情况:WCF服务在浏览器中可以正常浏览,但是通过程序调用提示:

HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the server was 'NTLM'

详细错误信息:

System.ServiceModel.Security.MessageSecurityException: The HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the server was 'Negotiate,NTLM'. ---> System.Net.WebException: The remote server returned an error: () Unauthorized.

   at System.Net.HttpWebRequest.GetResponse()

   at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.WaitForReply(TimeSpan timeout)

解决方法(以匿名访问):

1.检查当前服务的身份验证模式是否和WCF在config中配置的模式是否一致。例如:

<binding name="BasicHttpBinding_Service" closeTimeout="00:00:30"

            openTimeout="00:01:00" receiveTimeout="00:10:00" sendTimeout="00:10:00"

            bypassProxyOnLocal="false"  hostNameComparisonMode="StrongWildcard"

            maxBufferPoolSize="2147483647" maxReceivedMessageSize="2147483647"

           useDefaultWebProxy="true"  messageEncoding="Text" textEncoding="utf-8" transferMode="Buffered"

            allowCookies="false">

          <readerQuotas maxDepth="32" maxStringContentLength="2147483647"

              maxArrayLength="2147483647" maxBytesPerRead="2147483647" maxNameTableCharCount="2147483647" />

          <security mode="None">

            <transport clientCredentialType="None" />

            <message clientCredentialType="UserName"/>

          </security>

        </binding>

加密模式为None。那么就应该检查是IIS中该服务身份验证模式否开启了【匿名访问】。

2.确认【我的电脑】-右键-【管理】-【本地用户和组】-【用户】中是否存在IIS中匿名访问所设置的用户。

XP:默认为用户名称。默认用户名格式:IUSER_计算机名。如果没有该计算机名称,那么需要添加该用户。确保该用户未被禁用。

Win7:默认为用户类型。默认的用户类型为:IUSER

以上为我的实际解决方法。

以下为网上提供的其他 的解决方法:

HTTP request is unauthorized with client authentication scheme 'Anonymous'.

当使用VS2008 作为client call sharepoint的service(WCF)的时候显示异常:

HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the server was 'NTLM'

我的解决方法:

1,使用http的endpoint:

<security mode="TransportCredentialOnly">

2,使用https的endpoint:

<security mode="Transport">

粘贴出client端的app.config

代码

<?xml version="1.0" encoding="utf-8"?>

<configuration>

  <system.serviceModel>

    <bindings>

      <basicHttpBinding>

        <binding name="BasicHttpBinding_BusinessDataCatalogSharedService"

            closeTimeout="00:01:00" openTimeout="00:01:00" receiveTimeout="00:10:00"

            sendTimeout="00:01:00" allowCookies="false" bypassProxyOnLocal="false"

            hostNameComparisonMode="StrongWildcard" maxBufferSize="999999"

            maxBufferPoolSize="9999999" maxReceivedMessageSize="999999"

            messageEncoding="Mtom" textEncoding="utf-8" transferMode="Buffered"

            useDefaultWebProxy="true">

          <readerQuotas maxDepth="99" maxStringContentLength="999999" maxArrayLength="999999"

              maxBytesPerRead="999999" maxNameTableCharCount="999999" />

          <security mode="TransportCredentialOnly">

            <transport clientCredentialType="Ntlm" proxyCredentialType="None"

                realm="">

              <extendedProtectionPolicy policyEnforcement="Never" />

            </transport>

            <message clientCredentialType="UserName" algorithmSuite="Default" />

          </security>

        </binding>

        <binding name="BasicHttpBinding_BusinessDataCatalogSharedService1"

            closeTimeout="00:01:00" openTimeout="00:01:00" receiveTimeout="00:10:00"

            sendTimeout="00:01:00" allowCookies="false" bypassProxyOnLocal="false"

            hostNameComparisonMode="StrongWildcard" maxBufferSize="999999"

            maxBufferPoolSize="9999999" maxReceivedMessageSize="999999"

            messageEncoding="Mtom" textEncoding="utf-8" transferMode="Buffered"

            useDefaultWebProxy="true">

          <readerQuotas maxDepth="99" maxStringContentLength="999999" maxArrayLength="999999"

              maxBytesPerRead="999999" maxNameTableCharCount="999999" />

          <security mode="Transport">

            <transport clientCredentialType="Ntlm" proxyCredentialType="None"

                realm="">

              <!--<extendedProtectionPolicy policyEnforcement="Never" />-->

            </transport>

            <message clientCredentialType="UserName" algorithmSuite="Default" />

          </security>

        </binding>

      </basicHttpBinding>

    </bindings>

    <client>

      <endpoint address="http://SUT02/_vti_bin/BdcAdminService.svc"

          binding="basicHttpBinding" bindingConfiguration="BasicHttpBinding_BusinessDataCatalogSharedService"

          contract="BusinessDataCatalogSharedService" name="BasicHttpBinding_BusinessDataCatalogSharedService" />

