Use this page to view a list of trusted identity (ID) evaluators.
The trusted ID evaluator determines whether to trust the identity-asserting
authority. After the ID is trusted, the application server issues the proper
credentials based on the identity, which are used in a downstream call for
invoking resources. The trusted ID evaluator implements the com.ibm.wsspi.wssecurity.id.TrustedIDEvaluator
interface.
To view this administrative console page for trusted ID
evaluators on the cell level, complete the following steps:
- Click Security > JAX-WS and JAX-RPC security runtime.
- Under Additional properties, click Trusted ID evaluators.
- Click New to create a trusted ID evaluator or click Delete to
delete a trusted ID evaluator.
To view this administrative console page for trusted ID evaluators on the
server level, complete the following steps:
- Click server_name.
- Under Security, click JAX-WS and JAX-RPC security runtime.
混合版本環境: In a mixed node cell with a server using Websphere Application
Server version 6.1 or earlier, click
Web services:
Default bindings for Web services security.
mixv
- Under Additional properties, click Trusted ID evaluators.
- Click New to create a trusted ID evaluator or click Delete to
a delete a trusted ID evaluator.
![[只限第 6 版]](v6plusapp.gif)
To view this administrative console page for trusted ID
evaluators on the application level, complete the following steps:
- Click application_name.
- Under Related items, click EJB modules or Web modules.
- Click URI_name.
- Under Additional properties, click Web services: Server security bindings.
- Under Request consumer (receiver) binding, click Edit custom.
- Click Trusted ID evaluators.
- Click New to create a trusted ID evaluator or click Delete to
delete a trusted ID evaluator.
![[只限第 5 版]](v5app.gif)
To view this administrative console page for trusted ID
evaluators on the application level, complete the following steps:
- Click application_name.
- Under Modules, click Manage modules > URI_name.
- Under Web Service Security Properties, click Web services: Server security
bindings.
- Click Edit under Request receiver binding.
- Click Trusted ID evaluators.
- Click New to create a trusted ID evaluator or click Delete to
delete a trusted ID evaluator.
Important: Trusted ID evaluators
are only required for the request receiver (Version 5.x applications) and
the request consumer (Version 6.0.x applications), if identity assertion
is configured.
Using this trusted ID evaluator collection panel, complete the following
steps:
- Specify a trusted ID evaluator name and a trusted ID evaluator class name.
- Save your changes by clicking Save in the messages section at the
top of the administrative console.
- Click Update run time to update the Web services security run time
with the default binding information, which is found in the ws_security.xml file.
The configuration changes made to the other Web services also are updated
in the Web services security run time.