Using a Predefined Security Policy for a Web Service

User Guide > Publishing Resources > Web Services Security > Using a Predefined Security Policy for a Web Service

Security policies for Web services require a definition using the security protocol of your choice. TDV provides a generic editor that you can use to type your security policy, or you can import security policy files from anywhere in your network. Predefined and custom security policies populate the list of security policies available for defining a SOAP Web service.

After defining your policy, you can use the policy in your new or existing SOAP Web services. For more information, see Publishing a SOAP Data Service.

Note: The transport level security policies (http basic and https basic) can be applied to a SOAP Web service, but they do not prevent an anonymous user from invoking the Web service. When using the basic security policies or when creating a custom security policy, consider this security issue.

To use a TDV security policy

1. Open Studio.

2. Expand localhost/policy/security/system.

3. Review the list of predefined policies under system and determine the policy to use.

For descriptions of the available policies, see Supported Web Service Security Standards.

4. Open a published SOAP Web service.

For more information, see Publishing a SOAP Data Service.

5. Select the SOAP tab.

6. Left-click in the Value column next to Security Policy in the Services or the Operations part of the SOAP tab and choose one of the predefined or custom security policies from the drop-down list.

7. Save your changes.