情况:WCF服务在浏览器中可以正常浏览,但是通过程序调用提示:

HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the server was 'NTLM'

详细错误信息:

System.ServiceModel.Security.MessageSecurityException: The HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the server was 'Negotiate,NTLM'. ---> System.Net.WebException: The remote server returned an error: () Unauthorized.

   at System.Net.HttpWebRequest.GetResponse()

   at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.WaitForReply(TimeSpan timeout)

解决方法(以匿名访问):

1.检查当前服务的身份验证模式是否和WCF在config中配置的模式是否一致。例如:

<binding name="BasicHttpBinding_Service" closeTimeout="00:00:30"

            openTimeout="00:01:00" receiveTimeout="00:10:00" sendTimeout="00:10:00"

            bypassProxyOnLocal="false"  hostNameComparisonMode="StrongWildcard"

            maxBufferPoolSize="2147483647" maxReceivedMessageSize="2147483647"

           useDefaultWebProxy="true"  messageEncoding="Text" textEncoding="utf-8" transferMode="Buffered"

            allowCookies="false">

          <readerQuotas maxDepth="32" maxStringContentLength="2147483647"

              maxArrayLength="2147483647" maxBytesPerRead="2147483647" maxNameTableCharCount="2147483647" />

          <security mode="None">

            <transport clientCredentialType="None" />

            <message clientCredentialType="UserName"/>

          </security>

        </binding>

加密模式为None。那么就应该检查是IIS中该服务身份验证模式否开启了【匿名访问】。

2.确认【我的电脑】-右键-【管理】-【本地用户和组】-【用户】中是否存在IIS中匿名访问所设置的用户。

XP:默认为用户名称。默认用户名格式:IUSER_计算机名。如果没有该计算机名称,那么需要添加该用户。确保该用户未被禁用。

Win7:默认为用户类型。默认的用户类型为:IUSER

以上为我的实际解决方法。

以下为网上提供的其他 的解决方法:

HTTP request is unauthorized with client authentication scheme 'Anonymous'.

当使用VS2008 作为client call sharepoint的service(WCF)的时候显示异常:

HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the server was 'NTLM'

我的解决方法:

1,使用http的endpoint:

<security mode="TransportCredentialOnly">

2,使用https的endpoint:

<security mode="Transport">

粘贴出client端的app.config

代码

<?xml version="1.0" encoding="utf-8"?>

<configuration>

  <system.serviceModel>

    <bindings>

      <basicHttpBinding>

        <binding name="BasicHttpBinding_BusinessDataCatalogSharedService"

            closeTimeout="00:01:00" openTimeout="00:01:00" receiveTimeout="00:10:00"

            sendTimeout="00:01:00" allowCookies="false" bypassProxyOnLocal="false"

            hostNameComparisonMode="StrongWildcard" maxBufferSize="999999"

            maxBufferPoolSize="9999999" maxReceivedMessageSize="999999"

            messageEncoding="Mtom" textEncoding="utf-8" transferMode="Buffered"

            useDefaultWebProxy="true">

          <readerQuotas maxDepth="99" maxStringContentLength="999999" maxArrayLength="999999"

              maxBytesPerRead="999999" maxNameTableCharCount="999999" />

          <security mode="TransportCredentialOnly">

            <transport clientCredentialType="Ntlm" proxyCredentialType="None"

                realm="">

              <extendedProtectionPolicy policyEnforcement="Never" />

            </transport>

            <message clientCredentialType="UserName" algorithmSuite="Default" />

          </security>

        </binding>

        <binding name="BasicHttpBinding_BusinessDataCatalogSharedService1"

            closeTimeout="00:01:00" openTimeout="00:01:00" receiveTimeout="00:10:00"

            sendTimeout="00:01:00" allowCookies="false" bypassProxyOnLocal="false"

            hostNameComparisonMode="StrongWildcard" maxBufferSize="999999"

            maxBufferPoolSize="9999999" maxReceivedMessageSize="999999"

            messageEncoding="Mtom" textEncoding="utf-8" transferMode="Buffered"

            useDefaultWebProxy="true">

          <readerQuotas maxDepth="99" maxStringContentLength="999999" maxArrayLength="999999"

              maxBytesPerRead="999999" maxNameTableCharCount="999999" />

          <security mode="Transport">

            <transport clientCredentialType="Ntlm" proxyCredentialType="None"

