Option
|
Description
|
Description
|
Enter a description for the service key provider.
|
Encryption Key
|
- Next to Encryption Key, select the Key check box.
- Enter a key alias that maps to an X.509 certificate and that supports encryption, or click Browse to display the key aliases from the key store that your realm's PKI credential mapper is using.
- Enter the password that you use to secure access to the key store. (You set the password when you create the key store.)
When you associate this service key provider with a proxy service, ALSB embeds the X.509 certificate into the proxy service's WSDL. The proxy service then uses this certificate to encrypt the messages that it sends to its endpoint. The proxy service uses the private key in the PKI credential to decrypt the messages that the endpoint returns.
|
Digital Signature Key
|
- Next to Digital Signature Key, select the Key check box.
- Enter a key alias, or click Browse to display the key aliases from the key store that your realm's PKI credential mapper is using.
- Enter the password that you use to secure access to the key store. (You set the password when you create the key store.)
|
SSL Client Authentication Key
|
- Next to SSL Client Authentication Key, select the Key check box.
- Enter a key alias, or click Browse to display the key aliases from the key store that your realm's PKI credential mapper is using.
- Enter the password that you use to secure access to the key store. (You set the password when you create the key store.)
|