WCFTestClient The HTTP request is unauthorized with client authentication scheme Anonymous

Question

I ve created one WCF service and deployed it on Server  When I browse this service it gives me positive response with  wsdl URL  Now I m trying to test the service through WCF Test client  It shows proper metadata  But when I try to invoke any of the method from the service it shows me an exception    here are the erro details with stack trace       The HTTP request is unauthorized with   client authentication scheme    Anonymous   The authentication header   received from the server was    Negotiate NTLM     Server stack trace       at   System ServiceModel Channels HttpChannelUtilities ValidateAuthentication HttpWebRequest   request  HttpWebResponse response    WebException responseException    HttpChannelFactory factory    The HTTP request is unauthorized with client   authentication scheme  Anonymous   The   authentication header received from   the server was  Negotiate NTLM     Server stack trace       at   System ServiceModel Channels HttpChannelUtilities ValidateAuthentication HttpWebRequest   request  HttpWebResponse response    WebException responseException    HttpChannelFactory factory    Client Bindings    lt bindings gt       lt wsHttpBinding gt           lt binding name  WSHttpBinding IServiceMagicService  closeTimeout  00 01 00              openTimeout  00 01 00  receiveTimeout  00 10 00  sendTimeout  00 01 00              bypassProxyOnLocal  false  transactionFlow  false  hostNameComparisonMode  StrongWildcard              maxBufferPoolSize  524288  maxReceivedMessageSize  65536              messageEncoding  Text  textEncoding  utf-8  useDefaultWebProxy  true              allowCookies  false  gt               lt readerQuotas maxDepth  32  maxStringContentLength  8192  maxArrayLength  16384                  maxBytesPerRead  4096  maxNameTableCharCount  16384    gt               lt reliableSession ordered  true  inactivityTimeout  00 10 00                  enabled  false    gt               lt security mode  None  gt                   lt transport clientCredentialType  Windows  proxyCredentialType  None                      realm      gt                   lt message clientCredentialType  Windows  negotiateServiceCredential  true                      establishSecurityContext  true    gt               lt  security gt           lt  binding gt       lt  wsHttpBinding gt   lt  bindings gt    Server Bindings    lt bindings gt     lt wsHttpBinding gt       lt binding name  WSHttpBinding SEOService  closeTimeout  00 10 00  openTimeout  00 01 00  receiveTimeout  00 10 00  sendTimeout  00 10 00  bypassProxyOnLocal  true  transactionFlow  false  hostNameComparisonMode  StrongWildcard  maxBufferPoolSize  999524288  maxReceivedMessageSize  655360000  messageEncoding  Text  textEncoding  utf-8  useDefaultWebProxy  true  allowCookies  false  gt         lt readerQuotas maxDepth  32  maxStringContentLength  900000  maxArrayLength  900000  maxBytesPerRead  900000  maxNameTableCharCount  900000    gt         lt reliableSession ordered  true  inactivityTimeout  00 10 00  enabled  false    gt         lt security mode  None  gt           lt transport clientCredentialType  Windows  proxyCredentialType  None  realm      gt           lt message clientCredentialType  Windows  negotiateServiceCredential  true  establishSecurityContext  true    gt         lt  security gt       lt  binding gt       lt binding name  WSHttpServiceMagicBinding  closeTimeout  00 10 00  openTimeout  00 01 00  receiveTimeout  00 10 00  sendTimeout  00 10 00  bypassProxyOnLocal  true  transactionFlow  false  hostNameComparisonMode  StrongWildcard  maxBufferPoolSize  999524288  maxReceivedMessageSize  655360000  messageEncoding  Text  textEncoding  utf-8  useDefaultWebProxy  true  allowCookies  false  gt         lt readerQuotas maxDepth  32  maxStringContentLength  900000  maxArrayLength  900000  maxBytesPerRead  900000  maxNameTableCharCount  900000   gt         lt reliableSession ordered  true  inactivityTimeout  00 10 00  enabled  false   gt         lt security mode  None  gt           lt transport clientCredentialType  Windows  proxyCredentialType  None  realm     gt           lt message clientCredentialType  Windows  negotiateServiceCredential  true  establishSecurityContext  true   gt         lt  security gt       lt  binding gt     lt  wsHttpBinding gt   lt  bindings gt    Client s Client Section    lt client gt       lt endpoint address  http   hydwebd02 solutions com GeoService Saveology com ServiceMagicService svc          binding  wsHttpBinding  bindingConfiguration  WSHttpBinding IServiceMagicService          contract  IServiceMagicService  name  WSHttpBinding IServiceMagicService    gt   lt  client gt    Server s Services Section    lt services gt       lt service behaviorConfiguration  GeoService Saveology com CityStateServiceProviderBehavior      name  GeoService Saveology com CityStateServiceProvider  gt       lt endpoint binding  wsHttpBinding  bindingConfiguration  WSHttpBinding SEOService          contract  SEO Common ServiceContract ICityStateService    gt       lt endpoint address  mex  binding  mexHttpBinding  bindingConfiguration            contract  IMetadataExchange    gt       lt  service gt       lt service behaviorConfiguration  GeoService Saveology com ServiceMagicServiceProviderBehavior      name  GeoService Saveology com ServiceMagicServiceProvider  gt       lt endpoint binding  wsHttpBinding  bindingConfiguration  WSHttpServiceMagicBinding           contract  SEO Common ServiceContract IServiceMagicService  gt       lt  endpoint gt       lt endpoint address  mex  binding  mexHttpBinding  bindingConfiguration    contract  IMetadataExchange    gt       lt  service gt   lt  services gt

