Create and manage security scenarios
The following steps describes how to create and customize a security scenario for a specific service.
Note: For scripts using the WCF toolkit, all scenario settings are automatically defined. We recommend that you do not make changes to the default protocol and security scenario settings.
-
Open the Security Scenario Data dialog box.
-
Click Manage Services. In the left pane, select the service for which you want to set the security scenario. If necessary, import a service, as described in Import Service dialog box.
-
Select the Protocol and Security tab and click the Edit Data button. The Security Scenario Data dialog box opens.
-
-
Create or open a security scenario.
Create a security scenario
-
Select Private scenario and select a built-in security scenario for the current service.
-
In the Scenario type box, select a scenario. For details, see Choose a security model.
-
Specify the required values for your scenario. For details, see WCF scenario settings.
-
To specify a certificate (only applicable to some of the scenarios), click the Browse button adjacent to the Client certificate or Specify service certificate box to open the Select Certificate dialog box. For details, see the Select Certificate dialog box.
-
To retrieve a certificate from a file: Select File and locate its path.
-
To retrieve a certificate from the Windows store: Select Windows Store. Then select a store location and name, and specify a search string:
-
To search for all certificates, leave the Search text box empty.
-
To search for a specific certificate, specify a substring of the certificate name. If required, specify a password for the private key.
Click Find to generate the list of certificates found in the store.
-
-
Open a security scenario
- To use an editable scenario: Select Private scenario and click Import. In the Shared Scenario dialog box, select a stored scenario. If required, modify the settings as described in WCF scenario settings.
-
To use a non-editable scenario: Select Shared Scenario. Then browse to and select a stored scenario.
Note: If someone modifies a shared scenario file at its source, it will affect your script.
-
-
Modify the security scenario, as described below. (Optional)
To: Do this: Configure advanced settings For most scenarios, the default proxy, encoding, and other settings are ideal, but you can modify these settings if needed.
- Click Advanced to configure the settings. For details, see Advanced Settings dialog box.
- Click OK to save the security scenario.
Modify an existing security scenario To create and modify security scenarios that will be available globally for all scripts, not just this specific service, use the Security Scenario Editor. You can also use the editor to save the scenario.
-
Select SOA Tools > Security Scenario Editor.
-
Click the Load button and browse for an existing stss scenario file.
-
Modify the scenario settings as required
-
Click Save or Save as.
Protect SOAP headers Manually modify the behavior element in the scenario's configuration file:
-
In VuGen, open the Script view. Choose choose View > Script View.
-
Click in the script editor and select Open Script Directory from the shortcut menu.
-
Locate the security scenario's configuration file <service_name>.stss in WSDL/@config folder.
-
Modify the behavior section of the file. For details, see Protecting custom headers.
Set the iteration mode Configure your environment to use the same session for all iterations:
-
Open the script root folder: In Script view, click inside the script and choose Open Script Directory from the shortcut menu.
-
Open default.cfg file in a text editor.
-
In the [WebServices] section, add in a row under the toolkit. If you are using the Axis toolkit or if you configured other settings, the file contents may differ.
-
Save and close the file.
[WebServices] Toolkit=.NET SimulateNewUserInNewIteration=0
For details, see Emulating users with iterations.