Before you begin
You must first create the Web Service security configuration that is associated with a Web Service before you can configure specific features.
See Create a Web Service security configuration for details about creating a security configuration.
The core security realm of WebLogic Server includes a default keystore configured with a key and certificate pair, which message-level secured Web Services can use to encrypt and digitally sign SOAP message. However, it is a good practice to use different key and certificate pairs for different tasks. For this reason, you can create a keystore which the WebLogic Web Services runtime can use to digitally sign SOAP messages when needed, as described by the following procedure.
Web Services programmers associate a Web Service security
configuration using the @WssConfiguration
JWS
annotation; the value
attribute specifies the
associated configuration name. If the programmer does not specify
the value
attribute, the Web Service is associated
with the default security configuration:
default_wss
.
weblogic.wsee.security.bst.ServerBSTCredentialProvider
.x509
.IntegrityKeyStore
.oasis.jks
.Ensure the Is Encrypted check box is not checked.
IntegrityKeyStorePassword
.true
.Check the Is Encrypted check box.
IntegrityKeyAlias
.Bob
.Ensure the Is Encrypted check box is not checked.
IntegrityKeyPassword
.true
.Check the Is Encrypted check box.
After you finish
You must redeploy any Web Service which is associated with this security configuration for the security changes to take effect.