wcf-security

问题 I am writing a WCF service requires impersonate and session. It is ok when I tried to call it on my local machine, but on the remote machine it always failed with such error: Security Support Provider Interface (SSPI) authentication failed. The server may not be running in an account with identity 'host/hostname'. If the server is running in a service account (Network Service for example), specify the account's ServicePrincipalName as the identity in the EndpointAddress for the server. If the

问题 Trying to create an framework 4.0 WCF basicHttp service hosted by IIS (6) that is completely unauthenticated. Once deployed, I can successfully retrive the WSDL via a browser. However whenever I try and connect to it via WCF Test Client or via a visual studio generated proxy, I'm getting "The server has rejected the client credentials.". This still occurs when I add <security mode="None"/> , but my understanding is that this is the default anyway ... In the IIS virtual directory properties I

问题 I have a simple WCF Client -> Server structure, where the client references the server's WCF service. Authentication is done using X509 certificates. I want to add a simple form of redundancy to my service. Meaning- to have several servers running, and have the client use a router that would transparently fail-over to a backup server if the main one is dead. I've looked at WCF 4.0 routing but that was no good. So what's left is to do that on my own. I've found a nice example that does just

问题 Statement 1: Transport security is available on all of the bindings except for wsDualHttpBinding. Statement 2: Transport security is available on all of the bindings except for netNamedPipeBinding. I am a beginner, I was looking for which protocols support transport security and which protocols support message security and which support both. I came across the statements above from MSDN which I don't understand as it appears to be conflicting, which is on the same page of MSDN (below ref) Ref

问题 I'm trying to create WCF applications with username authentication. And this error occurring. This is the service configuration: Web.config <?xml version="1.0"?> <configuration> <system.web> <compilation debug="true" targetFramework="4.0" /> </system.web> <system.serviceModel> <services> <service name="Jsl.BureauInf.Services.BureauInfSVC" behaviorConfiguration="ServiceBehavior"> <endpoint address="" binding="wsHttpBinding" contract="Jsl.BureauInf.Contracts.ICliente" bindingConfiguration=

问题 I am moving my WSE3 web services to the WCF. But the client is WSE3 client. All the Operation Contracts return an instance of the MessageContract classes. This works for 2 operations but somehow fails for one operation of the same service contract. The error is: The signature or decryption was invalid. When I look into WCF trace file, I found the following: The formatter threw an exception while trying to deserialize the message: Error in deserializing body of request message for operation

问题 I have a WCF service which I would like to secure with windows domain groups. I do not want to include the PrincipalPermission attibute in the code! I would like to call the services from a web application using the application pool identity. This identity would be checked to ensure that it is a member of the domain group securing the WCF service. All of this would be defined in config. This seems like a really neat solution, except ..... defining the domain group as securing the WCF service

问题 I've been looking around and haven't been getting very far in my research of WCF security. I have a low-risk service I want to create so I just want some basic security required for client's on different servers outside of the domain to be able to use it. What's the easiest way in WCF? Is it just through the use of certificates? 回答1: Check this, it covers many security scenarios, use whichever suits your need. And for authentication purpose you can easily opt Username security, where you just

问题 I am creating a custom STS using a custom UserNameSecurityTokenHandler derived class. In the client, I am adding some additional information to the AdditionalContext property of the RequestSecurityToken that the Token Handler needs to fully authenticate (in addition to User Name & Password). I assume that the RequestSecurityToken must be available to me somewhere in my Token Handler, but I cannot locate it. I've prowled through the code with Reflector, but that has not helped either. How can

问题 I want to know how I can consume a normal WCF service (not Silverlight enabled WCF service) in my Silverlight application. Here is what I tried I have created a simple normal WCF service I changed the binding to basicHttpBinding in the web.config file I have placed clientaccesspolicy.xml and crossdomain.xml files in wwwroot folder. But even though I am unable to consume the WCF service. I get this exception System.ServiceModel.CommunicationException was unhandled by user code Message=An error