Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Most of the time, In most instances it is necessary to secure the Security Token Service. According the Trust Brokering model defined in the WS-Trust specification, the subject (user) should authenticate himself to the STS before obtaining a token. STS may use this authentication information when constructing the security token. For example, STS may populate the required claims based on the user name provided by the subject. You can apply a security policy for STS by clicking on the "Apply Security Policy" link link.

Follow the instructions below to secure the Security Token Service.1. Sign in. Enter your user name

  1. To sign in, enter your username and password to

...

  1. login to the Management Console.

...

  1. Access the Manage menu under Main.
    Image Modified

...

  1. Select Security Token Service

...

  1.  under Manage.

...

Image Removed

...

  1. Click on

...

  1. the Apply Security Policy

...

  1.  link on

...

  1. the STS Configuration

...

  1.  page.
    Image Modified

...

  1. Select Yes from the dropdown to Enable Security and select a pre-configured security scenario according to your requirements.
    Image Modified

...

  1. Click on

...

  1. the Next

...

  1.  button.
    Image Modified

...

  1. Specify

...

  1. the Trusted Key Stores

...

  1.  and Private key Store.

...


  1. Image Modified

...

  1. Click on

...

  1. the Finish

...

  1.  button.
    Image Modified

...

  1. Click OK in the WSO2 dialog window.
    Image Modified
Excerpt
hiddentrue

Instructions on how to secure the Security Token Service.