I have a ASP.NET web page that calls a web service on a server with IIS
installed on it. When it calls the web service, it gives a HTTP status 401
error stating that it is unauthorized to call the web service. After
searching the Microsoft Knowledge Base, article ID 811318 describes my exact
problem. However, when I try to implement the stated solution, I still
receive the same error.
Basically if I add the following line of code, it should fix my problem but
it doesn't.
WebService.cred entials=system. net.credentialc ache.defaultcre dentials
(where WebService is a reference to the web service on the server)
I checked the directory security of the web service in IIS and anonymous
access has been turned off and Integrated Windows authentication has been
switched on.
Any help would be greatly appreciated.
Thanks. 4 7910
Hello,
I guess you have impersonation turned on in you website and the webservice
is on another computer.
In this case, you are using the credential from the client and pass it along
to the webservice. This breaks with NTLM authentication.
You have two options then:
- Implement Kerberos authentication (see http://dunnry.com/blog/ConfiguringKe...legation.aspx).
- Turn off Windows authentication and use basic authentication. But you
should do this only if you are protecting the website with SSL.
Additionally, this will remove the single-sign-on experiences for the end
users.
Best regards,
Henning Krause
"Takumi" <Ta****@discuss ions.microsoft. comwrote in message
news:BF******** *************** ***********@mic rosoft.com...
>I have a ASP.NET web page that calls a web service on a server with IIS
installed on it. When it calls the web service, it gives a HTTP status 401
error stating that it is unauthorized to call the web service. After
searching the Microsoft Knowledge Base, article ID 811318 describes my
exact
problem. However, when I try to implement the stated solution, I still
receive the same error.
Basically if I add the following line of code, it should fix my problem
but
it doesn't.
WebService.cred entials=system. net.credentialc ache.defaultcre dentials
(where WebService is a reference to the web service on the server)
I checked the directory security of the web service in IIS and anonymous
access has been turned off and Integrated Windows authentication has been
switched on.
Any help would be greatly appreciated.
Thanks.
Hello Henning,
Thanks for your reply. I looked at the website where it describes how to set
up kerberos delegation and have discovered that we already have it
implemented. I also checked the web.config files in the .NET application and
they are all set to impersonate=tru e and are running under a domain account.
I'm not sure what much more there is to check. Hope you can shed some more
light on this issue.
Thanks.
"Henning Krause [MVP - Exchange]" wrote:
Hello,
I guess you have impersonation turned on in you website and the webservice
is on another computer.
In this case, you are using the credential from the client and pass it along
to the webservice. This breaks with NTLM authentication.
You have two options then:
- Implement Kerberos authentication (see http://dunnry.com/blog/ConfiguringKe...legation.aspx).
- Turn off Windows authentication and use basic authentication. But you
should do this only if you are protecting the website with SSL.
Additionally, this will remove the single-sign-on experiences for the end
users.
Best regards,
Henning Krause
"Takumi" <Ta****@discuss ions.microsoft. comwrote in message
news:BF******** *************** ***********@mic rosoft.com...
I have a ASP.NET web page that calls a web service on a server with IIS
installed on it. When it calls the web service, it gives a HTTP status 401
error stating that it is unauthorized to call the web service. After
searching the Microsoft Knowledge Base, article ID 811318 describes my
exact
problem. However, when I try to implement the stated solution, I still
receive the same error.
Basically if I add the following line of code, it should fix my problem
but
it doesn't.
WebService.cred entials=system. net.credentialc ache.defaultcre dentials
(where WebService is a reference to the web service on the server)
I checked the directory security of the web service in IIS and anonymous
access has been turned off and Integrated Windows authentication has been
switched on.
Any help would be greatly appreciated.
Thanks.
Hello,
have you checked the service principal names? Are they all set correct?
Are there any duplicates in the list of service principal names?
Here is another link with troubleshooting tips on kerberos: http://www.microsoft.com/technet/pro.../tkerberr.mspx
Best regards,
Henning Krause
"Takumi" <Ta****@discuss ions.microsoft. comwrote in message
news:3C******** *************** ***********@mic rosoft.com...