User · Answer

I had this error too   and finally this codes worked for me in dot net core 3 1 first install svcutil in command prompt   dotnet tool install --global dotnet-svcutil Then close command prompt and open it again  Then create the Reference cs in command prompt   dotnet-svcutil http   YourService com SayHello svc  It needs an enter key and UserName and Password  Add a folder named Connected Services to project root  Copy Reference cs file to Connected Services folder  Add these 4 lines to Reference cs after lines where creating BasicHttpBinding and setting MaxBufferSize   result Security Mode   BasicHttpSecurityMode TransportCredentialOnly  result Security Transport ClientCredentialType   HttpClientCredentialType Basic  result Security Transport ProxyCredentialType   HttpProxyCredentialType None  result Security Message ClientCredentialType   BasicHttpMessageCredentialType UserName   Use this service in your Controller   public async Task lt string gt  Get                 try                       var client   new EstelamClient                client ClientCredentials UserName UserName    quot YourUserName quot               client ClientCredentials UserName Password    quot YourPassword quot               var res   await client EmployeeCheckAsync  quot service parameters quot                return res ToString                      catch  Exception ex                        return ex Message    quot               stack    quot    ex StackTrace                    Do not forget install these packages in  cshtml    lt PackageReference Include  quot System ServiceModel Duplex quot  Version  quot 4 6   quot    gt   lt PackageReference Include  quot System ServiceModel Http quot  Version  quot 4 6   quot    gt   lt PackageReference Include  quot System ServiceModel NetTcp quot  Version  quot 4 6   quot    gt   lt PackageReference Include  quot System ServiceModel Security quot  Version  quot 4 6   quot    gt

User · Answer

I have a similar issue  have you tried   proxy ClientCredentials Windows AllowedImpersonationLevel                System Security Principal TokenImpersonationLevel Impersonation

User · Answer

Just got this problem on a development machine  production works just fine   I modify my config in IIS to allow anonymous access and put my name and password as credential    Not the best way I am sure but it works for testing purposes

User · Answer

Here s what I had to do to get this working  This means    Custom UserNamePasswordValidator  no need for a Windows account  SQLServer or ActiveDirectory -- your UserNamePasswordValidator could have username  amp  password hardcoded  or read it from a text file  MySQL or whatever   https IIS7  net 4 0   My site is managed through DotNetPanel  It has 3 security options for virtual directories     Allow Anonymous Access  Enable Basic Authentication  Enable Integrated Windows Authentication   Only  Allow Anonymous Access  is needed  although  that  by itself wasn t enough    Setting  proxy ClientCredentials Windows AllowedImpersonationLevel    System Security Principal TokenImpersonationLevel Impersonation    Didn t make a difference in my case   However  using this binding worked          lt security mode  TransportWithMessageCredential  gt           lt transport clientCredentialType  Windows    gt           lt message clientCredentialType  UserName    gt         lt  security gt

User · Answer

I see this isn t answered yet  this is an exact quote from here      WSHttpBinding will try and perform an internal negotiate at the SSP layer   In order for this to be successful  you will need to allow anonymous in IIS for the VDir   WCF will then by default perfrom an SPNEGO for window credentials   Allowing anonymous at IIS layer is not allowing anyone in  it is deferring to the WCF stack    I found this via  http   fczaja blogspot com 2009 10 http-request-is-unauthorized-with html  After googling  http   www google tt  hl en amp source hp amp q  The HTTP request is unauthorized with client authentication scheme  27Anonymous

User · Answer

I didn t have control over the security configuration for the service I was calling into  but got the same error  I was able to fix my client as follows    In the config  set up the security mode    lt security mode  TransportCredentialOnly  gt     lt transport clientCredentialType  Windows  proxyCredentialType  None  realm      gt     lt message clientCredentialType  UserName  algorithmSuite  Default    gt   lt  security gt   In the code  set the proxy class to allow impersonation  I added a reference to a service called customer    Customer PortClient proxy   new Customer PortClient    proxy ClientCredentials Windows AllowedImpersonationLevel                System Security Principal TokenImpersonationLevel Impersonation

User · Answer

I had a similar problem and tried everything suggested above  Then I tried changing the clientCreditialType to Basic and everything worked fine    lt basicHttpBinding gt       lt binding name  BINDINGNAMEGOESHERE   gt         lt security mode  TransportCredentialOnly  gt           lt transport clientCredentialType  Basic  gt  lt  transport gt         lt  security gt       lt  binding gt     lt  basicHttpBinding gt

User · Answer

I had the same error today  after deploying our service calling an external service to the staging environment in azure  Local the service called the external service without errors  but after deployment it didn t   In the end it turned out to be that the external service has a IP validation  The new environment in Azure has another IP and it was rejected   So if you ever get this error calling external services  It might be an IP restriction

User · Answer

Try providing username and password in your client like below  client ClientCredentials UserName UserName     Domain username    client ClientCredentials UserName Password    password

User · Answer

Another possible solution to this error that I found  Might not have answered OP s exact question but may help others who stumble across this error message   I was creating my Client in code using WebHttpBinding  in order to replicate the following line    lt security mode  TransportCredentialOnly  gt     lt transport clientCredentialType  Windows  proxyCredentialType  Windows    gt   lt  security gt    I had to do   var binding   new WebHttpBinding WebHttpSecurityMode TransportCredentialOnly                   binding Security Transport ClientCredentialType   HttpClientCredentialType Windows                  binding Security Transport ProxyCredentialType   HttpProxyCredentialType Windows    as well as setting proxy ClientCredentials Windows AllowedImpersonationLevel    System Security Principal TokenImpersonationLevel Impersonation

[wcf] WCFTestClient The HTTP request is unauthorized with client authentication scheme 'Anonymous'

Examples related to wcf

Examples related to ntlm

Examples related to anonymous

Examples related to wcftestclient

Examples related to negotiate