Use this page to view a list of trusted identity (ID) evaluators.
The trusted ID evaluator determines whether to trust the identity-asserting
authority. After the ID is trusted, the application server issues the proper
credentials based on the identity, which are used in a downstream call for
invoking resources. The trusted ID evaluator implements the com.ibm.wsspi.wssecurity.id.TrustedIDEvaluator
interface.
To view this administrative console page for trusted ID evaluators on the
server level, complete the following steps:
- Click Servers > Application servers > server_name.
- Under Security, click Web services: Default bindings for Web services
security.
- Under Additional properties, click Trusted ID evaluators.
- Click New to create a trusted ID evaluator or click Delete to
a delete a trusted ID evaluator.
![[Version 6 only]](../../v6plusapp.gif)
To view this administrative console page for trusted ID
evaluators on the application level, complete the following steps:
- Click Applications > Enterprise applications > application_name.
- Under Related items, click EJB modules or Web modules.
- Click URI_name.
- Under Additional properties, click Web services: Server security bindings.
- Under Request consumer (receiver) binding, click Edit custom.
- Click Trusted ID evaluators.
- Click New to create a trusted ID evaluator or click Delete to
delete a trusted ID evaluator.
![[Version 5 only]](../../v5app.gif)
To view this administrative console page for trusted ID
evaluators on the application level, complete the following steps:
- Click Applications > Enterprise applications > application_name.
- Click Manage modules > URI_name.
- Under Web Service Security Properties, click Web services:
Server security bindings.
- Click Edit under Request receiver binding.
- Click Trusted ID evaluators.
- Click New to create a trusted ID evaluator or click Delete to
delete a trusted ID evaluator.
Important: Trusted ID evaluators
are only required for the request receiver (Version 5.x applications) and
the request consumer (Version 6.0.x.x applications), if identity assertion
is configured.
Using this trusted ID evaluator collection panel, complete the following
steps:
- Specify a trusted ID evaluator name and a trusted ID evaluator class name.
- Save your changes by clicking Save in the messages section at the
top of the administrative console.
- Click Update run time to update the Web services security run time
with the default binding information, which is found in the ws_security.xml file.
The configuration changes made to the other Web services also are updated
in the Web services security run time.