The table refers to keystore and key aliases for the Signing Key, the Decryption Key, and the SSL Key. You can configure these keystore and key aliases on the Security > Certificates page of the Integration Server Administrator.The table refers to keystore and key aliases for the Signing Key, the Decryption Key, and the SSL Key. You can configure these keystore and key aliases on the Security > Certificates page of the Integration Server Administrator.The usage order applies to all attributes of a policy assertion except where otherwise specified. If a policy assertion is not specified, then certificate and key resolution order is not applicable.Security Action | Additional options | Usage/Resolution Order |
Signature Verification | 1. Passed In (Generated WSC) auth/message/partnerCert 2. Endpoint Alias WS Security Properties/Partner’s Certificate 3. WS Security Header Public key included in header | |
Validate signing certificate | 1. Endpoint Alias WS Security Properties/Truststore 2. Server Settings Truststore/Truststore Alias | |
Decryption | 1. Passed In (Generated WSC) auth/message/serverCerts/keyStoreAlias auth/message/serverCerts/keyAlias 2. Endpoint Alias WS Security Properties/Keystore Alias WS Security Properties/Key Alias 3. Server Settings Decryption Key/Keystore Alias Decryption Key/Key Alias 4. Server Settings SSL Key/Keystore Alias SSL Key/Key Alias |