Configuration GuidesPolicy Server Configuration GuideAuthentication SchemesWS‑Security AuthenticationAdditional WS‑Security FeaturesXML Encryption › How SOA Security Manager Obtains Credentials from Encrypted WS‑Security Documents

Previous Topic: XML Encryption

Next Topic: Configure SOA Security Manager to Perform Encryption and Decryption of WS‑Security Documents

How SOA Security Manager Obtains Credentials from Encrypted WS‑Security Documents

The WS‑Security authentication scheme automatically attempts to decrypt any XML-encrypted elements in incoming WS‑Security messages for SOA Security Manager to use for authentication/authorization. No additional configuration is required.

Note: Where an incoming SOAP message contains multiple WS‑Security header elements, each is identified by a unique SOAP actor/role attribute. In such cases, SOA Security Manager attempts to decrypt only XML-encrypted elements specified in the header from which the
WS‑Security authentication scheme is configured to obtain security tokens.

More information:

SOAP Actor/Role Attributes in Messages with Multiple WS‑Security Headers