To use SSL connections while resolving Web Services variables, you must configure a list of trusted Certificate Authorities (CAs) that can be used when the Policy Server establishes a connection to a Web Service. To accomplish this, you must set up an smkeydatabase for each Policy Server that is responsible for connecting to a Web Service.
The smkeydatabase is a flat-file key and certificate database that lets you store, manage, and retrieve keys and certificates required to sign and validate messages with WS-Security tokens. The service is also responsible for decrypting symmetric XML encryption keys that have been encrypted using the site's public key.
The SiteMinder smkeytool utility lets you create a new smkeydatabase or delete an existing one and create a new one. There can only be one key database per Policy Server.
|
Copyright © 2012 CA.
All rights reserved.
|
|