none
Forcing Kerberos RRS feed

  • Question

  • When I configure Windows authentication in WCF (e.g. using SPN), WCF will authenticate with Kerberos if possible. If not, it will fall back on NTLM. But: how can I force WCF to use Kerberos only (and throw exception if it is not possible, rather to fall back to NTLM)?


    Milan
    Monday, February 21, 2011 12:48 PM

Answers

  • Hi,

    One way to do this is setting the AllowNTLM property to false in the client credentials.

    In .NET 4.0 this will create a warning that the setting is obsolete, so a better way may be to use the security policy settings on the client to dissalow NTLM authenticaton.

    Regards,

    Alan

     


    http://www.CloudCasts.net - Community Webcasts Powered by Azure
    • Marked as answer by milan4711 Monday, February 21, 2011 2:00 PM
    Monday, February 21, 2011 1:06 PM