Use WS-Security 1.1 Assertion
The Use WS-Security 1.1 assertion indicates that the policy is compliant with WS-Security 1.1. It ensures that if the policy is configured to perform WS-Security processing on the response, the will apply SignatureConfirmation elements to the decorated response.
gateway
The Use WS-Security 1.1 assertion indicates that the policy is compliant with WS-Security 1.1. It ensures that if the policy is configured to perform WS-Security processing on the response, the
API Gateway
will apply SignatureConfirmation elements to the decorated response.A policy is WS-Security 1.1 compliant if it includes these elements:
- the Use WS-Security 1.1 assertion
- at least one WS-Security signing/encryption assertion enforced on the request (for example, Require WS-Security Signature Credentials, Require WS-Secure Conversation, Sign Element, Encrypt Element)
- at least one WS-Security signing/encryption assertion acting on the response (for example, Add Timestamp, Sign Element, Encrypt Element)
This assertion has no impact on the
API Gateway
- XML VPN Client and it has no effect if added to a policy that does not otherwise require WS-Security.A response message will likely be rejected if 1.1-style WS-Security is expected and the Use WS-Security 1.1 assertion is
not
present in the policy.Using the Assertion
The assertion is added to the policy window; no further configuration is required.