Why and when to perform this task
The token generator on the server or cell level is used to specify the information for the token generator if these bindings are not defined at the application level. The signing information and the encryption information can share the token generator information, which is why they are all defined at the same level. WebSphere Application Server provides default values for bindings. You must modify the defaults for a production environment.In a Network Deployment environment, you can configure the token generator on the server level and the cell level. In the following steps, use the first step to access the server-level default bindings and use the second step to access the cell-level bindings.
Steps for this task
For an X.509 certificate token, you might specify the com.ibm.wsspi.wssecurity.auth.callback.X509CallbackHandler implementation.
The keystore files contain public and private keys, root certificate authority (CA) certificates, intermediate CA certificates, and so on. Keys that are retrieved from the keystore file are used to sign and validate or encrypt and decrypt messages or message parts. To retrieve a key from a keystore file, you must specify the keystore password, the keystore path, and the keystore type.
Result
You have configured the token generators at the server or the cell level.What to do next
You must specify a similar token consumer configuration.Related tasks
Configuring the collection certificate store for the server or cell-level
bindings