How to Authenticate Users against Active Directory
- J.D. Meier, Carlos Farre, Jason Taylor,
Prashant Bansode, Steve Gregersen, Madhu Sundararajan, Rob Boucher
Use Windows authentication when both the client and service are in trusted domains or when users are stored in local machine accounts, such as in an Intranet scenario. By using Windows authentication with Active Directory, you benefit from a unified identity
store, centralized account administration, enforceable account and password policies, and strong authentication that avoid sending passwords over the network.
If Windows authentication is not possible because of infrastructure limitations like firewall between clients and AD, consider using username authentication instead. If you are using username authentication, the username/password for the user will be automatically
mapped to a Windows account.
Following example shows you how to configure the client credentials in WCF to use Windows authentication.
* <message clientCredentialType="Windows" />*