Managing Web Services And Profiles - Novell ACCESS MANAGER 3.1 SP2 - IDENTITY SERVER GUIDE 2010 Manual

Axis SOAP Engine Settings: Axis is the SOAP engine that handles all Web service requests
and responses. Web services are deployed using XML-based files known as Web service
deployment descriptors (WSDD). On startup, Access Manager automatically creates the server-
side and client-side configuration for Axis to handle all enabled Web services.
If you need to override this default configuration, use the Axis Server Configuration WSDD
XML field and the Axis Client Configuration WSDD XML field to enter valid WSDD XML. If
either or both of these controls contain valid XML, then Access Manager does not
automatically create the configuration (server or client) on startup.
3 Click OK.

13.2 Managing Web Services and Profiles

After a service has been discovered and authorization data has been received from a trusted identity
provider, the Web service consumer can invoke the service at the Web service provider. A Web
service provider is the hosting or relying entity on the server side that can make access control
decisions based on this authorization data and upon its business practices and preferences.
1 In the Administration Console click Identity Servers > Edit > Liberty > Web Service Provider.
2 Select one of the following actions
New: To create a new Web service, click New. This activates the Create Web Service Wizard.
You can create a new profile only if you have deleted one.
Delete: To delete an existing profile, select the profile, then click Delete.
Enable: To enable a profile, select the profile, then click Enable.
Disable: To disable a profile, select the profile, then click Disable.
Edit a Policy: To edit the policy associated with a profile, click the Policy link. For
configuration information, see
Edit a profile: To edit a profile, click the name of a profile. For information on configuring the
details, see
Personal Profiles," on page 293
Discovery, LDAP, and User Interaction Profiles," on page
For information on modifying the description, see
Descriptions," on page
The Identity Server comes with the following Web service profile types:
Authentication Profile: Allows the system to access the roles and authentication contracts in
use by current authentications. This profile is enabled by default so that Embedded Service
Providers can evaluate roles in policies. This profile can be disabled. When it is disabled, all
devices assigned to use this Identity Server cluster configuration cannot determine which roles
a user has been assigned, and the devices evaluate policies as if the user has no roles.
WARNING: Do not delete this profile. In normal circumstances, this profile is used only by
the system.
Credential Profile: Allows users to define information to keep secret. It uses encryption to
store the data in the directory the user profile resides in.
Custom Profile: Used to create custom attributes for general use.
292 Novell Access Manager 3.1 SP2 Identity Server Guide
Section 13.2.4, "Editing Web Service Policies," on page
Section 13.2.1, "Modifying Service and Profile Details for Employee, Custom, and
and
296.
Section 13.2.2, "Modifying Details for Authentication,
295.
Section 13.2.3, "Editing Web Service
297.