Support us .Net Basics C# SQL ASP.NET ADO.NET MVC Slides C# Programs Subscribe Buy DVD

Part 53 - Configure netTcpBinding to use message security

Suggested Videos
Part 50 - Authentication in WCF
Part 51 - Message confidentiality and integrity with transport security
Part 52 - Configure wsHttpBinding to use transport security

In this video, we will discuss configuring netTcpBinding to use message security mode instead of transport security which is the default.

The following MSDN article contains all the system provided bindings and their security defaults. Notice that the default for netTcpBinding is Transport security.

Here are the steps to configure netTcpBinding to use message security instead of  transport security.
Step 1: Create a class library project with name = SimpleService. Delete the auto-generated class1.cs file.

Step 2: Right click on SimpleService project in solution explorer and add a WCF service with name = SimpleService

Step 3: Copy and paste the following code in ISimpleService.cs file
using System.ServiceModel;
namespace SimpleService
    public interface ISimpleService
        string GetMessage(string name);

Step 4: Copy and paste the following code in SimpleService.cs file
namespace SimpleService
    public class SimpleService : ISimpleService
        public string GetMessage(string name)
            return "Hello " + name;

Step 5: Now, let's host the WCF service using a Console application. Right click on SimpleService solution in solution explorer and add a console project with name = Host. We will use this project to host the WCF service.

Step 6: Right click on References folder under Host project and add a reference to SimpleService project and System.ServiceModel assembly.

Step 7:  Right click on Host project and add Application Configuration file. This should add App.config file.

Step 8: Copy and paste the following configuration in App.config file
<?xml version="1.0" encoding="utf-8" ?>
        <behavior name="mexBehavior">
          <serviceMetadata httpGetEnabled="true" />
      <service behaviorConfiguration="mexBehavior" name="SimpleService.SimpleService">
        <endpoint address="SimpleService" binding="netTcpBinding"
            <add baseAddress="http://localhost:8080" />
            <add baseAddress="net.tcp://localhost:8090" />

Step 9: Enable message logging for the WCF Service. We discussed this in detail in Part 9 of WCF tutorial.

Step 10: Copy and paste the following code in Program.cs file in the Host project.
using System;
using System.ServiceModel;
namespace Host
    class Program
        public static void Main()
            using (ServiceHost host = new ServiceHost(typeof(SimpleService.SimpleService)))
                Console.WriteLine("Host started @ " + DateTime.Now.ToString());

Step 11: Set Host project as the startup project and run the application by pressing CTRL + F5 key. At this point we have the WCF service up and running.

Step 12: Now let's create a client for the WCF service. Create a new windows forms application with name = Client

Step 13: Add a service reference to SimpleService. Right click on References folder and select Add Service Reference. In the Add Service Reference window type Address = http://localhost:8080/ and click GO button. This should bring up the SimpleService. In the Namespace textbox type SimpleService and click OK. 

Step 14: Drag and drop a button and a textbox control on Form1. Set the following properties on button1
Name = btnCallService
Text  = Call Service

Step 15: Double click on the button to generate the "click event handler" method. Copy and paste the following code in Form1.cs file.
using System;
using System.Windows.Forms;

namespace Client
    public partial class Form1 : Form
        public Form1()

        private void btnCallService_Click(object sender, EventArgs e)
            SimpleService.SimpleServiceClient client = new SimpleService.SimpleServiceClient();

Step 16: Run the client application. Click the button to invoke the service. Inspect the logged messages and notice that the body of the SOAP message is not encrypted, which implies that the default security mode (transport security) of netTcpBinding is being used. Transport security provides message protection(Encryption and Digital signatures) at the transport layer. By the time the message is arrived at the message log it is already decrypted. That is the reason why we see messages in plain text in the log.

Step 17: In app.config file of the Host project, include the following bindings section, to customize the netTcpBinding to use Message security instead of the default transport security.
    <binding name="netTcp">
      <security mode="Message"></security>

Step 18: Associate the above customization with the service endpoint using bindingConfiguration attribute as shown below.
<endpoint address="SimpleService"

Step 19: Run the WCF service. In the client application, delete the SimpleService service reference, and then add the service reference again to SimpleService. At this point, notice the configuration in the app.config file of the client application. Notice that instead of the defaults of netTcpBinding, we are now using "Message" security mode.

Step 20: Run the client application, and then click "Call Service" button. We now get the out put as expected.  Inspect the logged messages and notice that the body of the SOAP message is encrypted, which implies that the netTcpBinding is now using Message security.

wcf tutorial


  1. Hi Venkat,

    I am Aleem please you could upload Rest with WCF service.


  2. Really i Worship u . i learn lot of things from here.. you are god of me

  3. Hi Vekant,

    Please, if it is possible for you, i'm looking forward to see you doing videos to consume WCF in Silverlight with different domain.



If you like this website, please share with your friends on facebook and Google+ and recommend us on google using the g+1 button on the top right hand corner.