情况:WCF服务在浏览器中可以正常浏览,但是通过程序调用提示:

HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the server was 'NTLM'

详细错误信息:

System.ServiceModel.Security.MessageSecurityException: The HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the server was 'Negotiate,NTLM'. ---> System.Net.WebException: The remote server returned an error: () Unauthorized.

   at System.Net.HttpWebRequest.GetResponse()

   at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.WaitForReply(TimeSpan timeout)

解决方法(以匿名访问):

1.检查当前服务的身份验证模式是否和WCF在config中配置的模式是否一致。例如:

<binding name="BasicHttpBinding_Service" closeTimeout="00:00:30"

            openTimeout="00:01:00" receiveTimeout="00:10:00" sendTimeout="00:10:00"

            bypassProxyOnLocal="false"  hostNameComparisonMode="StrongWildcard"

            maxBufferPoolSize="2147483647" maxReceivedMessageSize="2147483647"

           useDefaultWebProxy="true"  messageEncoding="Text" textEncoding="utf-8" transferMode="Buffered"

            allowCookies="false">

          <readerQuotas maxDepth="32" maxStringContentLength="2147483647"

              maxArrayLength="2147483647" maxBytesPerRead="2147483647" maxNameTableCharCount="2147483647" />

          <security mode="None">

            <transport clientCredentialType="None" />

            <message clientCredentialType="UserName"/>

          </security>

        </binding>

加密模式为None。那么就应该检查是IIS中该服务身份验证模式否开启了【匿名访问】。

2.确认【我的电脑】-右键-【管理】-【本地用户和组】-【用户】中是否存在IIS中匿名访问所设置的用户。

XP:默认为用户名称。默认用户名格式:IUSER_计算机名。如果没有该计算机名称,那么需要添加该用户。确保该用户未被禁用。

Win7:默认为用户类型。默认的用户类型为:IUSER

以上为我的实际解决方法。

以下为网上提供的其他 的解决方法:

HTTP request is unauthorized with client authentication scheme 'Anonymous'.

当使用VS2008 作为client call sharepoint的service(WCF)的时候显示异常:

HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the server was 'NTLM'

我的解决方法:

1,使用http的endpoint:

<security mode="TransportCredentialOnly">

2,使用https的endpoint:

<security mode="Transport">

粘贴出client端的app.config

代码

<?xml version="1.0" encoding="utf-8"?>

<configuration>

  <system.serviceModel>

    <bindings>

      <basicHttpBinding>

        <binding name="BasicHttpBinding_BusinessDataCatalogSharedService"

            closeTimeout="00:01:00" openTimeout="00:01:00" receiveTimeout="00:10:00"

            sendTimeout="00:01:00" allowCookies="false" bypassProxyOnLocal="false"

            hostNameComparisonMode="StrongWildcard" maxBufferSize="999999"

            maxBufferPoolSize="9999999" maxReceivedMessageSize="999999"

            messageEncoding="Mtom" textEncoding="utf-8" transferMode="Buffered"

            useDefaultWebProxy="true">

          <readerQuotas maxDepth="99" maxStringContentLength="999999" maxArrayLength="999999"

              maxBytesPerRead="999999" maxNameTableCharCount="999999" />

          <security mode="TransportCredentialOnly">

            <transport clientCredentialType="Ntlm" proxyCredentialType="None"

                realm="">

              <extendedProtectionPolicy policyEnforcement="Never" />

            </transport>

            <message clientCredentialType="UserName" algorithmSuite="Default" />

          </security>

        </binding>

        <binding name="BasicHttpBinding_BusinessDataCatalogSharedService1"

            closeTimeout="00:01:00" openTimeout="00:01:00" receiveTimeout="00:10:00"

            sendTimeout="00:01:00" allowCookies="false" bypassProxyOnLocal="false"

            hostNameComparisonMode="StrongWildcard" maxBufferSize="999999"

            maxBufferPoolSize="9999999" maxReceivedMessageSize="999999"

            messageEncoding="Mtom" textEncoding="utf-8" transferMode="Buffered"

            useDefaultWebProxy="true">

          <readerQuotas maxDepth="99" maxStringContentLength="999999" maxArrayLength="999999"

              maxBytesPerRead="999999" maxNameTableCharCount="999999" />

          <security mode="Transport">

            <transport clientCredentialType="Ntlm" proxyCredentialType="None"

                realm="">

              <!--<extendedProtectionPolicy policyEnforcement="Never" />-->

            </transport>

            <message clientCredentialType="UserName" algorithmSuite="Default" />

          </security>

        </binding>

      </basicHttpBinding>

    </bindings>

    <client>

      <endpoint address="http://SUT02/_vti_bin/BdcAdminService.svc"

          binding="basicHttpBinding" bindingConfiguration="BasicHttpBinding_BusinessDataCatalogSharedService"

          contract="BusinessDataCatalogSharedService" name="BasicHttpBinding_BusinessDataCatalogSharedService" />

