<transport> of <wsHttpBinding>

Defines authentication settings for the HTTP transport.

<configuration>
  <system.serviceModel>
    <bindings>
      <wsHttpBinding>
        <binding>
          <security>
            <transport>

Syntax

<wsHttpBinding>
  <binding>
    <security mode="None|Transport|TransportWithMessageCredential|TransportCredentialOnly">
      <transport clientCredentialType="Basic|Certificate|Digest|None|Ntlm|Windows"
                 proxyCredentialType="Basic|Digest|None|Ntlm|Windows"
                 realm="string">
        <extendedProtectionPolicy policyEnforcement="Never|WhenSupported|Always"
                                  protectionScenario="TransportSelected|TrustedProxy">
          <customServiceNames>
          </customServiceNames>
        </extendedProtectionPolicy>
      </transport>
    </security>
  </binding>
</wsHttpBinding>

Type

HttpTransportSecurity

Attributes and Elements

The following sections describe attributes, child elements, and parent elements.

Attributes

Attribute	Description
clientCredentialType	Specifies the credential used to authenticate the client to the service. This attribute is of type HttpClientCredentialType.
proxyCredentialType	Specifies the credential used to authenticate the client to a domain proxy. This attribute is of type HttpProxyCredentialType.
realm	A string that specifies the authentication realm for digest or basic authentication. The default is an empty string. An authentication realm specifies at least the name of the host that performs the authentication. It can also specify a collection of users that has access. A user can query the authentication realm to ascertain which one of the several possible usernames and passwords can be used.
policyEnforcement	This enumeration specifies when the ExtendedProtectionPolicy should be enforced. 1. Never – The policy is never enforced (Extended Protection is disabled). 2. WhenSupported – The policy is enforced only if the client supports Extended Protection. 3. Always – The policy is always enforced. Clients which don’t support Extended Protection will fail to authenticate.

clientCredentialType Attribute

Value	Description
None	Security is disabled.
Basic	Uses basic authentication.
Digest	Uses digest authentication.
Ntlm	Uses NTLM authentication as a fallback with a Windows domain.
Windows	Uses integrated Windows authentication.
Certificate	Uses X.509 certificates to authenticate the client.

proxyCredentialType Attribute

Value	Description
None	Security is disabled.
Basic	Uses basic authentication.
Digest	Uses digest authentication.
Ntlm	Uses NTLM as a fallback with a Windows domain.
Windows	Uses integrated Windows authentication.
Certificate	Uses X.509 certificates to authenticate the client.

Child Elements

None.

Parent Elements

Element	Description
<security>	Represents the security capabilities of the <wsHttpBinding>.

See also

• HttpTransportSecurity
• Transport
• Transport
• HttpTransportSecurityElement
• Securing Services and Clients
• Bindings
• Configuring System-Provided Bindings
• Using Bindings to Configure Services and Clients
• <binding>