Hi, I am working on security implementation for WCF Services. I am trying to accomplish constrained delegation using SPNs.
*What I have done so far:* 1. Created a Domain controller and one server system (linked to this domain controller) using 2 virtual machines. 2. Registered SPN on the domain controller. 3. Hosted WCF service on server machine and identified the SPN in config file. 4. Created a web application as client for this service and configured it to seek SPN token from Domain controller (based on webservice target name). *Problem:* Client is not able to retrieve the token from Domain controller. Below mentioned error is shown - "The token provider cannot get tokens for target <ServiceAddress>." Am I missing on some step(s) required for this setup, or doing something wrong here ? Any pointers on this will be helpful. Thanks. Saurabh Sharma
