Installation GuidesSOA Agent for IBM WebSphere GuideConfigure the SOA Agent › Configure the Username and Password Digest Token Age Restriction

Previous Topic: SOA Agent for Application Servers Configuration Parameters

Next Topic: Configure WebSphere to Work with the SOA Agent

Configure the Username and Password Digest Token Age Restriction

By default, the WS-Security authentication scheme imposes a 60-minute restriction on the age of Username and Password Digest Tokens to protect against replay attacks.

To configure a different value for the token age restriction for a SOA Agent for Application Servers, set the WS_UT_CREATION_EXPIRATION_MINUTES parameter in the XmlToolkit.properties file for that agent.

To configure a SOA Agent to use a nondefault age restriction for Username and Password Digest token authentication

  1. Navigate to SOA_Agent_Install\config.
  2. Open XmlToolkit.properties in a text editor.
  3. Uncomment and modify the WS_UT_CREATION_EXPIRATION_MINUTES parameter line to configure a different value for the token age restriction: 
    WS_UT_CREATION_EXPIRATION_MINUTES=token_age_limit
    token_age_limit

    Specifies the token age limit restriction in minutes.

  4. Save and close the XmlToolkit.properties file.
  5. Restart the SOA Agent.