Oracle® Fusion Middleware
Part 10. Kerberos
Sidebar
Prev
|
Next
Part 10. Kerberos
Contents
Kerberos configuration
Overview
Kerberos configuration file—krb5.conf
Advanced settings
Native GSS library
Kerberos client authentication
Overview
General settings
Kerberos client settings
Kerberos token profile settings
Contents
Search
Getting Started
Oracle API Gateway Explorer Overview
Overview
Stress Test Services
Traffic Simulation
Sample SOAP Messages
Application-level Networking
Test Federated Identity Deployments
Test XML, REST, and SOAP
SOAP Attachments
Simple Graphical Keystore
Add or Remove Security Tokens
Transfer Encoding
Testing Tool for Design-time Governance
System Requirements
Prerequisites
Requirements
Installation Instructions
API Gateway Explorer Release Notes
Overview
In this Version
Installation
Documentation
Acknowledgements
OpenSSL License Issues
Overview
OpenSSL License
Original SSLeay License
General Configuration
Introducing Oracle API Gateway Explorer
Overview
API Gateway Explorer Classic View
API Gateway Explorer Design View
Checking WSDL for WS-I Compliance
Using the Send Request Command
Using the API Gateway Explorer Classic Mode
Overview
Auto-Generating SOAP Messages from WSDL Files
SOAP Request and Response
Connection Settings
Sign Request
Encrypt Request
Decrypt Request
Insert SAML Token
Insert WS-Security UsernameToken
Generating and Running Test Cases
Overview
Using WSDL to Generate Test Cases
Running Test Cases
Viewing the Results
Configuring Individual Test Cases
Running Attack Vectors
Overview
Configuring an Attack Vector
Inserting Attack Vectors into Sample Messages
Viewing the Results
Testing WSDL Files for WS-I Compliance
Overview
Running the WS-I Compliance Test
Manage certificates and keys
Overview
View certificates and keys
Certificate management options
Configure an X.509 certificate
Create a certificate
Import certificates
Configure a private key
Private key stored locally
Private key provided by OpenSSL engine
Private key stored on external HSM
Configure HSMs and certificate realms
Manage HSMs with keystoreadmin
Use keystoreadmin in interactive mode
Step 1—Register an HSM provider
Step 2—Create a certificate realm and associated keystore
Step 3—Start the API Gateway Explorer when using an HSM
Start API Gateway with manually entered PIN passphrase
Start API Gateway with automatic PIN passphrase
Configure SSH key pairs
Add a key pair
Manage OpenSSH keys
Configure PGP key pairs
Add a PGP key pair
Manage PGP keys
Global import and export options
Import and export certificates and keys
Manage certificates in Java keystores
Further information
Configuring Connection Settings
Overview
URL
Proxy Settings
Trusted Certificates
Client SSL Authentication
HTTP Authentication
Stress test with send request (sr)
Overview
Basic sr examples
Advanced sr examples
sr arguments
Further information
Global Schema Cache
Overview
Adding Schemas to the Cache
Schema Validation
General Preferences
Overview
Auto Format Response
JMS
Kerberos
Proxy Settings
Runtime Dependencies
SMTP
SSL Settings
TCP/IP Monitor
Test Case Colors
Trace Level
VM Arguments
Web and XML
Wildcards
WS-I Settings
Attributes
Retrieve attribute from HTTP header
Overview
Configuration
Insert SAML attribute assertion
Overview
General settings
Assertion Details
Assertion Location
Subject Confirmation Method
Advanced settings
Retrieve attribute from message
Overview
Configuration
Authentication
Insert SAML authentication assertion
Overview
General settings
Assertion details settings
Assertion location settings
Subject confirmation method settings
Advanced settings
Insert WS-Security UsernameToken
Overview
General settings
Credential details
Advanced options
Set User Name
Overview
Configuration
Authorization
Insert SAML authorization assertion
Overview
General settings
Assertion details settings
Assertion location settings
Subject confirmation method settings
Asymmetric Key
Symmetric Key
Key Info
Advanced settings
Content Filtering
Content type filtering
Overview
Allow or deny content types
Configure MIME/DIME types
Content validation
Overview
Manual XPath configuration
XPath wizard
HTTP Status
Overview
Configuration
Has SOAP Body?