Hello Henning,
Thanks for your reply. I looked at the website where it describes how to
set
up kerberos delegation and have discovered that we already have it
implemented. I also checked the web.config files in the .NET application
and
they are all set to impersonate=tru e and are running under a domain
account.
I'm not sure what much more there is to check. Hope you can shed some more
light on this issue.
Thanks.
"Henning Krause [MVP - Exchange]" wrote:
>Hello,
I guess you have impersonation turned on in you website and the webservice is on another computer.
In this case, you are using the credential from the client and pass it along to the webservice. This breaks with NTLM authentication.
You have two options then: - Implement Kerberos authentication (see http://dunnry.com/blog/ConfiguringKe...legation.aspx). - Turn off Windows authentication and use basic authentication. But you should do this only if you are protecting the website with SSL. Additionally , this will remove the single-sign-on experiences for the end users.
Best regards, Henning Krause
"Takumi" <Ta****@discuss ions.microsoft. comwrote in message news:BF******* *************** ************@mi crosoft.com...
>I have a ASP.NET web page that calls a web service on a server with IIS
installed on it. When it calls the web service, it gives a HTTP status
401
error stating that it is unauthorized to call the web service. After
searching the Microsoft Knowledge Base, article ID 811318 describes my
exact
problem. However, when I try to implement the stated solution, I still
receive the same error.
Basically if I add the following line of code, it should fix my problem
but
it doesn't.
WebService.cred entials=system. net.credentialc ache.defaultcre dentials
(where WebService is a reference to the web service on the server)
I checked the directory security of the web service in IIS and
anonymous
access has been turned off and Integrated Windows authentication has
been
switched on.
Any help would be greatly appreciated.
Thanks.
Hi Henning,
I've been able to get the web service to work but I really don't understand
it. I simply changed my project type in Visual Studio 2005 from a web site
type to a web application type and it worked. Apparently, there is a
difference between these 2 types but I'm not sure what. I am guessing that
either type should be able to communicate with a web service but so far I
can't figure out why a web site in VS 2005 has so much trouble talking to the
web service while a web application is so seamless.
Thanks.
"Henning Krause [MVP - Exchange]" wrote:
Hello,
have you checked the service principal names? Are they all set correct?
Are there any duplicates in the list of service principal names?
Here is another link with troubleshooting tips on kerberos: http://www.microsoft.com/technet/pro.../tkerberr.mspx
Best regards,
Henning Krause
"Takumi" <Ta****@discuss ions.microsoft. comwrote in message
news:3C******** *************** ***********@mic rosoft.com...
Hello Henning,
Thanks for your reply. I looked at the website where it describes how to
set
up kerberos delegation and have discovered that we already have it
implemented. I also checked the web.config files in the .NET application
and
they are all set to impersonate=tru e and are running under a domain
account.
I'm not sure what much more there is to check. Hope you can shed some more
light on this issue.
Thanks.
"Henning Krause [MVP - Exchange]" wrote:
Hello,
I guess you have impersonation turned on in you website and the
webservice
is on another computer.
In this case, you are using the credential from the client and pass it
along
to the webservice. This breaks with NTLM authentication.
You have two options then:
- Implement Kerberos authentication (see http://dunnry.com/blog/ConfiguringKe...legation.aspx).
- Turn off Windows authentication and use basic authentication. But you
should do this only if you are protecting the website with SSL.
Additionally, this will remove the single-sign-on experiences for the end
users.
Best regards,
Henning Krause
"Takumi" <Ta****@discuss ions.microsoft. comwrote in message
news:BF******** *************** ***********@mic rosoft.com...
I have a ASP.NET web page that calls a web service on a server with IIS
installed on it. When it calls the web service, it gives a HTTP status
401
error stating that it is unauthorized to call the web service. After
searching the Microsoft Knowledge Base, article ID 811318 describes my
exact
problem. However, when I try to implement the stated solution, I still
receive the same error.
