Before you can use a hardware cryptographic device, you
must configure and enable it. You must first configure a hardware
cryptographic device using the Secure Sockets Layer (SSL) certificate
and key management panels in the administrative console. The key for
the cryptographic operation can be stored in an ordinary Java keystore
file and need not be stored on the hardware devices.
Before you begin
You must first configure a hardware
cryptographic device using the Secure Sockets Layer (SSL) certificate
and key management panels in the administrative console.
Note: Fix packs that include updates to the Software
Development Kit (SDK) might overwrite unrestricted policy files. Back
up unrestricted policy files before you apply a fix pack and reapply
these files after the fix pack is applied.
Procedure
- In the administrative console,
click Servers > WebSphere application servers and then
select the server name.
- Under Security, select JAX-WS
and JAX-RPC security runtime.
- Under Cryptographic Hardware, select Enable
cryptographic operations on hardware device and then specify the
name of the hardware cryptographic device configuration name.
For more information, see Configuring a hardware cryptographic keystore.
- Click OK.
Results
This procedure configures a
hardware cryptographic device for all Web services security applications
running on this application server.