You can enable basic authentication in a Service configuration resource by checking Use Basic Authentication under Endpoint Bindings tab. This will require username and password every time the web service is invoked. If you want to authenticate against an LDAP server, you can enable the BW engine to use Java Authentication and Authorization Service (JAAS) LDAP Login Module. You can create an LDAP group and authorize all users belonging to that group to have access to your web service. To do this, you have to add the following engine properties to the TRA file: java.property.com.tibco.bw.security.login.jaas = true java.property.java.security.auth.login.config = <location>/jaas.conf jaas.conf is a configuration file that defines the filtering rules and largely depends on the LDAP language. Sample content is as follows: AuthenticationService { com.sun.security.auth.module.LdapLoginModule REQUIRED userProvider="ldap://myldapserver.com:447/cn=GroupName,ou=groups,o...