      <endpoint address="https://SUT02:443/_vti_bin/BdcAdminService.svc"

          binding="basicHttpBinding" bindingConfiguration="BasicHttpBinding_BusinessDataCatalogSharedService1"

          contract="BusinessDataCatalogSharedService" name="BasicHttpBinding_BusinessDataCatalogSharedService1" />

    </client>

  </system.serviceModel>

</configuration>

client端的代码如下:

代码

static void Main(string[] args)

        {

            BusinessDataCatalogSharedServiceClient client = new BusinessDataCatalogSharedServiceClient("BasicHttpBinding_BusinessDataCatalogSharedService1");

            client.ClientCredentials.Windows.AllowedImpersonationLevel = System.Security.Principal.TokenImpersonationLevel.Impersonation;

            client.ClientCredentials.UserName.UserName = @"domain\userName";

            client.ClientCredentials.UserName.Password = "Password";

            client.ClientCredentials.Windows.ClientCredential = new NetworkCredential("username", "Password", "domain");

            AcceptAllCertificate();

            try

            {

                Guid guid = client.GetServiceApplicationId();

            }

            catch (Exception ex)

            {

                throw;

            }

        }

        /// <summary>

        /// Case request Url include HTTPS and TCP prefix, use this function to avoid closing base connection.

        /// Local client will accept all certificate after execute this function.

        /// </summary>

        public static void AcceptAllCertificate()

        {

            ServicePointManager.ServerCertificateValidationCallback = new RemoteCertificateValidationCallback(ValidateServerCertificate);

        }

        /// <summary>

        /// Verifies the remote Secure Sockets Layer (SSL) certificate used for authentication.

        /// In our adapter,we make this method always return true, make client can communicate with server under HTTPS without a certification.

        /// </summary>

        /// <param name="sender">An object that contains state information for this validation.</param>

        /// <param name="certificate">The certificate used to authenticate the remote party.</param>

        /// <param name="chain">The chain of certificate authorities associated with the remote certificate.</param>

        /// <param name="sslPolicyErrors">One or more errors associated with the remote certificate.</param>

        /// <returns>A Boolean value that determines whether the specified certificate is accepted for authentication.</returns>

        private static bool ValidateServerCertificate(object sender, X509Certificate certificate, X509Chain chain, SslPolicyErrors sslPolicyErrors)

        {

            return true;

        }

The HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the serv

The HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the server was 'Negotiate,NTLM'.

解决方案

1 配置IIS

网站->属性->目录安全性->身份验证方法: 同时选中”匿名访问”和”集成Windows身份验证”

2 配置WCF客户端的Config文件: 有3处地方: 1)security mode, 2)end point的behaviorConfiguration, 3)behaviors

<system.serviceModel>

    <bindings>

        <basicHttpBinding>

            <binding …>

                <readerQuotas … />

                <security mode="TransportCredentialOnly">

                    <transport clientCredentialType="Windows" proxyCredentialType="Windows" realm="" />

                    <message clientCredentialType="UserName" algorithmSuite="Default" />

                </security>

            </binding>

        </basicHttpBinding>

    </bindings>

    <client>

        <endpoint ... behaviorConfiguration="ImpersonationBehavior"/>

    </client>

    <behaviors>

        <endpointBehaviors>

            <behavior name="ImpersonationBehavior">

                <clientCredentials>

                    <windows allowedImpersonationLevel="Impersonation"/>

                </clientCredentials>

            </behavior>

        </endpointBehaviors>

    </behaviors>

</system.serviceModel>

HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the server was 'NTLM'。的更多相关文章

  1. SpringMVC报错The request sent by the client was syntactically incorrect ()

    springmvc数据绑定出的错 在数据绑定的时候一定要主意Controller方法中的参数名和jsp页面里的参数名字是否一致或者按照绑定的规范来写, 如果不一致,可能回报如下错误: The requ ...

