For user authentication in Gen 8.6 client/server cooperative flow applications, user exits like WREXITN.C (WRSECTOKEN) and CFBDynamicMessageSecurityExit.* allow a security token to be set in the Common Format Buffer (CFB).

Tests indicate that when using Web Services as the communication type the token length received at the server is restricted to 1 byte and thus seems to be unusable.
Is using a security token supported for Web services?

Gen 8.6 Web Services

Token support is not currently available for any Gen Web services server implementation i.e.

• Transaction Enabler Web Services
• EJB Web Services

If it is felt that this is an important feature to have in the future then an enhancement request can be created via a new idea on the Ideas Community.

Gen EJB/EJB Web Service and client/server security options