Choose a WS‑Security Token Type

Configuration Guides › Policy Server Configuration Guide › Authentication Schemes › WS‑Security Authentication › Choose a WS‑Security Token Type

Choose a WS‑Security Token Type

When using WS‑Security authentication to protect resources, choosing the token type to use is by far the most significant decision to be made. The token type you use determines the level of the following:

Security
Flexibility in terms of authorization data that can be passed
Configuration complexity

SOA Security Manager provides complete support for production and consumption of SOAP messages with WS-Security headers containing the following supported token types:

Username and Password Digest Token: Secures a message using username and digested password.
Username and Password Token (Clear Text): Secures a message using a username and clear text password.
X509v3 Certificate Token: Secures a message with a X509v3 binary security token.
SAML Assertion Token: Secures a message using a SAML assertion.

Email CA Technologies about this topic