> Using the AquaLogic Service Bus Console > Proxy Service Providers

Using the AquaLogic Service Bus Console

     Previous  Next    Open TOC in new window    View as PDF - New Window  Get Adobe Reader - New Window
Content starts here

Proxy Service Providers

This section includes the following topics:

Overview of Proxy Service Providers

A proxy service provider contains Public Key Infrastructure (PKI) credentials that proxy services use for decrypting inbound SOAP messages and for outbound authentication and digital signatures. A PKI credential is a private key paired with a certificate that can be used for digital signatures and encryption (for Web Service Security) and for outbound SSL authentication. The certificate contains the public key that corresponds to the private key.

Note: To use a proxy service provider, you must configure a PKI credential mapping provider. See “Configuring the WebLogic Security Framework: Main Steps” under Understanding AquaLogic Service Bus Security in AquaLogic Service Bus Security Guide.

A single proxy service provider can contain all of the following PKI credentials:

You can use the same proxy service provider for multiple proxy services.

The following table lists the Proxy Service Provider pages that you can access from the Resource Browser and Project Explorer modules. The tasks and help topics associated with each are provided.

Page
Associated Tasks
Help Topics
Summary of Proxy Service Providers
View a list of proxy service providers
Listing and Locating Proxy Service Providers
Filter the list
Delete a proxy service provider
Deleting a Proxy Service Provider
Create a New Proxy Service Provider
Add a proxy service provider
Adding a Proxy Service Provider
Proxy Service Provider Details
View details of a specific proxy service provider
Viewing and Changing Proxy Service Provider Details
Update details of a specific proxy service provider

Listing and Locating Proxy Service Providers

The Summary of Proxy Service Providers page allows you to view a list of proxy service providers. A proxy service provider contains Public Key Infrastructure (PKI) credentials that proxy services use for outbound authentication. To learn more, see Overview of Proxy Service Providers.

To List and Locate Proxy Service Providers
  1. In the left navigation pane, select Resource Browser.
  2. In the left navigation pane, under Security, select Proxy Service Providers.

    3. The Summary of Proxy Service Providers displays the following information for each proxy service provider:

    Property
    Description
    Name
    A unique name for the proxy service provider.
    Click on the name to see the Proxy Service Provider Details page. To learn more, see Viewing and Changing Proxy Service Provider Details.
    Path
    The project name and the name of the folder in which the service account resides.
    Click on the name to see the project or folder that contains this resource. To learn more, see Viewing Project Details or Viewing Folder Details.
    Options
    Contains a Delete icon. If a proxy service has been configured to use the proxy service provider, contains a Delete icon with a red X to indicate that you cannot delete the proxy service provider.
    To learn more, see Deleting a Proxy Service Provider.

  3. To search for a proxy service provider, enter part or all of the provider’s name in the Name field. You can also enter part or all of the provider’s project name and folder in the Path fields. Then click Search.
  4. To clear the search results and display all proxy service providers, click View All.

Related Topics

Adding a Proxy Service Provider

Adding a Proxy Service Provider

The Create a New Proxy Service Provider page allows you to add a new proxy service provider. A proxy service provider contains Public Key Infrastructure (PKI) credentials that proxy services use for outbound authentication. To learn more, see Overview of Proxy Service Providers.

To Add a Proxy Service Provider
  1. If you have not already done so, in the Change Center click Create to create a new session or click Edit to enter an existing session. To learn more, see Using the Change Center.
  2. In the left navigation pane, select Project Explorer. The Project View page is displayed.
  3. Select the project to which you want to add the proxy service provider. You can add a proxy service provider directly to the project, or you can add it to a selected folder that resides in the project.
    4. Note: Click the name of a folder to select it. The Folder View page is displayed.
  4. From the Project View or Folder View page, in the Create Resource field, select Proxy Service Provider. The Create a New Proxy Service Provider page is displayed.
  5. In the Proxy Service Provider Name field, enter a unique name for this proxy service provider.
  6. (Optional) In the Description field, enter a description for the proxy service provider.
  7. Do any of the following:
    To Add a Key-Pair for...
    Complete These Steps...
    Digital encryption
    1. Next to Encryption Key, click the Browse button.

      2. The Select an alias for Encryption Key window displays the key aliases from the key store that your realm’s PKI credential mapper is using.

    2. In the Select an alias for Encryption Key window, enter the password that you use to secure access to the key store. (You set the password when you create the keystore.)
    3. Select a key alias that maps to an X.509 certificate and that supports encryption.
    4. Click the Submit button.
    When you associate this proxy service provider with a proxy service, AquaLogic Service Bus embeds the X.509 certificate into the proxy service’s WSDL. The proxy service then uses this certificate to encrypt the messages that it sends to its endpoint. The proxy service uses the private key in the PKI credential to decrypt the messages that the endpoint returns.
    Digital signatures
    1. Next to Digital Signature Key, click the Browse button.

