I am trying to secure a WS using WSE 3.0 and kerberos.
I used the "WSE 3.0 settings" from VS2005 with my own WS.

I have a console application which try to access a WS.
With the following configuration it works:
- WS/IIS and AD on the Windows 2003 server
- console application on a Windows XP workstation

With the following configuration it fails:
- AD on a Windows 2003 server
- console application and WS/IIS on a Windows XP workstation

With this one it fails to:
- AD and the console application on the Windows 2003 server
- IIS on a Windows XP workstation

Here is the error messages when it fails:
" Server unavailable, please try later"
"An error
occured processing an outgoing fault response. --->
System.Web.Services.Protocols.SoapHeaderException:
Microsoft.Web.Services3.Security.SecurityFault: SecurityContextToken is

expected but not present in the security header of the incoming
message. "
"An invalid security token was provided"
"AcceptSecurityContext call failed with the following
error message: Logon failure: unknown user name or bad password."

I have done a lot of search with google, so here is what I did:
- I have set ASPNET (when I use IIS on the XP workstation) to act as the operating system => problem not
solved
- I have updated web.config to use another user (instead of ASPNET)
from the domain (mydomain\myuser) => problem not solved

What could be the problem
Do I need to set some specific configuration on AD

Thanks for your help

Rod