WinVistaBeta.com - Message | Security Advice

Subject: Security Advice

Group: microsoft.public.windows.developer.winfx.indigo

Date: 4/2/2008 5:24:25 AM

From: DEE [Email Address Protection]

HI There,

my scenerio:

Client : winform client , the client should prompt a LOGIN form

service : WCF with WSHTTPBINDING ( i am planning to use "message"
Security mode, with windows as client credentials)

Deployment scenerio :

1. only users with windows account are authenticated.
2. may or may not have domain controllers (all m/c may be in
workgroup)

given the above , i am slightly confussed on how to get a common
config settings for point 2.

Could anybody suggest .

Thanks in Advance

Back

Subject: Re: Security Advice

Group: microsoft.public.windows.developer.winfx.indigo

Date: 4/2/2008 3:55:00 PM

From: "Tiago Halm" [Email Address Protection]

If no domain is available (you are in a workgroup) then the client can be
set to authenticate via NTLM instead of kerberos. For kerberos the client
must have the target name (Servie Principal Name) set or the UPN (User
Principal Name). If NTLM, the client can have an empty servicePrincipalName.
Generate the client proxy and look at the generated configuration. Change it
where needed, see below.

Kerberos:
<client>
<endpoint ...>
<identity ...>
<servicePrincipalName value="http/foo.bar.com">
or
<userPrincipalName value="hello@bar.com">

NTLM:
<client>
<endpoint ...>
<identity ...>
<servicePrincipalName>

Tiago Halm

"DEE" <tsdeepak@gmail.com> wrote in message
news:d97b4094-ed0c-45ef-90df-0999b93767ca@i7g2000prf.googlegroups.com...
> HI There,
>
> my scenerio:
>
> Client : winform client , the client should prompt a LOGIN form
>
> service : WCF with WSHTTPBINDING ( i am planning to use "message"
> Security mode, with windows as client credentials)
>
> Deployment scenerio :
>
> 1. only users with windows account are authenticated.
> 2. may or may not have domain controllers (all m/c may be in
> workgroup)
>
> given the above , i am slightly confussed on how to get a common
> config settings for point 2.
>
>
>
>
> Could anybody suggest .
>
> Thanks in Advance

Back

Home Articles Gallery Groups Download Links Tools Archive

Site News

September 1, 2006

Windows Vista RC 1 screenshots added

July 3, 2006

Windows Vista Source Tree

June 10, 2006

Updated OpenSearch Generator

May 23, 2006

Windows Vista Beta 2 Released

March 16, 2006

Download Section Added

Timeline

Windows Vista Release

6.0.6000

January 30 2007

Windows Vista RTM

6.0.6000

November 8 2006

Windows Vista RC 1

6.0.5600

September 1, 2006

Windows Vista Beta 2

6.0.5384

May 23, 2006

Windows Vista Beta 1

6.0.5112

Windows Vista Beta | WinVistaBeta.com - Message | Security Advice

Site News

September 1, 2006

July 3, 2006

June 10, 2006

May 23, 2006

March 16, 2006

Timeline

Windows Vista Release

January 30 2007

Windows Vista RTM

November 8 2006

Windows Vista RC 1

September 1, 2006

Windows Vista Beta 2

May 23, 2006

Windows Vista Beta 1

July 27, 2005