System.ServiceModel 4.0.0.0 System.Object The enables the setting of Windows client properties used when communicating with a service. The sets the level of impersonation the service can assume when impersonating the client. The enables a client to authenticate with username and password to the service. The determines whether NTLM can be used to authenticate the client if Kerberos is not used.

Allows you to specify properties related to Windows credentials to be used to represent the client.

Property 4.0.0.0 System.Security.Principal.TokenImpersonationLevel To be added. This property specifies the impersonation level granted by the client to the server when using Windows SSPI Negotiate authentication. Note that the impersonation level obtained by the server when it impersonates the client token is not solely a function of this setting. It is also a function of the associated privileges and domain settings for the account in which the service is running. The client must explicitly set the allowed impersonation level using this property. When the client specifies anonymous impersonation the client always authenticates to the service as anonymous even when no impersonation is performed on the service. This is due to underlying Windows operating system behavior. crabout Windows impersonation, go to Impersonating and Reverting. crabout impersonation using indigo1, see Delegation and Impersonation with WCF.

Gets or sets the allowed impersonation level.

Property 4.0.0.0 System.Boolean To be added. Setting this property to true allows authentication to downgrade to NTLM if Kerberos is not available. Setting this property to false causes indigo1 to make a best-effort to throw an exception if NTLM is used. Note that setting this property to false may not prevent NTLM credentials from being sent over the wire. Certain deployments such as workgroups and local accounts require NTLM authentication. Setting this flag to false in such deployments result in authentication failures when using indigo2. In a deployment that requires mutual authentication (only supported by Kerberos), set this flag to false. NTLM (Windows NT LAN Manager) is the authentication protocol used on networks that include systems running the Windows NT operating system, and on stand-alone systems. The Microsoft Kerberos security package adds greater security than NTLM to systems on a network. Although Microsoft Kerberos is the protocol of choice, NTLM is still supported and must be used for network authentication if the network includes systems running versions of Windows NT 4.0 and earlier, and on stand-alone systems.

Gets or sets a value that indicates whether NTLM authentication should be allowed as Windows SSPI Negotiate authentication.

Property 4.0.0.0 System.Net.NetworkCredential To be added. By default, the current thread's credentials are used by indigo2 for doing Windows SSPI Negotiate authentication. To authenticate the client as another principal, change the properties of the instance of the class that is returned by this property. Alternatively, create a new instance of the class and assign it to this property.

Gets or sets the Windows client credential.