Signing parameter configuration settings

Use this page to configure new signing parameters.

The specifications listed on this page for the signature method, digest method, and canonicalization method are located in the World Wide Web Consortium (W3C) document entitled, XMLSignature Syntax and Specification: W3C Recommendation 12 Feb 2002.

To view this administrative console page, complete the following steps:

  1. Click Enterprise Applications > application_name.

  2. Under Related Items, click Web Modules > URI_file_name > Web Services: Client Security Bindings.

  3. In the Request Sender Binding column, click Edit > Signing Information.

If the signing information is not available, select None.

If the signing information is available, select Dedicated Signing Information and specify the configuration in the following fields:

Signature Method

Specifies the algorithm Uniform Resource Identifiers (URI) of the signature method. This method contains the actual value of the digital signature encoded using base64.

The following algorithms are supported:

  • http://www.w3.org/2000/09/xmldsig#rsa-sha1

  • http://www.w3.org/2000/09/xmldsig#dsa-sha1

Digest Method

Specifies the algorithm URI of the digest method.

The http://www.w3.org/2000/09/xmldsig#sha1 algorithm is supported.

Canonicalization Method

Specifies the algorithm URI of the canonicalization method.

The following algorithms are supported:

  • http://www.w3.org/2001/10/xml-exc-c14n#

  • http://www.w3.org/2001/10/xml-exc-c14n#WithComments

  • http://www.w3.org/TR/2001/REC-xml-c14n-20010315

  • http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments

Signing Key

Specifies the key information that is used for signing. These fields are ignored in receiver-side configuration.

If the signing key is not available, select None.

Certificate Path

Specifies the settings for the certificate path validation. When you select Trust Any, this validation is skipped and all the incoming certificates are trusted. These fields are ignored in sender-side configuration.

If there is not a certificate path, select None.

If there is a certificate path, select Trust Any or select a Trust Anchor and a Certificate Store.

Trust Anchor

Specify the selections for the Trust Anchor field by clicking Servers > Application Servers > server. Under Additional Properties, click Web Services: Default bindings for Web Services Security > Trust Anchors.

Certificate Store

Specify the selections for the Collection Store field by clicking Servers > Application Servers server_name. Under Related Items, click Web Services: Default bindings for Web Services Security > Collection Certificate Store.

Related reference
Request sender binding collection