  2. "The request sent by the client was syntactically incorrect ()"问题定位及解决:

    Spring MVC "The request sent by the client was syntactically incorrect ()"解决办法: 把spring日志级 ...

  3. The request sent by the client was syntactically incorrect问题解决

    The request sent by the client was syntactically incorrect意思嘛,google翻译一下 通过日志不难看出,是由参数不匹配造成的. 所以对于Da ...

  4. 错误:The request sent by the client was syntactically incorrect的解决

    问题: 错误400-The request sent by the client was syntactically incorrect. springMVC中,某个页面提交时报400错误,如下图. ...

  5. spring mvc 在上传图片时,浏览器报The request sent by the client was syntactically incorrect

    项目中,在一个jsp页面里其它图片上传是功能是可以使用的,当我自己新加了一个图片上传时,提交表单后,浏览器报The request sent by the client was syntactical ...

  6. SpringMVC---400错误The request sent by the client was syntactically incorrect ()

    在SpringMVC中使用@RequestBody和@ModelAttribute注解时遇到了很多问题,现记录下来. @ModelAttribute这个注解主要是将客户端请求的参数绑定参数到一个对象上 ...

  7. HTTP Status 400 - description The request sent by the client was syntactically incorrect.

    HTTP Status 400 - type Status report message description The request sent by the client was syntacti ...

  8. The request sent by the client was syntactically incorrect.

    HTTP Status 400 - type Status report message description The request sent by the client was syntacti ...

  9. 又见The request sent by the client was syntactically incorrect ()

    前几天遇到过这个问题(Ref:http://www.cnblogs.com/xiandedanteng/p/4168609.html),问题在页面的组件name和和注解的@param名匹配不对,这个好 ...

随机推荐

  1. 浅析StackTrace

    我们在学习函数调用时,都知道每个函数都拥有自己的栈空间.一个函数被调用时,就创建一个新的栈空间.那么通过函数的嵌套调用最后就形成了一个函数调用堆栈.在c#中,使用StackTrace记录这个堆栈.你可 ...

  2. [device]/proc/devices and /dev/

    1. /proc/devices和/dev cat /proc/devices 列出在当前运行的内核中已经注册的设备名称以及设备的Major主设备号.其中的设备信息是驱动程序在加载时生成的,也可以说是 ...

  3. 修复安卓的bug

    一直不明白listview中的复用,为什么会出现,项目多了.点击同一行的按钮,操作的不是指定行的对象. 仔细研读了代码,突然明白了.因为复用了,导致了position改变了. 伪码 if(conver ...

  4. C++ 类的对象管理模型初讲

    //类的对象管理模型初讲 #include<iostream> using namespace std; class PointA{ private: int x;//占据4个字节大小的内 ...

  5. 使用PULL解析XML文件

    转载博文1:http://blog.csdn.net/wangkuifeng0118/article/details/7313241 XmlPull和Sax类似,是基于流(stream)操作文件,然后 ...

  6. backbone.js初探(转)

    BackBone是JavaScript frameworks for creating MVC-like web applications,最近流行的用来建立单页面web application的工具 ...

  7. loadimage1();有问题

    f.Read(pBuffer, nSize)不能少,少了虽然能读进去数据但是不能显示成图片,可能原因是存进的数据并不是图片数据! 输入图片测试,但是没有CFile先Open再Read

  8. HDU 2159 FATE(二维全然背包)

    中文题目就不用解释了   就是裸的二维全然背包 d[i][j]表示消耗i忍耐杀j个怪最多可获得的经验  然后就用全然背包来做了  二维背包背包只是是多了一重循环 <span style=&quo ...

  9. iOS开发之-- 设置启动图片

    一.添加启动图片 点击Assets.xcassets进入图片管理,右击,弹出"New Launch Image"或点下面的+号创建Launch Image: 如图,右侧的勾选可以让 ...

  10. IT 运行在云端,而云运行在 Linux 上

    导读 IT 正在逐渐迁移到云端.那又是什么驱动了云呢?答案是 Linux. 当连微软的 Azure 都开始拥抱 Linux 时,你就应该知道这一切都已经改变了.不管你接不接受, 云正在接管 IT 已经 ...