<transport> of <basicHttpBinding>

Defines properties that control authentication parameters for the HTTP transport.

<configuration>
  <system.serviceModel>
    <bindings>
      <basicHttpBinding>
        <binding>
          <security>
            <transport>

Syntax

<basicHttpBinding>
  <binding>
    <security mode="None|Transport|Message|TransportWithMessageCredential|TransportCredentialOnly">
      <transport clientCredentialType="None|Basic|Digest|Ntlm|Windows"
                 proxyCredentialType="None|Basic|Digest|Ntlm|Windows"
                 realm="String">
        <extendedProtectionPolicy policyEnforcement="Never|WhenSupported|Always"
                                  protectionScenario="TransportSelected|TrustedProxy">
          <customServiceNames>
          </customServiceNames>
        </extendedProtectionPolicy>
      </transport>
    </security>
  </binding>
</basicHttpBinding>

Attributes and Elements

The following sections describe attributes, child elements, and parent elements.

Attributes

Attribute	Description
clientCredentialType	- Specifies the type of credential to be used when performing client authentication using HTTP authentication. The default is None. This attribute is of type HttpClientCredentialType.
proxyCredentialType	- Specifies the type of credential to be used when performing client authentication from within a domain using a proxy over HTTP. This attribute is applicable only when the mode attribute of the parent security element is Transport or TransportCredentialsOnly. This attribute is of type HttpProxyCredentialType.
realm	A string that specifies the realm that is used by the HTTP authentication scheme for digest or basic authentication. The default is an empty string.
policyEnforcement	This enumeration specifies when the ExtendedProtectionPolicy should be enforced. 1. Never – The policy is never enforced (Extended Protection is disabled). 2. WhenSupported – The policy is enforced only if the client supports Extended Protection. 3. Always – The policy is always enforced. Clients which don’t support Extended Protection will fail to authenticate.
protectionScenario	This enumeration specifies the protection scenario enforced by the policy.

clientCredentialType Attribute

Value	Description
None	Messages are not secured during transfer.
Basic	Specifies basic authentication.
Digest	Specifies digest authentication.
Ntlm	Specifies NTLM authentication when possible, and if Windows authentication fails.
Windows	Specifies Windows integrated authentication.

proxyCredentialType Attribute

Value	Description
None	- Messages are not secured during transfer.
Basic	Specifies basic authentication as defined by RFC 2617 – HTTP Authentication: Basic and Digest Authentication.
Digest	Specifies digest authentication as defined by RFC 2617 – HTTP Authentication: Basic and Digest Authentication.
Ntlm	Specifies NTLM authentication when possible, and if Windows authentication fails.
Windows	Specifies Windows integrated authentication.
Certificate	Performs client authentication using a certificate. This option works only if the Mode attribute of the parent security element is set to Transport, and will not work if it is set to TransportCredentialOnly.

Child Elements

None

Parent Elements

Element	Description
<security>	Defines the security capabilities for the <basicHttpBinding>.

Example

The following example demonstrates the use of SSL transport security with the basic binding. By default, the basic binding supports HTTP communication.

<system.serviceModel>
  <services>
    <service type="Microsoft.ServiceModel.Samples.CalculatorService"
             behaviorConfiguration="CalculatorServiceBehavior">
      <endpoint address=""
                binding="basicHttpBinding"
                bindingConfiguration="Binding1"
                contract="Microsoft.ServiceModel.Samples.ICalculator" />
    </service>
  </services>
  <bindings>
    <basicHttpBinding>
      <!-- Configure basicHttpBinding with Transport security -->
      <!-- mode and clientCredentialType set to None. -->
      <binding name="Binding1">
        <security mode="Transport">
          <transport clientCredentialType="None"
                     proxyCredentialType="None">
            <extendedProtectionPolicy policyEnforcement="WhenSupported"
                                      protectionScenario="TransportSelected">
              <customServiceNames>
              </customServiceNames>
            </extendedProtectionPolicy>
          </transport>
        </security>
      </binding>
    </basicHttpBinding>
  </bindings>
</system.serviceModel>

See also

• Transport
• Transport
• HttpTransportSecurityElement
• HttpTransportSecurity
• Securing Services and Clients
• Bindings
• Configuring System-Provided Bindings
• Using Bindings to Configure Services and Clients
• <binding>