none
How to secure endpoint RRS feed

  • Question

  • when we have multiple endpoint like http and tcp then how could i secure tcp endpoint means if anyone know the endpoint address then external user will not be allow to consume it rather only internal user will be allowed to use tcp only.

    what to follow to make it secure. thanks

    Tuesday, September 15, 2015 6:27 PM

Answers

  • Hi Mou_kolkata,

    According to your description, as far as I know, the nettcpbinding  supports Windows authentication

    with transport security by default, you do not have to change any other configuration in the binding.

    So, you can set transport security mode in web.config file, like below:

    <bindings>
          <netTcpBinding>
            <binding name="NetTcpBindingEndpointConfig">
              <security mode="Transport" />
            </binding>
          </netTcpBinding>
        </bindings>

    Then, you can use windows authentication to allowed the internal user use tcp server with

    domain account and password.

    Note: the internal user client and server-side need in the same domain.

    For more information, you can refer to the following articles:

    1.How to: Use netTcpBinding with Windows Authentication and Transport Security in WCF Calling from Windows Forms

    2.Windows Authentication <windowsAuthentication>

    I hope that will be helpful to you.

    Best Regards,

    Grady

    • Marked as answer by Mou_kolkata Wednesday, September 16, 2015 9:08 AM
    Wednesday, September 16, 2015 6:01 AM
    Moderator