Message Level Security with Windows Authentication

Message level security can be enabled for scenarios where Global daemons need to make sure each message exchanged is protected. Windows authentication can only be used where the Global daemons are deployed in same domain or in two trusted domains.

Note: The following setting must be consistent within the GlobalWCFClient.config and AdmindWCF.exe.config files.

<security mode="Message">

<transport clientCredentialType="Windows" proxyCredentialType="None" realm="" />

<message clientCredentialType="Windows" negotiateServiceCredential="true" algorithmSuite="Basic128Sha256Rsa15" establishSecurityContext="true" />

</security>

To view an example of configuration files with Message Level Security using Windows authentication:

1. Extract the contents of the GlobalWCF_SampleConfigFiles folder file.

2. Navigate to the sub folder MessageSecurityWindowsAuthentication.