Using a Predefined Security Policy for a Web Service
Security policies for Web services require a definition using the security protocol of your choice. TDV provides a generic editor that you can use to type your security policy, or you can import security policy files from anywhere in your network. Predefined and custom security policies populate the list of security policies available for defining a SOAP Web service.
After defining your policy, you can use the policy in your new or existing SOAP Web services. For more information, see
Publishing a SOAP Data Service.
Note: The transport level security policies (http basic and https basic) can be applied to a SOAP Web service, but they do not prevent an anonymous user from invoking the Web service. When using the basic security policies or when creating a custom security policy, consider this security issue.
To use a TDV security policy
1. Open Studio.
2. Expand localhost/policy/security/system.
3. Review the list of predefined policies under system and determine the policy to use.
4. Open a published SOAP Web service.
5. Select the SOAP tab.
6. Left-click in the Value column next to Security Policy in the Services or the Operations part of the SOAP tab and choose one of the predefined or custom security policies from the drop-down list.
7. Save your changes.