9-4 Oracle Fusion Middleware Security and Administrators Guide for Web Services Type of Resources: Web Service Endpoint Scope of Resources: DomainjrfServer_domain Description: Global policy attachments for Web Service Endpoint resources. Enabled: true Policy Reference: security : oraclewss11_saml_or_username_token_with_ message_protection_service_policy, enabled=true For more information about this WLST command, see Web Services Custom WLST Commands in WebLogic Scripting Tool Command Reference. Managing Repository Modification Sessions Using WLST When using WLST to create, modify, and delete policy sets, you must execute the commands in the context of a repository session. Each repository session applies to a single policy set only. To create a session in which the repository will be modified, use the beginRepositorySession command. After you have entered the desired commands to create, modify, or delete a policy set, you write the contents of the session to the repository using the commitRepositorySession command. Use the describeRepositorySession command to describe the contents of the current session. To exit a repository session without writing the contents to the repository, use the abortRepositorySession command. Examples of these commands are provided in the subsequent sections. For additional information, see Web Services Custom WLST Commands in WebLogic Scripting Tool Command Reference. Creating a Policy Set The following sections describe how to create a policy set using either Fusion Middleware Control or the command line interface WebLogic Scripting Tool, WLST. Using Fusion Middleware Control To create a policy set: 1. Navigate to the Policy Set Summary page as described in Navigating to the Policy Set Summary Page on page 9-1.

2. From the Policy Set Summary page, click Create.

The first page of the policy set creation wizard is displayed. 3. In the Enter General Information page, as shown in Figure 9–3 , enter a name and description for the policy set. Creating and Managing Policy Sets 9-5 Figure 9–3 Enter General Information Page

4. Select the Enabled check box if you want to enable the policy set.

5. In the Type of Resources field, select the type of policy subject to which you want

to attach policies. On the next page you define the scope of resources to which you want the policy set to apply. The type of policy subjects that you can select are as follows: – SOA Component – SOA Service – SOA Reference – Web Service Connection – Web Service Endpoint – Web Service Client – Asynchronous Callback Client

6. Optionally, add a description of the policy set, and then click Next.

7. In the Enter Resource Scope page, enter at least one pattern string that defines the

scope for the resource type you selected in the previous step. The following resource scopes are supported: ■ Domain ■ Server Instance ■ Application ■ Application Module ■ SOA Composite The list of available resource scopes is determined by the Resource Type you selected on the previous page. For example, if you selected Web Service Endpoint, the resource scopes available are Domain, Server Instance, Application, and Application Module. For SOA resource types, the resource scopes available are Domain, Server Instance, and SOA Composite. For example, to attach the policies to all Web Service endpoints in the domain, enter a pattern string to represent the name of the domain only. You do not need Note: To specify a resource scope, you must enter a pattern string in at least one Pattern field on this page.