WS-Security Consumer Policies

You can configure WS-Security Consumer policies by copying a template into an external policy set, and modifying the parameters. You can find sample templates in an archive file under TIBCO_HOME/amx/version/samples/policy/samples.zip.

Several template samples are available.

You can configure this policy to retrieve user credentials from an Identity Provider resource instance. When using an Identity Provider resource instance to retrieve user credentials for a policy, in the Identity Provider resource template, select the Enable Access to Credential Store Containing Identity checkbox. The JCEKS keystore used in the Identity Provider resource template should be able to store symmetric keys.

Template File
WssConsumerAddUsernameTokenTimestampSignAndEncrypt.policysets
WssConsumerCredentailMappingSAMLSigned.policysets
WssConsumerCredentailMappingSAMLUnsigned.policysets
WssConsumerCredentailMappingUsernameTokenFixed.policysets
WssConsumerCredentailMappingUsernameTokenRoleBased.policysets
Can Provide these Intents
scaext:credentialMapping.wssSAML
scaext:credentialMapping.usernameToken
scaext:consumerIntegrity.wss
scaext:consumerConfidentiality.wss