Transport Security (SSL)
The Transport Security mechanism uses SSL for authentication and confidentiality during message transport. Transport-layer security relies on secure HTTP transport (HTTPS) using Secure Sockets Layer (SSL). This point-to-point security mechanism that can be used for authentication, message integrity, and confidentiality.
Server-Side Requirements
The following server-side options need to be configured for this security mechanisms:
-
SSL: Configure the system to point to the client and server Keystore and Truststore files.
-
User in GlassFish: Add a user to the file realm of GlassFish to use a mechanism that requires a user database for authentication.
Client-Side Requirements
The following client-side options need to be configured for this security mechanisms:
-
SSL: Configure the system to point to the client and server Keystore and Truststore files.
-
User in GlassFish: Add a user to the file realm of GlassFish to use a mechanism that requires a user database for authentication.
|
Property |
Description |
Value |
|---|---|---|
|
Algorithm Suite |
Specifies the algorithm suite required to perform cryptographic operations with symmetric or asymmetric key-based security tokens. See Algorithm Suite under Table 21 for more information. |
Basic 128bit |
|
Security Header Layout |
Specifies the layout rule to apply when adding items to the security header. Options are Strict, Lax, Lax (Timestamp First), and Lax (Timestamp Last). See Security Header Layout under Table 21 for more information. |
Strict |
|
Require Client Certificate |
Specifies that a client certificate must be provided to the server for verification. If you are using a security mechanism with SSL, a client certificate will be required by the server both during its initial handshake and again during verification. |
Check box Selected indicates disabled. |
- © 2010, Oracle Corporation and/or its affiliates