Security service configuration

The default authentication assertion options are defined in configurations with names beginning with /IBM/DWLCommonServices/Security/SAML.

See to the Elements in the Configuration and Management component topic for details about these configurations.

By default InfoSphere® MDM does not validate the incoming SAML XML with the corresponding XSD based on the default configuration. If the validation is turned on, you must package the SAML1.1 XSD into InfoSphere MDM EAR file. This XSD can be downloaded from the OASIS consortium web site. If you do not include the SAML1.1 XSD, the transaction will fail. A log message warning users of the missing XSD is also logged in the InfoSphere MDM log.

Additionally, transaction authorization provider-specific configuration may be needed and is discussed in the section for the respective transaction authorization providers.

For information on configuring web services security, see Invoking Web Services.