WWW-Authenticate身份验证问题:协商 [英] Authentication issues with WWW-Authenticate: Negotiate
问题描述
我试图访问受密码保护的网站。它不使用基本身份验证(即使在firefox中弹出相同的用户/传递框),因为响应标头是 WWW-Authenticate:Negotiate
。
我想通过发送正确的头来自动执行登录过程。
基本上你会使用类似于:
授权:基本QWxhZGRpbjpvcGVuIHNlc2FtZQ ==
我会用什么协商?
Web服务器提示您输入SPNEGO( Simple和受保护的GSSAPI协商机制)令牌。
这是Microsoft发明的一种用于协商Web SSO(单点登录) :
- NTLM
- 或Kerberos。
请参阅:
I am trying to access a site that is password protected. It is not using basic authentication (even though the same user/pass box pops up in firefox) as the response header is WWW-Authenticate: Negotiate
.
I want to automate the login process by sending the correct header.
In basic you would use something like:
Authorization: Basic QWxhZGRpbjpvcGVuIHNlc2FtZQ==
What would I use for negotiate?
The web server is prompting you for a SPNEGO (Simple and Protected GSSAPI Negotiation Mechanism) token.
This is a Microsoft invention for negotiating a type of authentication to use for Web SSO (single-sign-on):
- either NTLM
- or Kerberos.
See:
- Microsoft MSDN Library: HTTP-Based Cross-Platform Authentication by Using the Negotiate Protocol
- RFC 4178: The Simple and Protected Generic Security Service Application Program Interface (GSS-API) Negotiation Mechanism
这篇关于WWW-Authenticate身份验证问题:协商的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!