Part III describes how to configure your Web service for message protection, SSL, authentication, and authorization. SAML and WS-Trust use cases are included as examples. You can also integrate various hardware modules with Oracle Web Services Manager.
Part III contains the following chapters:
Chapter 7, "Configuring Message Protection," describes how to work with keystores and credential stores. It also describes how to use identity extensions and setup the Java object cache.
Chapter 8, "Configuring Transport-Level Security (SSL)," describes how to work with transport-level security in the form of SSL. It describes how to configure one-way and two-way SSL for WebLogic Server and for Web service clients. It also describes how to configure SSL for Oracle HTTP Server.
Chapter 9, "Configuring Authentication," describes how to configure various message protection features, such as authentication providers, login modules, SAML, Kerberos, ActiveDirectory, WS-Trust, and identity extensions.
Chapter 10, "Configuring Authorization," describes adding additional message protection, such as determining which resources to protect, and setting authorization permissions and an OPSS resource name.
Chapter 11, "Configuring Secure Conversation," describes how to configure WS-SecureConversation.
Chapter 12, "Integrating Hardware with Oracle Web Services Manager," describes how to integrate Web Services Manager with various hardware security modules and for Oracle SPARC T4 Cryptographic Acceleration.
Chapter 13, "SAML Message Protection Use Case," provides an end to end example of implementing SAML message protection on a Web service and Web service client.
Chapter 14, "WS-Trust Use Cases," provides end-to-end examples using WS-Trust with Open SSO Security Token Service (STS) server to configure various security scenarios.