| |
|
RSS Feed - WebSphere MQ Support
|
RSS Feed - Message Broker Support
|
  |
|
| Web Service x.509 signing |
« View previous topic :: View next topic » |
| Author |
Message
|
| kenward |
 Posted: Mon Nov 29, 2010 7:27 am Post subject: Web Service x.509 signing |
 |
|
Apprentice
Joined: 01 Jun 2010
Posts: 41
Location: Detroit, MI
|
Hi All,
Been looking into a few examples online that went a bit over the top so I thought someone here might have done something more simply.
All I want to do is have a web service deployed on WMB 7.x that requires that the caller sign the body of the request with an x.509 certificate.
So far, I configured this:
Policy Set:
WS-Security->Message Level Protection
Message level proteciton is checked
Require signature confirmation is checked
Include timestamp is checked
Strict is checked.
Tokens:
I have an initiator token of time 'Initiator', version 1.0, and type x.509 version 3
Message Part Protection:
One entry with security type Signature, Soap Message is Request, and Message Body is Yes.
Under the Policy Binding:
The associated policy is set
The config is used with Provider
WS-Security->Message Part Policy:
Under Message Part signature policies, the matching policy is there with the token 'initToken', the Token Type is STRREF, and order is N/A.
I couldn't find any good documentation that oulines the values for token type. Is STRREF the right one for this?
Under Key Information, I have the key name and alias name of the client's cert and the trust is set to Trust Store.
The trust store of the execution group includes the client's certificate (self signed for now).
Is this how you guys set this up?
-Jeff |
|
| Back to top |
|
 |
|
|
|
| |
|
Page 1 of 1 |
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
|
|
