Removing anonymous access to web service
-
HI, we have a web service and our application(.net 1.1, C#, oracle) consumes this web service. By default the security(authentication) is given anonymous, now as for security reasons we want to remove this option. So lets say we use Integrated Windows Authentication. Doing so we would get Access Denied 401 error. On searching though it is found that we could pass few credentials and access the web service (this works fine) What are the cons in providing user credentials in the code? What are the steps to be followed to make a web service secure and accessible? Is there a way that a web service can be accessed after removing anonymous access and not providing any credentials in the code?
gauthee
-
HI, we have a web service and our application(.net 1.1, C#, oracle) consumes this web service. By default the security(authentication) is given anonymous, now as for security reasons we want to remove this option. So lets say we use Integrated Windows Authentication. Doing so we would get Access Denied 401 error. On searching though it is found that we could pass few credentials and access the web service (this works fine) What are the cons in providing user credentials in the code? What are the steps to be followed to make a web service secure and accessible? Is there a way that a web service can be accessed after removing anonymous access and not providing any credentials in the code?
gauthee
Hi, This link would be of great use: http://articles.techrepublic.com.com/5100-22-5034851.html[^] let me know whether this is the topic you were looking in for!:cool:
Balaji
-
Hi, This link would be of great use: http://articles.techrepublic.com.com/5100-22-5034851.html[^] let me know whether this is the topic you were looking in for!:cool:
Balaji