TEC Workbook - IBM

More documents

Recommendations

Info

<strong>IBM</strong> Software __9. You can verify that soapUI accepted the digital signature by looking at the soapUI log. At the bottom of the soapUI window is a button to show the soapUI log. If soapUI could not verify the signature created by DataPower, the log would contain an error message. 3.3 WS-Security Encryption & Decryption Similarly to digital signatures, encryption use PKI keys and certificates for encryption and decryption. When encrypting a message, the recipient's public key is used; only the private key can decrypt the message. 3.3.1 Decrypting the request and encrypting the response In the following steps, you’ll add the necessary actions to decrypt the request (from soapUI) and then encrypt the response (going back to soapUI). __1. Reopen the policy editor by clicking the ellipsis in the Multi-Protocol Gateway page. __2. Drag a decrypt action in front of the verify signature action. __3. Double click the decrypt action to provide additional details for its configuration. __4. In the Decrypt Key dropdown, select ProductServiceCryptoKey. __5. Click Done. Page 64 WebSphere Lab Jam
<strong>IBM</strong> Software __6. In the list of configured rules at the bottom of the policy editor, click on the Server to Client rule to make it the active rule in the editor. __7. Drag an Encrypt action to the right of the sign action. __8. Double click the encrypt action to complete its configuration. __9. In the Configure Encrypt Action form, locate the Recipient Certificate field, then select SoapUICryptoCert. __10. Click the Done button. __11. Click the Apply Policy button in the policy editor. __12. Click the Close Window link in the upper right of the policy editor. __13. In soapUI, click the green submit button to test your service gateway. If you inspect the response closely, you’ll notice that the contents of the SOAP Body are completely encrypted. You just verified that DataPower is signing and encrypting the response. Now configure soapUI to sign+encrypt the request, and decrypt+verify the response. __14. In soapUI, click on the Request tab to make it the active tab. __15. Click the Aut button to show the authorization security settings. If the soapUI log is still visible, you may want to hide that too. __16. For Outgoing WSS, select: SignAndEncrypt Lab 3 - Securing XML Message Content using WS-Security Page 65
Page 1 and 2:
WebSphere Lab Jam Connectivity WebS
Page 3 and 4:
Contents IBM Software CONNECTION PA
Page 5 and 6:
Connection Parameters Spreadsheet I
Page 7 and 8:
1.4 Introduction to WebSphere DataP
Page 9 and 10:
IBM Software You’re now ready to
Page 11 and 12:
There are several areas in the WebG
Page 13 and 14: 1.10 WebSphere DataPower Services I
Page 15 and 16: IBM Software Gateway supports WebSp
Page 17 and 18: cert: Directory Usage IBM Software
Page 19 and 20: __7. Click on the small plus sign t
Page 21 and 22: 1.13 Logging IBM Software WebSphere
Page 23 and 24: ● Trigger a set of actions to occ
Page 25 and 26: 1.13.4 Appliance management IBM Sof
Page 27 and 28: 1.13.8 Configuration Comparison, Ch
Page 29 and 30: Lab 2 Working with XML Prerequisite
Page 31 and 32: 2.1.5 WebSphere DataPower Configura
Page 33 and 34: IBM Software It’s also possible t
Page 35 and 36: Match Rule - evaluate statements us
Page 37 and 38: IBM Software __18. In the Configure
Page 39 and 40: IBM Software __2. Expand the policy
Page 41 and 42: IBM Software __12. In soapUI, click
Page 43 and 44: IBM Software __3. Click the green s
Page 45 and 46: The SQL statement would become: SEL
Page 47 and 48: __2. Click and drag a transform act
Page 49 and 50: 2.7 Stylesheet Caching IBM Software
Page 51 and 52: 2.8.3 Virus Scanning IBM Software V
Page 53 and 54: Lab 3 Securing XML Message Content
Page 55 and 56: 3.2.2 Create the Crypto Key and Cer
Page 57 and 58: 3.2.7 Verifying the request signatu
Page 59 and 60: __8. Click the Close Window link to
Page 61 and 62: __12. Click on the small [+] to sho
Page 63: IBM Software __3. Click on the last
Page 67 and 68: __11. Click the Done button in the
Page 69 and 70: Lab 4 Access Control Framework Prer
Page 71 and 72: __3. Double click the yellow outlin
Page 73 and 74: Appendix A. Notices This informatio
Page 75 and 76: Appendix B. Trademarks and copyrigh
Page 77 and 78: NOTES
show all

TEC Workbook - IBM

Create successful ePaper yourself

Delete template?

Save as template?