Enable Windows Authentication in WCF (with SSL)

Posted in WCF by hoachau on March 1, 2009

There is a bug (by design?) in .net framework 3.5 sp1 related to enable Windows Authentication (WCF).
If the client configuration file is missing the identity setting for the endpoint (highlighted), it will always return the follow exception.

System.ServiceModel.Security.MessageSecurityException: The HTTP request is unauthorized with client authentication scheme ‘Negotiate’.

But if you add the identity setting, everything works. The interesting thing is the value of userPrincipalName can be set to anything!

< ?xml version="1.0" encoding="utf-8" ?>
<configuration>
   <system .serviceModel>
      <client>
         <endpoint address=https://enterprises:8020/test
                   binding="basicHttpBinding"
                   bindingConfiguration="SecureTransport"
                   contract="Contracts.IService"
                   name="client_endpoint">
            <identity>
               <userprincipalname value="dummy@whatever"/>
            </identity>
         </endpoint>
      </client>
      <bindings>
         <basichttpbinding>
            <binding name="SecureTransport">
               <security mode="Transport">
                  <transport clientCredentialType="Windows"/>
               </security>
            </binding>
         </basichttpbinding>
      </bindings>
   </system>
</configuration>

References
http://merill.net/2009/02/microsoft-net-framework-35-sp1-breaks-microsoft-ccf-customer-care-framework/
https://connect.microsoft.com/VisualStudio/feedback/ViewFeedback.aspx?FeedbackID=364077

Like this:

Be the first to like this post.

Hoa Chau’s weblog

Enable Windows Authentication in WCF (with SSL)

Like this:

Leave a Reply Cancel reply

Links

Categories

Recent Posts

Blog Stats

Follow “Hoa Chau's weblog”