How to audit authentication events

J.D. Meier, Jason Taylor, Prashant Bansode, Carlos Farre, Madhu Sundararajan, Steve Gregersen.

Use the following steps to enable authentication auditing for your WCF service:
  1. Open the web.config file of the WCF service using the Configuration editor tool (SvcConfigEditor.exe).
  2. In the Configuration editor, navigate to the Advanced node.
  3. Select the Behavior: ServiceBehavior section and add a new service behaviour extension element.
  4. In the Adding Behavior Element Extension Sections dialog box select serviceSecurityAudit and click Add button.
  5. In the Configuration section, select serviceSecurityAudit option, under Service Behaviors.
  6. Set the MessageAuthenticationAuditLevel attribute to SuccessOrFailure choosing from the drop down.
  7. On the configuration editor dialog, go to the File menu and select Save.
  8. In Visual Studio, verify your configuration. The configuration should look as follows.
…
<behaviors>
  <serviceBehaviors>
    <behavior name="ServiceBehavior">
      <serviceMetadata httpGetEnabled="true" />
      <serviceDebug includeExceptionDetailInFaults="false" />
        <serviceSecurityAudit *messageAuthenticationAuditLevel*="*SuccessOrFailure*" />
    </behavior>
  </serviceBehaviors>
</behaviors>
…

Last edited May 8, 2008 at 12:30 AM by prashantbansode, version 1

Comments

No comments yet.