Forcing Kerberos RRS feed

  • Question

  • When I configure Windows authentication in WCF (e.g. using SPN), WCF will authenticate with Kerberos if possible. If not, it will fall back on NTLM. But: how can I force WCF to use Kerberos only (and throw exception if it is not possible, rather to fall back to NTLM)?

    Monday, February 21, 2011 12:48 PM


  • Hi,

    One way to do this is setting the AllowNTLM property to false in the client credentials.

    In .NET 4.0 this will create a warning that the setting is obsolete, so a better way may be to use the security policy settings on the client to dissalow NTLM authenticaton.



   - Community Webcasts Powered by Azure
    • Marked as answer by milan4711 Monday, February 21, 2011 2:00 PM
    Monday, February 21, 2011 1:06 PM