the corresponding profile to the operations.

 

See also:

WS Security