Use this page to configure additional security properties.
Specifies the name of the property.
Information | Value |
---|---|
Data type: | String |
Specifies the value for the property.
Information | Value |
---|---|
Data type: | String |
Configuration panel name | Property name | Property value | Description |
---|---|---|---|
JAAS configuration | com.ibm.wsspi.wssecurity. token.X509.issuerName | Specify the SubjectDN or the IssuerDN of the issuer for the X.509 certificate. | This property is used to specify the issuer of the certificate in the token consumer component. |
JAAS configuration | com.ibm.wsspi.wssecurity. token.X509.issuerSerial | Specify the serial number of the X.509 certificate. | This property is used to specify the serial number of the certificate in the token consumer component. |
Key information | com.ibm.wsspi.wssecurity. keyinfo.EncodingNS | Specify the namespace Uniform Resource Identifier (URI) for the qualified name (QName). | This property is used to specify the namespace URI part of the QName that represents the encoding method. |
Properties | com.ibm.ws.wssecurity.handler. hardwareCacheEntryRefreshHours | Specify a numeric value from 1 to 24 that represents the number of hours that a temporary key is valid. | This property is used to specify the amount of time before a key is retranslated. Temporary keys outside the keystore typically expire in a short period of time, measured in days or hours. If the server is configured to use a hardware acceleration card, but not the hardware keystore, you can configure it to translate the temporary keys periodically before they expire. If this property is not set , a key will be retranslated after 8 hours. Setting this value to 0 disables retranslation. |
Request generator and Response generator | com.ibm.wsspi.wssecurity. timestamp.SOAPHeaderElement | Specify 1 or true. | This property is used with the Add nonce option to set the mustUnderstand flag in the deployment descriptor. |
Request generator and Response generator | com.ibm.wsspi.wssecurity. timestamp.dialect |
The default value is dialect-was. See the com.ibm.wsspi.wssecurity Interface Constants for more information about the values that can be specified. |
This property is used in conjunction with the
. The property is used to place the timestamp
header in a specific position in a message. |
Signing information | com.ibm.wsspi.wssecurity. dsig.dumpPath | Specify the path used to locate the output file. | This property is used to specify an output file for dumping the target UTF-8 binary data before signing and verifying messages. |
Token generator | com.ibm.wsspi.wssecurity. token.username.timestampExpires | Specify 1 or true. | This property is used to specify an expiration date for the user name token. |
Transform algorithms | com.ibm.wsspi.wssecurity. dsig.XPathExpression |
|
This property is used with this algorithm:
|