Error: The extended protection settings configured. . .

Owned by Max Pinion (Deactivated)
Last updated: Jan 14, 2016
1 min read

Issue

When you try to access http://localhost/Ams/ you receive the following error message:

“The extended protection settings configured on IIS do not match the settings configured on the transport. The ExtendedProtectionPolicy.PolicyEnforcement values do not match. IIS has a value of WhenSupported while the WCF Transport has a value of Never.”

Additional information

This error occurs when someone or something has changed the Windows Authentication for the AMS Website.

Solution

To resolve this issue, do the following steps:

  1. For detailed instructions, go to https://www.iis.net/configreference/system.webserver/security/authentication/windowsauthentication/extendedprotection#003.
  2. When you get to the menu that shows Windows Authentication, select the Windows Authentication check box.
  3. In the Advanced Settings dialog box on the right, set Extended Protection to Off(as shown in the following screenshot). 

http://blogs.technet.com/b/srd/archive/2009/12/08/extended-protection-for-authentication.aspx

https://www.iis.net/configreference/system.webserver/security/authentication/windowsauthentication/extendedprotection