Is there a way to setup authentication (ala "Basic Authentication") without actually setting up an SSL Certificate? I'd also like to do this in REST or regular SOAP WCF Services, preferably in REST, but would like to be able to mix the services. In other words, "I want to be able to send a regular old username and password just like in Basic Authentication but without the SSL." Is there a way to do this?
+4
A:
Use TransportCredentialOnly security mode. This post explains how to do it:
http://developers.de/blogs/damir_dobric/archive/2006/07/31/890.aspx.
Don't forget that you also have to enable basic authentication in IIS.
erikkallen
2008-12-26 12:49:07
I guess this is only possible in WCF4, not WCF3-3.5?
John Leidegren
2010-06-23 12:58:59
I used it with WCF3.5. Took some luck to get it working, though, if I remember correctly.
erikkallen
2010-06-24 15:49:43