                realm="">

              <!--<extendedProtectionPolicy policyEnforcement="Never" />-->

            </transport>

            <message clientCredentialType="UserName" algorithmSuite="Default" />

          </security>

        </binding>

      </basicHttpBinding>

    </bindings>

    <client>

      <endpoint address="http://SUT02/_vti_bin/BdcAdminService.svc"

          binding="basicHttpBinding" bindingConfiguration="BasicHttpBinding_BusinessDataCatalogSharedService"

          contract="BusinessDataCatalogSharedService" name="BasicHttpBinding_BusinessDataCatalogSharedService" />

      <endpoint address="https://SUT02:443/_vti_bin/BdcAdminService.svc"

          binding="basicHttpBinding" bindingConfiguration="BasicHttpBinding_BusinessDataCatalogSharedService1"

          contract="BusinessDataCatalogSharedService" name="BasicHttpBinding_BusinessDataCatalogSharedService1" />

    </client>

  </system.serviceModel>

</configuration>

client端的代码如下:

代码

static void Main(string[] args)

        {

            BusinessDataCatalogSharedServiceClient client = new BusinessDataCatalogSharedServiceClient("BasicHttpBinding_BusinessDataCatalogSharedService1");

            client.ClientCredentials.Windows.AllowedImpersonationLevel = System.Security.Principal.TokenImpersonationLevel.Impersonation;

            client.ClientCredentials.UserName.UserName = @"domain\userName";

            client.ClientCredentials.UserName.Password = "Password";

            client.ClientCredentials.Windows.ClientCredential = new NetworkCredential("username", "Password", "domain");

            AcceptAllCertificate();

            try

            {

                Guid guid = client.GetServiceApplicationId();

            }

            catch (Exception ex)

            {

                throw;

            }

        }

        /// <summary>

        /// Case request Url include HTTPS and TCP prefix, use this function to avoid closing base connection.

        /// Local client will accept all certificate after execute this function.

        /// </summary>

        public static void AcceptAllCertificate()

        {

            ServicePointManager.ServerCertificateValidationCallback = new RemoteCertificateValidationCallback(ValidateServerCertificate);

        }

        /// <summary>

        /// Verifies the remote Secure Sockets Layer (SSL) certificate used for authentication.

        /// In our adapter,we make this method always return true, make client can communicate with server under HTTPS without a certification.

        /// </summary>

        /// <param name="sender">An object that contains state information for this validation.</param>

        /// <param name="certificate">The certificate used to authenticate the remote party.</param>

        /// <param name="chain">The chain of certificate authorities associated with the remote certificate.</param>

        /// <param name="sslPolicyErrors">One or more errors associated with the remote certificate.</param>

        /// <returns>A Boolean value that determines whether the specified certificate is accepted for authentication.</returns>

        private static bool ValidateServerCertificate(object sender, X509Certificate certificate, X509Chain chain, SslPolicyErrors sslPolicyErrors)

        {

            return true;

        }

The HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the serv

The HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the server was 'Negotiate,NTLM'.

解决方案

1 配置IIS

网站->属性->目录安全性->身份验证方法: 同时选中”匿名访问”和”集成Windows身份验证”

2 配置WCF客户端的Config文件: 有3处地方: 1)security mode, 2)end point的behaviorConfiguration, 3)behaviors

<system.serviceModel>

    <bindings>

        <basicHttpBinding>

            <binding …>

                <readerQuotas … />

                <security mode="TransportCredentialOnly">

                    <transport clientCredentialType="Windows" proxyCredentialType="Windows" realm="" />

                    <message clientCredentialType="UserName" algorithmSuite="Default" />

                </security>

            </binding>

        </basicHttpBinding>

    </bindings>

    <client>

        <endpoint ... behaviorConfiguration="ImpersonationBehavior"/>

    </client>

    <behaviors>

        <endpointBehaviors>

            <behavior name="ImpersonationBehavior">

                <clientCredentials>

                    <windows allowedImpersonationLevel="Impersonation"/>

                </clientCredentials>

            </behavior>

        </endpointBehaviors>

    </behaviors>

</system.serviceModel>

HTTP request is unauthorized with client authentication scheme 'Anonymous'. The authentication header received from the server was 'NTLM'。的更多相关文章

  1. SpringMVC报错The request sent by the client was syntactically incorrect ()

    springmvc数据绑定出的错 在数据绑定的时候一定要主意Controller方法中的参数名和jsp页面里的参数名字是否一致或者按照绑定的规范来写, 如果不一致,可能回报如下错误: The requ ...

