IIS Web Service 401 Error with Integrated Windows Authentication

D

DownUnder

Hi,

I have 401 Error when I try to invoke an ASP Web Service through a client if
Windows Authentication is used.

To identify the reason, I built a simple "Hellow World" Web Service that I
can successfully invoke using IE (regardless of the authentication type
configured in IIS).

I can invoke the same Web Service by another client successfully if the
authentication type is Anonymous (regardless of the actual user who it runs
under).

However, if the Integrated Windows Authentication is ticked, invoking the
service fails (even for the users configured for Anonymous access).

I tried it on XP Professional and IIS 6. (However, I have the same result on
Win2K3.)

Help is very much appreciated.

DownUnder.
 
R

Raterus

That almost makes sense to me. Lets say this was just a normal aspx page and you were accessing it through a browser. The browser only passes its windows credentials if certain conditions are in place (like it is in the Local Intranet Group). You certainly wouldn't want your windows credentials passed to every webpage you access.

For a webservice though, you have basically the same situation, I don't believe .net is going to pass it's windows credentials to a potentially external webservice without you directly telling it to. It will probably default to anonymous authenentication if you don't specify anything.

--Michael
 
D

DownUnder

You are right. When I think about it, it makes sense to me as well.

However, I am still surprised that I have not seen any note of those
credentials on the client site (being set the way it is on the service
object) before. For some reason (probably the lack of knowledge), I always
thought the credentials were passed automatically.

Is there any good documentation about that general subject?
 
D

DownUnder

I think I now know the reason why I was led to think that the credentials
are passed automatically:

It is the "impersonation" setting that I was using (on the server side). I
thought when that setting was used in the web.config file, the credentials
from the client were passed automatically somehow. I was wrong...they need to
be set on the client explicitly as the following KB article states.

"http://support.microsoft.com/default.aspx?scid=kb;EN-US;811318"
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Integrated Authentication - 401 Unauthorized Error 1
IIS 7.0 and Windows Integrated Authentication? 1
401 if AppPool is not Network Service 2
WCF and Integrated Windows Authentication 7
Integrated Authentication with SQL 8
401: Unauthorized. Problem calling web service from forms authenti 1
Integrated Windows Authentication 2
Renamed AD user accounts and Integrated Windows authentication in IIS 6.0? 2

Members online

No members online now.
Total: 29 (members: 0, guests: 29)
Robots: 321

Forum statistics

Threads
473,755
Messages
2,569,536
Members
45,007
Latest member
obedient dusk

Latest Threads

Top