Managing Web Service Security Policies

This function is used to enable or disable web service security policies. Enabling a policy for a web service affects the security properties that apply when calling the web service. The shipped X509Policy states that the whole body of the request/response message is signed and encrypted.

If you are calling a web service over an unsecured network, and the transport is not secured by some other means (e.g. https), this feature can be used to secure it.

To enable or disable the X509 policy on a web service

  1. On the M3 Web Services Server management page under Security, click Policy Settings.
  2. Select a service context to display the available web services.
  3. Select a web service.

    • To enable the X509 policy for this web service, click the Locked icon

    • To disable the X509 policy for this web service, the Unlocked icon