|
|
|
To use SSL connections while resolving Web Services variables, you must configure a list of trusted Certificate Authorities (CAs) that can be used when the Policy Server establishes a connection to a Web Service. To accomplish this, you must set up an smkeydatabase for each Policy Server that is responsible for connecting to a Web Service.
The smkeydatabase is a flat-file key and certificate database that lets you store, manage, and retrieve keys and certificates required to sign and validate messages with WS-Security tokens. The service is also responsible for decrypting symmetric XML encryption keys that have been encrypted using the site's public key.
The SiteMinder smkeytool utility lets you create a new smkeydatabase or delete an existing one and create a new one. There can only be one key database per Policy Server.
| Copyright © 2010 CA. All rights reserved. | Email CA about this topic |