Hi Colm, Thank you for your reply. This means that the service owner must enable the Port/Binding related to the DoubleItDigestPort/DoubleItDigestBinding?
Can you also elaborate more about Colm O hEigeartaigh-3 wrote > > Of course, in practise one would combine a UsernameToken with the > Transport > binding to secure the message exchange... > The reason I'm asking is that coming from the .NET world and having an application that connects to ADFS and another STS (identityserver.codeplex.com) we are using the WindowsMixed and UsernameMixed endpoints in conjunction with TransportWithMessageCredential for the SecurityMode setting. -- View this message in context: http://cxf.547215.n5.nabble.com/RequestSecurityToken-without-Encrypting-and-Signing-tp5711426p5711486.html Sent from the cxf-user mailing list archive at Nabble.com.
