On the client side, you will need the keystore and truststore. You can use the same ones used at the server, but if that it not possible (or not desireable) you will need to do more work with setting up the server keystore and truststore, and also create client keystore and truststore. When packaging the client, include in the META-INF directory the files: * client keystore * client truststore * jboss-wsse-client.xml (looks like the server one you listed above) * standard-jaxws-client-config.xml (get it from deploy/jbossws.sar/META-INF, remove all of the client-config entries except the one named "Standard WSSecurity Client") I can direct you to a location where the steps to do this are documented, but it is not free. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4121001#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...