      <endpoint address="https://SUT02:443/_vti_bin/BdcAdminService.svc"

          binding="basicHttpBinding" bindingConfiguration="BasicHttpBinding_BusinessDataCatalogSharedService1"

          contract="BusinessDataCatalogSharedService" name="BasicHttpBinding_BusinessDataCatalogSharedService1" />

    </client>

  </system.serviceModel>

</configuration>

client端的代码如下:

代码

static void Main(string[] args)

        {

            BusinessDataCatalogSharedServiceClient client = new BusinessDataCatalogSharedServiceClient("BasicHttpBinding_BusinessDataCatalogSharedService1");

            client.ClientCredentials.Windows.AllowedImpersonationLevel = System.Security.Principal.TokenImpersonationLevel.Impersonation;

            client.ClientCredentials.UserName.UserName = @"domain\userName";

            client.ClientCredentials.UserName.Password = "Password";

            client.ClientCredentials.Windows.ClientCredential = new NetworkCredential("username", "Password", "domain");

            AcceptAllCertificate();

            try

            {

                Guid guid = client.GetServiceApplicationId();

            }

            catch (Exception ex)

            {

                throw;

            }

        }

        /// <summary>

        /// Case request Url include HTTPS and TCP prefix, use this function to avoid closing base connection.

        /// Local client will accept all certificate after execute this function.

        /// </summary>

        public static void AcceptAllCertificate()

        {

            ServicePointManager.ServerCertificateValidationCallback = new RemoteCertificateValidationCallback(ValidateServerCertificate);

        }

        /// <summary>

        /// Verifies the remote Secure Sockets Layer (SSL) certificate used for authentication.

        /// In our adapter,we make this method always return true, make client can communicate with server under HTTPS without a certification.

        /// </summary>

        /// <param name="sender">An object that contains state information for this validation.</param>

        /// <param name="certificate">The certificate used to authenticate the remote party.</param>

        /// <param name="chain">The chain of certificate authorities associated with the remote certificate.</param>

        /// <param name="sslPolicyErrors">One or more errors associated with the remote certificate.</param>

        /// <returns>A Boolean value that determines whether the specified certificate is accepted for authentication.</returns>

        private static bool ValidateServerCertificate(object sender, X509Certificate certificate, X509Chain chain, SslPolicyErrors sslPolicyErrors)

        {

            return true;

        }

The HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the serv

The HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the server was 'Negotiate,NTLM'.

解决方案

1 配置IIS

网站->属性->目录安全性->身份验证方法: 同时选中”匿名访问”和”集成Windows身份验证”

2 配置WCF客户端的Config文件: 有3处地方: 1)security mode, 2)end point的behaviorConfiguration, 3)behaviors

<system.serviceModel>

    <bindings>

        <basicHttpBinding>

            <binding …>

                <readerQuotas … />

                <security mode="TransportCredentialOnly">

                    <transport clientCredentialType="Windows" proxyCredentialType="Windows" realm="" />

                    <message clientCredentialType="UserName" algorithmSuite="Default" />

                </security>

            </binding>

        </basicHttpBinding>

    </bindings>

    <client>

        <endpoint ... behaviorConfiguration="ImpersonationBehavior"/>

    </client>

    <behaviors>

        <endpointBehaviors>

            <behavior name="ImpersonationBehavior">

                <clientCredentials>

                    <windows allowedImpersonationLevel="Impersonation"/>

                </clientCredentials>

            </behavior>

        </endpointBehaviors>

    </behaviors>

</system.serviceModel>

HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the server was 'NTLM'。的更多相关文章

  1. SpringMVC报错The request sent by the client was syntactically incorrect ()

    springmvc数据绑定出的错 在数据绑定的时候一定要主意Controller方法中的参数名和jsp页面里的参数名字是否一致或者按照绑定的规范来写, 如果不一致,可能回报如下错误: The requ ...

