Managing the Announcements and Discussions Services 14-7 Authenticated User Web Service Policy URI Select the policy this connection uses for authenticated access to the discussions server Web service. SAML Security Assertion Markup Language is an XML-based standard for passing security tokens defining authentication and authorization rights. An attesting entity that has trust relationship with the receiver vouches for the verification of the subject by method called sender-vouches. The client policy specified must be compatible with the service policy that is configured for the OWCDiscussionsServiceAuthenticated endpoint in the discussions server. Out-of-the-box, the default service policy is WSS 1.0 SAML Token Service Policy oraclewss10_saml_token_service_policy. Options available are: ■ WSS 1.0 SAML Token Client Policy oraclewss10_saml_token_client_policy ■ WSS 1.1 SAML Token With Message Protection Client Policy oraclewss11_saml_token_with_message_protection_client _policy ■ Global Policy Attachment If your environment supports Global Policy Attachments, you must ensure that the default policy attached to the OWCDiscussionsServiceAuthenticated endpoint in the discussions server is set to oracleno_authentication_client_policy using the WLST command detachWebServicePolicy or Enterprise Manager. Public User Web Service Policy URI Select the client policy this connection uses to enforce message security and integrity for public access to the discussions server Web service. The client policy specified must be compatible with the service policy that is configured for the OWCDiscussionsServicePublic endpoint in the discussions server. Out-of-the-box, a service policy is not configured for public access None. Options available are: ■ None - This is the default setting. ■ WSS 1.1 Message Protection Client Policy oraclewss11_with_message_protection_client_policy ■ Global Policy Attachment If your environment supports Global Policy Attachments, you must ensure that the default policy attached to the OWCDiscussionsServicePublic endpoint in the discussions server is set to oracleno_authentication_client_policy using the WLST command detachWebServicePolicy or Enterprise Manager. Recipient Key Alias Enter the recipient key alias to be used for message protected policies applicable to the OWCDiscussionsServicePublic and OWCDiscussionsServiceAuthenticated endpoints. This is the alias to the certificate that contains the public key of the discussions server in the configured keystore. See also Chapter 32, Configuring WS-Security . Table 14–2 Cont. Discussion and Announcement Connection - Connection Details Field Description