Comments on: Using OWSM x509 token client policy with OSB 11gR1 PS3 https://technology.amis.nl/2011/03/13/using-owsm-x509-token-client-policy-with-osb-11gr1-ps3/ Friends of Oracle and Java Sat, 02 May 2015 22:48:39 +0000 hourly 1 http://wordpress.org/?v=4.2.1 By: Izaak https://technology.amis.nl/2011/03/13/using-owsm-x509-token-client-policy-with-osb-11gr1-ps3/#comment-6713 Tue, 13 Dec 2011 12:54:50 +0000 http://technology.amis.nl/blog/?p=11106#comment-6713 What does it mean when you talk about ClientID/password authentication. Do you want HTTP Authentication or  username/pass WS Security? That makes a difference…

Loading a certificate in a keystore is not enough to sign/encrypt your service. You need to configure and attach the right policy otherwise nothing happens.   The above post explains the encryption and signing part. Depending on what you mean with username/password authentication you need to do additional things.

]]>
By: Shanthi https://technology.amis.nl/2011/03/13/using-owsm-x509-token-client-policy-with-osb-11gr1-ps3/#comment-6712 Mon, 12 Dec 2011 21:51:11 +0000 http://technology.amis.nl/blog/?p=11106#comment-6712 From Fusion 11g SOA composite, I need to call  external 1099 web services. These  are secured with two-factor authentication consisting of a trusted X.509 certificate and a client ID and password credential set. And it needs this Client X.509 certificate to generate a signature based on the SOAP header contents, which is then verified by server.
I have done the following so far: I created a self signed X509 cert on the SOA server, loaded it in a keystore and set up the credentials in weblogic domain. When I test my service, I do not see the message signed and encrypted. Can you please help me with the steps I need to do?
Thanks

]]>
By: Lucy https://technology.amis.nl/2011/03/13/using-owsm-x509-token-client-policy-with-osb-11gr1-ps3/#comment-6711 Wed, 04 May 2011 11:42:34 +0000 http://technology.amis.nl/blog/?p=11106#comment-6711 Hi, thank you for your excellent blog post.  I simply cannot find the place to ‘override properties for policy’.  I made a copy of the policy to be used on my client (ws11_message_protection_client_policy).  Also managed to configure keystore using Security Provider configuration in  Enterprise Manager.  Client and Service are SOA projects deployed on two different WebLogic servers.  Although keystore is loaded successfully,  I get this error when running the client:
… Configuration property keystore.enc.csf.key value is null
[soa-infra] Successfully loaded keystore [ path:C:\Oracle\client\default-keystore.jks, type:JKS, sign-alias:orakey, crypt-alias:orakey, recipientAlias:orakey, recipientCert:null]
…. testdigitalsignature_client_ep] [J2EE_APP.name: soa-infra] [arg: java.lang.NullPointerException] WS Binding: exception durign SOAP invocation: java.lang.NullPointerException
….
Any help is much appreciated,
regards,
Lucia
 

]]>