Before Configuring the WS-Security Facility
Several prerequisites are necessary before beginning the Integration Server WS-Security facility configuration process:
Make sure that the following applications have been started and are running:
The
Integration Server hosting the web service for which you are configuring the WS-Security facility.
An instance of
Designer.
Certificate files for the web service provider or consumer must exist.
You will need to specify the locations of these certificate files during the configuration process. The certificate files contain the signed certificate (or chain of certificates), and the trusted authority directory contains the trusted roots of the certificate signing authority.
Verify that the security policy you want to enforce is already specified in an XML, WS-Security facility policy file.
Integration Server provides several “out-of-the-box” WS-Security facility policy files for coverage of typical message-based security situations. In most cases, you will be able to use one of these policy files as is.
If your security needs require the creation of a custom policy file, you can do so by copying one of the supplied WS-Security facility policy files and editing the copy. Make sure to give the copied file a unique ID (see
Sample Policy File for more information).
Verify that the WS-Security facility policy file contains the settings you want and is located in the proper directory. WS-Security facility policy files must be placed in the following folder on the machine hosting
Integration Server:
Software AG_directory \IntegrationServer\instances\instance_name\config\policy