WS-Security Consumer Policies
You can configure WS-Security Consumer policies by copying a template into an external policy set, and modifying the parameters. You can find sample templates in an archive file under TIBCO_HOME/amx/version/samples/policy/samples.zip.
Several template samples are available.
You can configure this policy to retrieve user credentials from an Identity Provider resource instance. When using an Identity Provider resource instance to retrieve user credentials for a policy, in the Identity Provider resource template, select the Enable Access to Credential Store Containing Identity checkbox. The JCEKS keystore used in the Identity Provider resource template should be able to store symmetric keys.
Template File |
---|
WssConsumerAddUsernameTokenTimestampSignAndEncrypt.policysets |
WssConsumerCredentailMappingSAMLSigned.policysets |
WssConsumerCredentailMappingSAMLUnsigned.policysets |
WssConsumerCredentailMappingUsernameTokenFixed.policysets |
WssConsumerCredentailMappingUsernameTokenRoleBased.policysets |
Can Provide these Intents |
---|
scaext:credentialMapping.wssSAML |
scaext:credentialMapping.usernameToken |
scaext:consumerIntegrity.wss |
scaext:consumerConfidentiality.wss |