Perimeter Service Router using username tokens and kerberos

Thread view:

Enable EMail Alerts

Start New Thread

Thread rating:

Brannon_K - 29 Mar 2006 00:12 GMT

I'm attempting to implement a perimeter service router to route external
requests to an internal web service. My internal web services are secured
using Kerberos, but I'd like to pass a username token through the router to
the internal service for authentication (against a database). Is there a way
to create a policy for my internal services that allows both Kerberos and
usernameforcertificate authentication?

Reply to this Message

Luke Zhang [MSFT] - 29 Mar 2006 04:03 GMT

It sounds like you are working with a WSE project. In WSE 3.0, you can
secured a web service with Kerberos, but authticate with usernametoken, is
this you want? Below are some useful article on this:

How to: Encrypt a SOAP Message By Using a Kerberos Ticket
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/wse/html/7e
28fea8-fe55-461c-875f-f014eccaebd6.asp

Protect Your Web Services Through The Extensible Policy Framework In WSE 3.0
http://msdn.microsoft.com/msdnmag/issues/06/02/WSE30/

Hope this help,

Luke Zhang
Microsoft Online Community Support

==================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
==================================================

(This posting is provided "AS IS", with no warranties, and confers no
rights.)

Reply to this Message

Perimeter Service Router using username tokens and kerberos

Free Magazines