Before you begin
You must first create the Web service security configuration that is associated with a Web service before you can configure specific features.
See Create a Web service security configuration for details about creating a security configuration.
The Default Identity Asserter of WebLogic Server is configured, by default, to use username/password tokens for authentication, and is not configured to accept X.509 certificates. Client applications that invoke a Web service use the Default Identity Asserter for authentication, by default.
However, a programmer can specify (using security assertions in the WS-SecurityPolicy file associated with a Web service) that a client application invoking the service should use X.509 certificates as tokens to establish identity. To enable this functionality, you must configure the Web service security configuration associated with the service, as well as configure the Default Identity Asserter.
Web services programmers associate a Web service security
configuration using the
value attribute specifies the
associated configuration name. If the programmer does not specify
value attribute, the Web service is associated
with the default security configuration:
myrealmsecurity realm, displayed in the Realms table.
DefaultIdentityAsserterin the Authentication Providers table.
X.509from the Available to the Chosen box.
After you finish
You must redeploy any Web service which is associated with this security configuration for the security changes to take effect.