Basically if I add the following line of code, it should fix my problem
but
it doesn't.
WebService.cred entials=system. net.credentialc ache.defaultcre dentials
(where WebService is a reference to the web service on the server)
I checked the directory security of the web service in IIS and
anonymous
access has been turned off and Integrated Windows authentication has
been
switched on.
Any help would be greatly appreciated.
Thanks.
This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics |
by: Ian |
last post by:
Can anyone help
I have a web server on the internet with and ASP.NET application on it, the
application is set to allow Anonymous Access and Integrated Windows. The
Web.config is set to use Forms authentication. On the server side, where
the web server is I have set IIS to disable Anonymous access and allow
Integrated Windows. I have sync'd both the APSNET account on the web
servers and application server so that access will be...
|
by: Ron L |
last post by:
We are working on a distributed VB.Net application which will access a SQL
database located on a known server. Each client will run on the user's
local machine. To implement this, we are trying to use remoting for our
access to the SQL server, with the remoting being via IIS. Since all of our
users will have accounts in the destination domain, we want to have IIS
handle the security for us and not allow anonymous. We have set this up...
|
by: Ed Gonen |
last post by:
Hi,
I have the following problem. I've created 2 WebServices (A and B) that
reference to the same assembly - Credentials. Each WebService (A and B)
expose method GetCredentials that returns the Credentials class.
public class ServiceA : System.Web.Services.WebService
{
public Credentials GetCredentials()
{
|
by: Steve DeLong |
last post by:
I have a C# Web Service (anonymous access has been disabled) that I would
like to connect to with a standard Windows Service, also in C# as part of a
scheduled synchronization system.
I have configured my windows service to run as a particular user account. I
would like to use that account's credentials with the web service proxy, but
I can't seem to make it work.
The following code works:
|
by: David R |
last post by:
I am writing a .NET web services client that is calling an Axis web service.
I have two questions.
1. The following code should set the authentication; when I call a method
on the web service, the call fails with "bad username/password".
// wrWorkReq is the name of the service
wrWorkReq.Credentials = new System.Net.NetworkCredential("adolph.ramirez",
"xxx");
| |
by: =?Utf-8?B?RGFuZGFuIFpoYW5n?= |
last post by:
Now I have a web application, a web service and a SQL Server database.
The Web application will invoke the web service, the web service
invokes the SQL Server stored procedure.
I let the web service run in an application pool which runs under a
domain user, this domain user has permissions of accessing database and the
connection to database is trusted connection. All these work well.
The web application will be used in internet (not...
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However, people are often confused as to whether an ONU can Work As a Router. In this blog post, we’ll explore What is ONU, What Is Router, ONU & Router’s main usage, and What is the difference between ONU and Router. Let’s take a closer look !
Part I. Meaning of...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven tapestry of website design and digital marketing. It's not merely about having a website; it's about crafting an immersive digital experience that captivates audiences and drives business growth.
The Art of Business Website Design
Your website is...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows Update option using the Control Panel or Settings app; it automatically checks for updates and installs any it finds, whether you like it or not. For most users, this new feature is actually very convenient. If you want to control the update process,...
|
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each protocol has its own unique characteristics and advantages, but as a user who is planning to build a smart home system, I am a bit confused by the choice of these technologies. I'm particularly interested in Zigbee because I've heard it does some...
|
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then launch it, all on its own....
Now, this would greatly impact the work of software developers. The idea...
| |
by: isladogs |
last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome a new presenter, Adolph Dupré who will be discussing some powerful techniques for using class modules.
He will explain when you may want to use classes instead of User Defined Types (UDT). For example, to manage the data in unbound forms.
Adolph will...
|
by: conductexam |
last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one.
At the time of converting from word file to html my equations which are in the word document file was convert into image.
Globals.ThisAddIn.Application.ActiveDocument.Select();...
|
by: 6302768590 |
last post by:
Hai team
i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system
|
by: muto222 |
last post by:
How can i add a mobile payment intergratation into php mysql website.
| |