  2. "The request sent by the client was syntactically incorrect ()"问题定位及解决:

    Spring MVC "The request sent by the client was syntactically incorrect ()"解决办法: 把spring日志级 ...

  3. The request sent by the client was syntactically incorrect问题解决

    The request sent by the client was syntactically incorrect意思嘛,google翻译一下 通过日志不难看出,是由参数不匹配造成的. 所以对于Da ...

  4. 错误:The request sent by the client was syntactically incorrect的解决

    问题: 错误400-The request sent by the client was syntactically incorrect. springMVC中,某个页面提交时报400错误,如下图. ...

  5. spring mvc 在上传图片时,浏览器报The request sent by the client was syntactically incorrect

    项目中,在一个jsp页面里其它图片上传是功能是可以使用的,当我自己新加了一个图片上传时,提交表单后,浏览器报The request sent by the client was syntactical ...

  6. SpringMVC---400错误The request sent by the client was syntactically incorrect ()

    在SpringMVC中使用@RequestBody和@ModelAttribute注解时遇到了很多问题,现记录下来. @ModelAttribute这个注解主要是将客户端请求的参数绑定参数到一个对象上 ...

  7. HTTP Status 400 - description The request sent by the client was syntactically incorrect.

    HTTP Status 400 - type Status report message description The request sent by the client was syntacti ...

  8. The request sent by the client was syntactically incorrect.

    HTTP Status 400 - type Status report message description The request sent by the client was syntacti ...

  9. 又见The request sent by the client was syntactically incorrect ()

    前几天遇到过这个问题(Ref:http://www.cnblogs.com/xiandedanteng/p/4168609.html),问题在页面的组件name和和注解的@param名匹配不对,这个好 ...

随机推荐

  1. jQuery——实现弹窗

    window.html <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http:/ ...

  2. linux使用ip能ping通,但使用域名却不能访问的解决方法

    使用命令:yum -y update进行更新测试,一般测试结果为couldn't resolve hostmirrors.aliyun.com 解决方式参考博客couldn't resolve hos ...

  3. 数据库 Navicat_Premium_11.0.10 破解版下载安装

    下载地址:http://www.liangchan.net/soft/download.asp?softid=4785&downid=8&id=4804 破解说明:安装之后不要立即启动 ...

  4. jquery mobile小经验

    现在网站上关于jquery mobile的demo和帖子可真少啊,我刚开始接触,遇到了一些问题,都找不到人请教. 这是我的个人经验总结,或多或少会对刚入门的童鞋有点帮助吧. 如果想一开始进入页面的时候 ...

  5. C语言 百炼成钢22

    /* 题目58: 编写一个业务函数,实现按行读取文件.把内容按照第三种内存模型打包数据传出,把行数通过函数参数传出. 函数原型有两个,任意选择其一 要求1:请自己任意选择一个接口(函数),并实现功能: ...

  6. socket udp广播和多播的简单实现

    UDP广播与多播 作者:legend QQ:1327706646 使用UDP协议进行信息的传输之前不需要建议连接.换句话说就是客户端向服务器发送信息,客户端只需要给出服务器的ip地址和端口号,然后将信 ...

  7. push an existing repository from the command line

    git remote add origin https://github.com/gaoconggit/LandMVC.git git push -u origin master

  8. 原生YII2 增删改查的一些操作(非ActiveRecord)

    1.添加数据 如下,使用insert方法:t_admin_user为数据表名..其他的是属性.. $num = Yii::$app->db->createCommand()->ins ...

  9. Html制作简单而漂亮的登录页面

    先来看看样子. html源码: <!DOCTYPE html> <html lang="en"> <head> <meta charset ...

  10. 怎么绘制旋转Chem3D模型

    化学领域的专业人士常常需要绘制各种化学图形,特别是3D的图形,这个就需要用到一些化学绘图软件.Chem3D是ChemOffice的核心组件之一,可以绘制化学三维模型,包括新建.删除.旋转.移动等基础编 ...