  2. "The request sent by the client was syntactically incorrect ()"问题定位及解决:

    Spring MVC "The request sent by the client was syntactically incorrect ()"解决办法: 把spring日志级 ...

  3. The request sent by the client was syntactically incorrect问题解决

    The request sent by the client was syntactically incorrect意思嘛,google翻译一下 通过日志不难看出,是由参数不匹配造成的. 所以对于Da ...

  4. 错误:The request sent by the client was syntactically incorrect的解决

    问题: 错误400-The request sent by the client was syntactically incorrect. springMVC中,某个页面提交时报400错误,如下图. ...

  5. spring mvc 在上传图片时,浏览器报The request sent by the client was syntactically incorrect

    项目中,在一个jsp页面里其它图片上传是功能是可以使用的,当我自己新加了一个图片上传时,提交表单后,浏览器报The request sent by the client was syntactical ...

  6. SpringMVC---400错误The request sent by the client was syntactically incorrect ()

    在SpringMVC中使用@RequestBody和@ModelAttribute注解时遇到了很多问题,现记录下来. @ModelAttribute这个注解主要是将客户端请求的参数绑定参数到一个对象上 ...

  7. HTTP Status 400 - description The request sent by the client was syntactically incorrect.

    HTTP Status 400 - type Status report message description The request sent by the client was syntacti ...

  8. The request sent by the client was syntactically incorrect.

    HTTP Status 400 - type Status report message description The request sent by the client was syntacti ...

  9. 又见The request sent by the client was syntactically incorrect ()

    前几天遇到过这个问题(Ref:http://www.cnblogs.com/xiandedanteng/p/4168609.html),问题在页面的组件name和和注解的@param名匹配不对,这个好 ...

随机推荐

  1. fontDialog-字体对话框和colorDialog-颜色对话框

    private void button1_Click(object sender, EventArgs e) { DialogResult dr = fontDialog1.ShowDialog(); ...

  2. 从文件/文件流的头字节中得到mime信息

    在写网络爬虫的时候,需要根据链接来获取文件类型,将内容正确存储.之前我都是根据链接的后缀来判断的,比如: http://img12.360buyimg.com/da/20120330/88_31_Zy ...

  3. 微信小程序7 - 页面命名规范

    /pages/{module}/{page}/index.js   这个是目录结构 所有单个页面(Page)目录内, 都叫做index,如 index.js  index.wxss  ,不需要起其他名 ...

  4. 微服务vs传统开发

    使用微服务有一段时间了,这种开发模式和传统的开发模式对比,有很大的不同. 分工不同,以前我们可能是一个一个模块,现在可能是一人一个系统. 架构不同,服务的拆分是一个技术含量很高的问题,拆分是否合理对以 ...

  5. 因此mybatis最好与spring集成起来使用

    单独使用mybatis是有很多限制的(比如无法实现跨越多个session的事务),而且很多业务系统本来就是使用spring来管理的事务,因此mybatis最好与spring集成起来使用. spring ...

  6. 浅谈Unity中的GC以及优化

    介绍: 在游戏运行的时候,数据主要存储在内存中,当游戏的数据不在需要的时候,存储当前数据的内存就可以被回收再次使用.内存垃圾是指当前废弃数据所占用的内存,垃圾回收(GC)是指将废弃的内存重新回收再次使 ...

  7. Service层事务不能回滚的解决方式

    1.在service方法里面如果对异常进行了捕获的话,该事务是不会进行回滚的        默认spring事务只在发生未被捕获的 runtimeexcetpion时才回滚.          spr ...

  8. 嵌入式开发之davinci--- 8148/8168/8127 中的图像处理算法优化库vlib

    The Texas Instruments VLIB is an optimizedImage/Video Processing Functions Library for C programmers ...

  9. 【BZOJ】2555: SubString(后缀自动机)

    http://www.lydsy.com/JudgeOnline/problem.php?id=2555 学到了如何快速维护right值orz (不过这仍然是暴力维护,可以卡到O(n) 首先我们在加一 ...

  10. JQuery获取和设置select下拉框的值

    获取Select : 获取select 选中的 text : $("#sid").find("option:selected").text(); 获取selec ...