What is protocol transition and when do I care?

From Guidance Share

Jump to: navigation, search

J.D. Meier, Prashant Bansode, Alex Mackman


Protocol transition is a new feature introduced in Windows Server 2003, which enables applications to use non-Windows authentication mechanism to authenticate users with windows accounts at front tier and transition to Kerberos authentication in middle tier. You can use protocol transition in scenarios where it’s not possible for your web application to authenticate your users using Kerberos authentication, although your users have windows accounts. For example, firewalls prevent direct communication with the domain controller. In such scenarios Forms authentication or client certificate authentication are used instead. In these scenarios protocol transition is used for changing to Kerberos authentication at the backend for accessing network resources using delegation.

More Information

For more information on using protocol transition, see “How To: Use Protocol Transition and Constrained Delegation in ASP.NET 2.0” at http://msdn.microsoft.com/library/en-us/dnpag2/html/PAGHT000024.asp

Personal tools