Overview
Configuration
Is SOAP Fault?
Overview
Configuration
HTTP header validation
Overview
Configure HTTP header regular expressions
Configure threatening content regular expressions
Regular expression format
Schema validation
Overview
General settings
Selecting the schema
Selecting which part of the message to match
Advanced settings
Reporting schema validation errors
Validate selector expression
Overview
Configure selector-based regular expressions
Configure a Regular Expression
Threatening content regular expressions
Conversion
Add HTTP header
Overview
Configuration
Set HTTP verb
Overview
Configuration
Remove attachments
Overview
Configuration
Set message
Overview
Configuration
Example of using selectors in the message body
Encryption
XML decryption
Overview
Configuration
Auto-generation using the XML decryption wizard
XML decryption settings
Overview
XML encryption overview
Nodes to decrypt
Decryption key
Options
Auto-generation using the XML decryption wizard
XML encryption
Overview
Configuration
Auto-generation using the XML encryption settings wizard
XML encryption settings
Overview
XML encryption overview
Encryption key settings
Key info settings
Recipient settings
What to encrypt settings
Advanced settings
Auto-generation using the XML encryption settings wizard
XML Encryption Wizard
Overview
Configuration
Integrity
XML signature generation
Overview
General settings
Signing key settings
Asymmetric Key
Symmetric Key
Key Info
What to sign settings
Where to place signature settings
Advanced settings
Additional
Algorithm Suite
Options
XML signature verification
Overview
General settings
Signature verification settings
What must be signed settings
Advanced settings
Kerberos
Kerberos configuration
Overview
Kerberos configuration file—krb5.conf
Advanced settings
Native GSS library
Kerberos client authentication
Overview
General settings
Kerberos client settings
Kerberos token profile settings
Routing
Connection
Overview
General settings
SSL settings
Authentication settings
Additional settings
Connect to URL
Overview
General settings
Request settings
SSL settings
Trusted certificates
Client certificates
Authentication settings
Additional settings
Retry settings
Failure settings
Proxy settings
Redirect settings
Header settings
HTTP status code
Overview
Configuration
Insert WS-Addressing information
Overview
Configuration
Send to JMS
Overview
Request settings
Response settings
Rewrite URL
Overview
Configuration
Route to SMTP
Overview
General settings
Message settings
Static router
Overview
Configuration
Utility
False filter
Overview
Configuration
Find certificate
Overview
Configuration
Further information
Pause processing
Overview
Configuration
Scripting language filter
Overview
Write a script
Use local variables
Add your script JARs to the classpath
Add your script JARs to the API Gateway Explorer classpath
Add your script JARs to Policy Studio
Configure a script filter
Add a script to the library
Test Case Shortcut
Overview
Configuration
True filter
Overview
Configuration
Common Configuration
Retrieve WSDL files from a UDDI registry
Overview
UDDI concepts
UDDI definitions
Example tModel mapping for WSDL portType
Configure a registry connection
WSDL search
Quick search
Name search
UDDI v3 name searches
Advanced search
Advanced options
Publish
Add a businessEntity
Add a tModel
Connect to a UDDI registry
Overview
Configure a registry connection
Secure a connection to a UDDI registry
Configure Policy Studio to trust a registry certificate
Configure mutual SSL authentication
Configure XPath expressions
Overview
Manual configuration
Return a nodeset
XPath wizard
Signature location
Overview
Configuration
Use WS-Security actors
Use SOAP header
Use XPath expression
What to sign
Overview
ID configuration
Node locations
XPath configuration
XPath predicates
Message attribute
Select configuration values at runtime
Overview
Selector syntax
Access fields
Special selector keys
Resolve selectors
Example selector expressions
Message attribute
Environment variable
Key Property Store
Examples using reflection
Extract message attributes
Search
Search Highlighter (On/Off)