Share via


<KeyIdentifier> Element

Specifies the key identifier for a security token.

<microsoft.web.services3> Element
  <tokenIssuer> Element
    <serviceToken> Element
      <KeyInfo> Element
        <SecurityTokenReference> Element

<wsse:KeyIdentifier 
    value="ZPGrPnuqATeSgVjLYcmiY/GSWWY="
  ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509SubjectKeyIdentifier" />

Attributes and Elements

Attributes

Attribute Description

value

Required attribute. Specifies the base64 encoded key identifier for the security token.

ValueType

Optional attribute. Specifies the type of security token the key identifier identifies.

Child Elements

None

Parent Elements

Element Description

<SecurityTokenReference> Element

Specifies a security token that must be used to encrypt a SOAP message.

Remarks

When issuing security tokens, use the <KeyIdentifier> element to specify a security token within a <serviceToken> Element element. For more details about issuing security tokens, see Establishing a Secure Conversation.

Example

The following code example specifies an X509SecurityToken with a specific key to sign the responses for security token requests.

<?xml version="1.0" encoding="utf-8"?>
<configuration>
  <microsoft.web.services3>
    <tokenIssuer>
      <serverToken>
        <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
          <wsse:SecurityTokenReference 
            xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
            <wsse:KeyIdentifier 
              value="ZPGrPnuqATeSgVjLYcmiY/GSWWY=" 
              ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509SubjectKeyIdentifier" />
          </wsse:SecurityTokenReference>
        </KeyInfo>
      </serverToken>
    </tokenIssuer>
  </microsoft.web.services3>
</configuration>

See Also

Reference

<serviceToken> Element

Other Resources

Establishing a Secure Conversation