7-26 Oracle Fusion Middleware Security and Administrators Guide for Web Services For example, all predefined Web service security policies contain an instance of the logging assertion template, oraclesecurity_log_template, to capture the entire SOAP message before and after the primary security assertion is executed. By default, the log assertion is not enforced. You must enable it in order for the SOAP message to be logged in message logs. It is recommended that the logging assertion be enabled for debugging and auditing purposes only. For more information about logging, see Diagnosing Problems Using Logs on page 16-15. To enable or disable one or more assertions within a policy: 1. Navigate to the Web Services Policy page, as described in Navigating to the Web Services Policies Page in Fusion Middleware Control on page 7-2.

2. Select a policy from the Policies table and click Edit.

3. In the Assertions section of the Edit Policy page, select or deselect the Enforced

box to enable or disable the assertion within the policy, respectively see Figure 7–17 . Figure 7–17 Enable or Disable an Assertion Within a Policy

4. Click Save.

Analyzing Policy Usage Policies are created and managed at the domain level. The central management of policies gives you the ability to reuse policies and attach them to multiple policy subjects. Any change to a policy for example, editing a policy or deleting a policy Note: The policy usage feature described in this section requires that you use a database-based Oracle WSM Repository. If you are not using a database-based repository, policy usage information is not available. Managing Web Service Policies 7-27 affects all policy subjects to which the policy is attached. Therefore, before making any changes to your policies, Oracle recommends you do a usage analysis to see which subjects are using a particular policy. To perform a usage analysis: 1. Navigate to the Web Services Policies page as described in Navigating to the Web Services Policies Page in Fusion Middleware Control on page 7-2. The Attachment Count column of the Policies table shows the number of subjects to which a policy is attached. 2. Click the number in the Attachment Count column for the selected policy to display the Usage Analysis page Figure 7–18 . Alternatively, you can select the policy from the Policies table and click View. In the Policy Information region of the page, click the Attachment Count number in the Usage Analysis field to display the Usage Analysis page. Figure 7–18 Usage Analysis for a Policy The Policy Subject List is filtered by subject type. The table displays a list of the policy subjects, of the selected type, to which the policy is attached. Subjects are organized using the following subject types: Repository Document, SOA Component, SOA Reference, SOA Service, WLS Web Service Client, WLS Web Service Endpoint, Asynchronous Callback Client, Web Service Connection, Web Service Client, and Web Service Endpoint. Note that the Policy Subject List summary table displays fields that are relevant to the selected policy subject type only. The total number of policy subjects to which the policy is attached is shown at the bottom of the page in the Attachment Count field. Note: The usage analysis simply identifies which policy subjects will be affected; it does not define the effect of the change. You need to evaluate the change on each of the policy subjects and determine if you should proceed.