I have developed a sample web application and used Axis2 for publishing the web services. I have also used Apache rampart as the security model for axis. I ve secured my web services by generating a self-signed certificate and sharing it. I'm able to access the services from client using https protocol.
I have two questions here.
1) How can i share this self-signed certificate with the machines to chich i want to establish a secured connection. (In my scenario, I may be communicating with many remote systems within the LAN). Do i need to share the certificate with all the remote machines physically, before i start communicate?
2) The data i'm sending through SOAP envelope is not encrypted. how can this be done?