This guide describes interoperability of Oracle Web Services Manager (Oracle WSM) with various security stacks. Each chapter includes the following information:
Overview of each security stack
An explanation of the usage scenarios
For details regarding limitations and known problems, see Oracle Fusion Middleware Release Notes.
In Oracle WSM 11g, you attach policies to Web service endpoints. Each policy consists of one or more assertions, defined at the domain-level, that define the security requirements. A set of predefined policies and assertions are provided out-of-the-box.
For more details about the predefined policies, see "Predefined Policies" in Oracle Fusion Middleware Security and Administrator's Guide for Web Services.
For information about configuring and attaching policies, see "Configuring Policies" and "Attaching Policies to Web Services" in Oracle Fusion Middleware Security and Administrator's Guide for Web Services.
Table 1-1 describes the most common Oracle WSM interoperability scenarios.
Table 1-1 Common Oracle WSM Interoperability Scenarios
| Security Stack | Oracle WSM 11g Policies | Interoperability Scenario |
|---|---|---|
|
Oracle WSM 10g |
oracle/wss10_message_protection_service_policy oracle/wss10_message_protection_client_policy |
"Anonymous Authentication with Message Protection (WS-Security 1.0)" |
|
Oracle WSM 10g |
oracle/wss10_username_token_with_message_protection_service_policy oracle/wss10_username_token_with_message_protection_client_policy |
|
|
Oracle WSM 10g |
oracle/wss10_saml_token_with_message_protection_service_policy oracle/wss10_saml_token_with_message_protection_client_policy |
"SAML Token (Sender Vouches) with Message Protection (WS-Security 1.0)" |
|
Oracle WSM 10g |
oracle/wss10_x509_token_with_message_protection_service_policy oracle/wss10_x509_token_with_message_protection_client_policy |
"Mutual Authentication with Message Protection (WS-Security 1.0)" |
|
Oracle WSM 10g |
oracle/wss_username_token_over_ssl_service_policy oracle/wss_username_token_over_ssl_client_policy |
|
|
Oracle WSM 10g |
oracle/wss_saml_token_over_ssl_service_policy oracle/wss_saml_token_over_ssl_client_policy |
|
|
OC4J 10g |
oracle/wss10_message_protection_service_policy oracle/wss10_message_protection_client_policy |
"Anonymous Authentication with Message Protection (WS-Security 1.0)" |
|
OC4J 10g |
oracle/wss10_username_token_with_message_protection_service_policy oracle/wss10_username_token_with_message_protection_client_policy |
|
|
OC4J 10g |
oracle/wss10_saml_token_with_message_protection_service_policy oracle/wss10_saml_token_with_message_protection_client_policy |
"SAML Token (Sender Vouches) with Message Protection (WS-Security 1.0)" |
|
OC4J 10g |
oracle/wss10_x509_token_with_message_protection_service_policy oracle/wss10_x509_token_with_message_protection_client_policy |
"Mutual Authentication with Message Protection (WS-Security 1.0)" |
|
OC4J 10g |
oracle/wss_username_token_over_ssl_service_policy ORoracle/wss_saml_or_username_token_over_ssl_service_policy oracle/wss_username_token_over_ssl_client_policy |
|
|
OC4J 10g |
oracle/wss_saml_token_over_ssl_service_policy OR oracle/wss_saml_or_username_token_over_ssl_service_policy oracle/wss_saml_token_over_ssl_client_policy |
|
|
Oracle WebLogic Server 11g |
oracle/wss11_username_token_with_message_protection_service_policy oracle/wss11_username_token_with_message_protection_client_policy |
|
|
Oracle WebLogic Server 11g |
oracle/wss10_username_token_with_message_protection_service_policy oracle/wss10_username_token_with_message_protection_client_policy |
|
|
Oracle WebLogic Server 11g |
oracle/wss_username_token_over_ssl_service_policy |
|
|
Oracle WebLogic Server 11g |
oracle/wss_username_token_over_ssl_service_policy |
|
|
Oracle WebLogic Server 11g |
oracle/wss_saml_token_over_ssl_service_policy |
|
|
Oracle WebLogic Server 11g |
