Questions tagged [wcf-security]

Questions related to the authentication and authorization services for Windows Communication Foundation (WCF) applications

Windows Communication Foundation is Microsoft's implementation of the WS-* web service specifications. Its security functionality mainly deals with authentication, authorization and secure over-the-wire transmission of user credentials.

When setting up WCF Security for an application, the following parameters need to be configured:

The type of credential required, e.g. NTLM, plaintext, or certificate authentication
The security mode: transport mode (e.g. SSL), message mode (SOAP message security), or a combination of both
Which endpoint(s) are protected

Once a client successfully connects to an endpoint protected with WCF Security, the server application can examine the security context to determine the identity of the client and to determine its authorizations (which need to be configured separately).

1285 questions

votes

1 answer

Obtaining ClientCredentials from WCF operation

My WCF Service uses a custom credentials validator for custom Message-based security, because I want to ensure each client calling an operation on my web service has a corresponding username and password in my database. Imports…

wcf wcf-security wcf-extensions

asked Sep 01 '09 at 21:36

Llyle

5,980
6
39
56

votes

1 answer

How do I pass the principal provided by Azure ACS in an MVC application to a WCF service?

So, I'm creating an ASP.NET MVC application to be hosted in Azure. It's currently authenticating users via Azure ACS which delegates to a number of IdPs of clients for the application. The application now needs to call into a WCF service to display…

azure wcf-security azure-acs

asked Nov 30 '12 at 11:57

Paul Turner

38,949
15
102
166

votes

1 answer

How to Configure the Virtual Directory to Require SSL?

I am using IIS V5.1 I have wcf service application for which I am using security mode = Transport. and wshttpbinding. How can I Configure the Virtual Directory to Require SSL ?

wcf wcf-security

asked Sep 01 '09 at 10:58

Ashish Ashu

14,169
37
86
117

votes

2 answers

What is the best suited authentication technique for this scenario?

Please suggest me the best authentication way to implement in the scenario mentioned below: The requirement is I have to deploy a WCF web service in multiple countries across the world. NOTE : All the machines on which the service is deployed are on…

wcf web-services wcf-security

asked Sep 01 '09 at 02:55

Ashish Ashu

14,169
37
86
117

votes

1 answer

WCF Custom Authentication with dynamic user name and password

I implemented a WCF service using custom authentication, it works fine when i pass a constant string of username and password into UsernameAuthentication class, Validate method and validate it there. But is there a way i can pass Dynamic Username,…

c# wcf wcf-security

asked Nov 26 '12 at 13:22

user1663996

votes

1 answer

Debugging a netTcp WCF binding

I have a netTcp WCF service running in a windows service on a remote machine. The windows service is running as user mydomain\u2 The .config file for the windows service hosted WCF is

.net wcf wcf-security

asked Aug 28 '09 at 17:49

Matt

25,943
66
198
303

votes

2 answers

How to make web services safe

I created an android app which uses Web Services (I use vb.net for developing it). These web services reside on my Server (I use IIS). If I open the HTTP path, associated to these WS, I can use it freely. But in this way, any other user can use my…

android vb.net web-services security wcf-security

asked Nov 20 '12 at 15:41

GVillani82

17,196
30
105
172

votes

1 answer

WCF Authentication using basicHttpBinding and custom UserNamePasswordValidator?

Here i am implementing custom usernamepasswordvalidator in WCF RESTfull service.What i need is while invoking this one http://localhost:12229/RestServiceImpl.svc/GetStudentObj through Chrome REST Client it is not validating the username password..it…

c# wcf wcf-security basichttpbinding

asked Nov 05 '12 at 05:56

bala3569

10,832
28
102
146

votes

1 answer

There was no end point listening for WCF AuthenticationService

I am trying to authenticate my user logging from windows phone 7 using AuthenticationService WCF which is hosted in IIS 7. I tried it without SSL and is working fine. But I want to convert it to https. The error I am getting is when I hit the call…

wcf windows-phone-7 ssl wcf-ria-services wcf-security

asked Oct 25 '12 at 13:29

Rohith Nair

1,080
1
17
33

votes

1 answer

WCF Services with Windows Authentication and Varied Clients

I am beginning a project that will have three layers to it: a web front-end, a mobile front-end and WCF back-end. Authentication needs to be done via Active Directory, but both web front-ends will be using forms authentication to grant/reject access…

android asp.net active-directory wcf-security

asked Oct 11 '12 at 18:54

Scott Salyer

2,165
7
45
82

votes

1 answer

Custom STS and expired password via WS-Trust scenario

Are there any guidelines or best practices for handling expired passwords for scenario with active clients via WS-Trust? For now I have couple of ideas, but can't find any info about it: 1. Issue special token, so client can determine, that is…

security wcf-security wcf-client wif

asked Oct 04 '12 at 16:07

Aleksei Anufriev

3,206
1
27
31

votes

2 answers

How can I check details of a webservice request from an iphone application.?

I am working on an iphone app which consumes lots of webservices and requests data from them as well. All my webservice links are "http://ipaddress/webservice". I am just concerned with the security side of my app and wondering 1) how easy is it to…

iphone ios web-services wcf-security

asked Oct 01 '12 at 15:40

Andy Khatter

votes

1 answer

Installing certificate on IIS 7 for WCF security

I want to install a temporary certificate for my WCF service which installed in an IIS 7 server. How do I do that? is there any tutorial?

iis-7 certificate wcf-security

asked Sep 24 '12 at 13:56

krasnoff

votes

2 answers

Securing a WCF Service - allowing certain Web Applications to access

There's been so many topics I've read on this, but I have to just be 100% sure I'm going in the right direction with my scenario. The main thing I'm wanting to do is lock down a WCF service (.NET 4.5) to a single web application (potentially more in…

.net wcf wcf-security

asked Sep 18 '12 at 09:47

Chris Dixon

9,147
5
36
68

votes

2 answers

WCF Service not working under SSL

I run a WCF on IIS 7 with a load balanced server configuration. Everything works fine when we run it normally but when we try to turn on SSL everything stops working. I have tried all the different config settings in web.config like Transport and…

wcf wcf-binding wcf-security wcf-client

asked Sep 14 '12 at 12:03

WillSkills

Prev 1 2 3

…

85 86 Next