Basic auth and HTTPS
See original GitHub issueUsing basic auth with an HTTPS endpoint cause the following error :
tfx login --auth-type basic --service-url https://server/tfs --username user --password pwd
Connection failed. Check your internet connection & collection URL.
Message: unable to get local issuer certificate
It seems to be the same problem I had with Git : http://blogs.msdn.com/b/phkelley/archive/2014/01/20/adding-a-corporate-or-self-signed-certificate-authority-to-git-exe-s-store.aspx So how I can specify my certificate file ?
(Trace doesn’t help, CLI version is 0.3.3)
Issue Analytics
- State:
- Created 8 years ago
- Comments:5 (3 by maintainers)
Top Results From Across the Web
HTTP authentication - MDN Web Docs - Mozilla
The "Basic" HTTP authentication scheme is defined in RFC 7617, which transmits credentials as user ID/password pairs, encoded using base64.
Read more >Is BASIC-Auth secure if done over HTTPS?
Basic Auth over HTTPS is good, but it's not completely safe. Similar to how Fiddler works for SSL debugging, ...
Read more >HTTP basic authentication - IBM
HTTP basic authentication is a simple challenge and response mechanism with which a server can request authentication information (a user ID ...
Read more >Basic access authentication - Wikipedia
In the context of an HTTP transaction, basic access authentication is a method for an HTTP user agent (e.g. a web browser) to...
Read more >HTTPS and BASIC authentication - ssl - Stack Overflow
In HTTP Basic Authentication username and password are sent in clear text (In HTTP Digest Authorization password is sent in base64 encoded using...
Read more >Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start FreeTop Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Top GitHub Comments
@grawcho - note that this tfs-cli issue and “cross platform automation system” are a bit orthogonal. The new vsts-agent supports ntlm across platforms so you should be unblocked on the automation system side: https://github.com/Microsoft/vsts-agent
Any update? This still appears to be a problem. And asking users to send their enterprise domain credentials across the network unencrypted when using on premises TFS seems like a rather large security hole that Microsoft has not addressed and the problem has been known for over 6 months.