oracle/wss11_saml20_token_with_message_protection_service_policy oracle/wss11_saml20_token_with_message_protection_client_policy |
|
|
Oracle WebLogic Server 11g |
oracle/wss11_saml20_token_with_message_protection_service_policy oracle/wss11_saml20_token_with_message_protection_client_policy |
"SAML Token 2.0 (Sender Vouches) With Message Protection (WS-Security 1.1)" |
|
Oracle WebLogic Server 11g |
oracle/wss11_saml_token_with_message_protection_service_policy oracle/wss11_saml_token_with_message_protection_client_policy |
"SAML Token (Sender Vouches) with Message Protection (WS-Security 1.1)" |
|
Oracle WebLogic Server 11g |
oracle/wss11_saml_token_with_message_protection_service_policy oracle/wss11_saml_token_with_message_protection_client_policy |
"SAML Token (Sender Vouches) with Message Protection (WS-Security 1.1) and MTOM" |
|
Oracle WebLogic Server 11g |
oracle/wss10_saml_token_with_message_protection_service_policy oracle/wss10_saml_token_with_message_protection_client_policy |
"SAML Token (Sender Vouches) with Message Protection (WS-Security 1.0)" |
|
Oracle WebLogic Server 11g |
oracle/wss10_x509_token_with_message_protection_service_policy oracle/wss10_x509_token_with_message_protection_client_policy |
"Mutual Authentication with Message Protection (WS-Security 1.0)" |
|
Oracle WebLogic Server 11g |
oracle/wss11_x509_token_with_message_protection_service_policy oracle/wss11_x509_token_with_message_protection_client_policy |
"Mutual Authentication with Message Protection (WS-Security 1.1)" |
|
Microsoft WCF/.NET 3.5 |
oracle/wsmtom_service_policyoracle/wsmtom_client_policy |
|
|
Microsoft WCF/.NET 3.5 |
oracle/wss11_username_token_with_message_protection_service_policy OR oracle/wss11_saml_or_username_token_with_message_protection_service_policy oracle/wss11_username_token_with_message_protection_client_policy |
|
|
Microsoft WCF/.NET 3.5 |
oracle/wss_saml_or_username_token_over_ssl_service_policy OR oracle/wss_username_token_over_ssl_service_policy |
|
|
Microsoft WCF/.NET 3.5 |
oracle/wss11_x509_token_with_message_protection_service_policy oracle/wss11_x509_token_with_message_protection_client_policy |
"Mutual Authentication with Message Protection (WS-Security 1.1)" |
|
Microsoft WCF/.NET 3.5 |
oracle/wss11_kerberos_with_message_protection_service_policy |
|
|
Oracle Service Bus 10g |
wss10_username_token_with_message_protection_service_policy wss10_username_token_with_message_protection_client_policy |
|
|
Oracle Service Bus 10g |
oracle/wss10_saml_token_with_message_protection_service_policy oracle/wss10_saml_token_with_message_protection_client_policy |
"SAML Token (Sender Vouches) with Message Protection (WS-Security 1.0)" |
|
Oracle Service Bus 10g |
oracle/wss_saml_or_username_token_over_ssl_service_policy |
|
|
Oracle Service Bus 10g |
oracle/wss10_x509_token_with_message_protection_service_policy oracle/wss10_x509_token_with_message_protection_client_policy |
"Mutual Authentication with Message Protection (WS-Security 1.0)" |
|
Axis 1.4 and WSS4J 1.5.8 |
oracle/wss10_username_token_with_message_protection_service_policy oracle/wss10_username_token_with_message_protection_client_policy |
|
|
Axis 1.4 and WSS4J 1.5.8 |
oracle/wss10_saml_token_with_message_protection_service_policy oracle/wss10_saml_token_with_message_protection_client_policy |
|
|
Axis 1.4 and WSS4J 1.5.8 |
oracle/wss_username_token_over_ssl_service_policy oracle/wss_username_token_over_ssl_client_policy |
|
|
Axis 1.4 and WSS4J 1.5.8 |
oracle/wss_saml_token_over_ssl_service_policy oracle/wss_saml_token_over_ssl_client_policy |
|
|
GlassFish Enterprise Server |
oracle/wss11_username_token_with_message_protection_service_policy oracle/wss11_username_token_with_message_protection_client_policy |
|
|
GlassFish Enterprise Server |
oracle/wss11_saml_token_with_message_protection_service_policy oracle/wss11_saml_token_with_message_protection_client_policy |
"SAML Token (Sender Vouches) with Message Protection (WS-Security 1.1)" |