Configuration GuidesPolicy Server Configuration GuideAuthentication SchemesWS‑Security Authentication › How WS‑Security Headers Are Consumed

Previous Topic: Supported Authentication Schemes for Producing Each WS-Security Header Type

Next Topic: How the Multistep Authentication Service Model Works Using WS‑Security
How WS‑Security Headers Are Consumed

The SOA Security Manager WS‑Security authentication scheme authenticates XML messages using credentials obtained from WS‑Security headers that define security tokens in a message’s SOAP header. The authentication scheme also validates digital signatures and decrypts XML encrypted headers as necessary.