      2. The Select an alias for Digital Signature Key window displays the key aliases from the key store that your realm’s PKI credential mapper is using.

    2. In the Select an alias for Digital Signature Key window, enter the password that you use to secure access to the key store. (You set the password when you create the keystore.)
    3. Select a key alias.
    4. Click the Submit button.
    SSL client authentication (two-way SSL)
    1. Next to SSL Client Authentication Key, click the Browse button.

      2. The Select an alias for SSL Client Authentication Key window displays the key aliases from the key store that your realm’s PKI credential mapper is using.

    2. In the Select an alias for SSL Client Authentication Key window, enter the password that you use to secure access to the key store. (You set the password when you create the keystore.)
    3. Select a key alias.
    4. Click the Submit button.
  8. Do one of the following:
    • To save the proxy service provider, click Save.

      • The Project View or Folder View page displays the new proxy service provider.

    • To disregard changes, click Cancel.
Note: The new proxy service provider is saved in the current session. When you have finished making changes to this configuration, from the left navigation pane, click Activate under Change Center. The session ends and the configuration is deployed to run time. Alternatively, click Discard at any time during the session to discard the changes you have made so far in the current session.

Related Topics

Listing and Locating Proxy Service Providers

Viewing and Changing Proxy Service Provider Details

Deleting a Proxy Service Provider

Viewing and Changing Proxy Service Provider Details

The Proxy Service Provider Details page allows you to view and change details of a specific proxy service provider. A proxy service provider contains Public Key Infrastructure (PKI) credentials that proxy services use for outbound authentication. To learn more, see Overview of Proxy Service Providers.

To View and Change Proxy Service Provider Details
  1. Locate the proxy service provider. To learn more, see Listing and Locating Proxy Service Providers.
  2. Click the proxy service provider name. The Proxy Service Provider Details page displays the following information:

    3. Property
    Description
    Proxy Service Provider Name
    The name of this proxy service provider.
    Last Modified By
    The user who created this proxy service provider or imported it into the configuration.
    Last Modified On
    The date and time that the user created this proxy service provider or imported it into the configuration.
    References
    The number of objects that this proxy service provider references. If such references exist, click the link to view a list of the objects. To learn more, see Viewing References.
    Referenced by
    The number of objects that reference this proxy service provider. If such references exist, click the link to view a list of the objects. For example, if you selected this proxy service provider as the service provider for a specific proxy service, the proxy service is listed as a reference when you click the link.To learn more, see Viewing References.
    Description
    A description of this proxy service provider, if one exists.

  3. If you have not already done so, in the Change Center click Create to create a new session or click Edit to enter an existing session. To learn more, see Using the Change Center.
  4. To make a change to the fields, click Edit. See Adding a Proxy Service Provider for a description of the fields.
  5. Do one of the following:
    • To update the proxy service provider, click Save. The proxy service provider is updated.

      • The Summary of Proxy Service Providers page is displayed.

    • To disregard changes, click Cancel.
Note: The proxy service provider is updated in the current session. When you have finished making changes to this configuration, from the left navigation pane, click Activate under Change Center. The session ends and the configuration is deployed. Alternatively, click Discard at any time during the session to discard the changes you have made so far in the current session.

Related Topics

Adding a Proxy Service Provider

Listing and Locating Proxy Service Providers

Deleting a Proxy Service Provider

Deleting a Proxy Service Provider

The Summary of Proxy Service Providers page allows you to delete proxy service providers. A proxy service provider contains Public Key Infrastructure (PKI) credentials that proxy services use for outbound authentication. To learn more, see Overview of Proxy Service Providers.

When you delete a proxy service provider, AquaLogic Service Bus also deletes the associated alias to key-pair bindings from PKI credential mapping provider. AquaLogic Service Bus does not delete the associated key-certificate pair from the key store.

To Delete a Proxy Service Provider
  1. If you have not already done so, in the Change Center click Create to create a new session or click Edit to enter an existing session. To learn more, see Using the Change Center.
  2. If any proxy service is configured to use the proxy service provider, remove the proxy service provider from the proxy service. You cannot delete a proxy service provider that is used by a proxy service.

    3. See Viewing and Changing Proxy Services.

  3. In the left navigation pane, select Proxy Service Providers from under Resource Browser. The Summary of Proxy Service Providers page is displayed.
  4. In the Options field of the proxy service provider you want to delete, click the Delete icon.

    5. The proxy service provider is removed from the list.

    Note: If necessary, you can undo the deletion of this resource. To learn more, see Undoing a Task.

    The proxy service provider is deleted in the current session. When you have finished making changes to this configuration, from the left navigation pane, click Activate under Change Center. The session ends and the configuration is deployed. Alternatively, click Discard at any time during the session to discard the changes you have made so far in the current session.

Related Topics

Adding a Proxy Service Provider

Listing and Locating Proxy Service Providers

Viewing and Changing Proxy Service Provider Details


  Back to Top       Previous  Next