|
|
|
If a SOAP document has multiple WS‑Security headers (intended for different recipients), the WS‑Security specification requires that each be identified uniquely using the SOAP actor/role attribute (at most, one header can omit the SOAP actor attribute).
The WS‑Security authentication scheme lets you specify the value of the SOAP actor/role attribute that identifies the header element from which SOA Security Manager should obtain security tokens.
Note: If a message has only one WS‑Security header, it does not need to include a SOAP actor attribute. However, if you specify an actor/role attribute when configuring the authentication scheme, a matching actor attribute must be present in the document to allow successful authentication.
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |