WS-Security capabilities

Web service security capabilities are supported by the integration node.

Web service security mechanisms are defined by OASIS standards. See OASIS Standard for WS-Security Specification

For information about the token profile standards, see:

OASIS Web Services Security Username Token Profile
OASIS Web Services Security X.509 Certificate Token Profile
OASIS Web Services Security Kerberos Token Profile

SAML pass-through support is provided, which enables interoperability with WS-Security SAML profiles, without performing subject confirmation processing. This means that it does not provide validation of the trust relationship between the SAML subject and message content signatures. For information about the SAML token profile standards, see:

OASIS Web Services Security SAML Token Profile 1.1
SAML V2 Specification

LTPA pass-through support is also provided, which enables LTPA binary tokens to be passed to an external Security Token Service (STS) for processing.

For more information about using the token profiles, see the following topics:

Username token capabilities
X.509 certificate token capabilities
SAML token capabilities
Kerberos token capabilities
LTPA token capabilities