Error 401: unauthorised on ASP.NET core web API

Question

0.00/5 (No votes)

See more:

Hi All

I have a web api and a web site developed on ASP.NET Core (VS 2017). The website works well on localhost and is able to call the web api and get returns.

Both of the sites were then deployed to Windows Server 2012 R2, running on IIS 8.5. I have followed numerous articles on how to configure IIS for ASP.NET Core and I am satisfied that the configuration is right.

I can browse to both URLs and nothing is failing. However, when the website tries to call the web api I get Error 401: UnAuthorised

Has anyone experienced this and can some recommend a solution.

What I have tried:

I tried using Postman to see if I can reach the API and return some values, the calls were successful and returned the requested data.

I looked at the permissions on the folder and on the site of the web api site. Everything looks normal (as it should be)

Posted 18-Jul-17 0:19am

kulile

Updated 11-Aug-18 2:26am

Add a Solution

Comments

Saineshwar Bageri 18-Jul-17 13:46pm

Have you tried to browse application locally on webserver

[no name] 19-Jul-17 7:56am

Have you got an [Authorize] attribute in your web API classes anywhere? Locally you'd be authorised just by being logged into your machine but that doesn't count when it's deployed to a server.

Tomz_KV 27-Apr-18 15:25pm

My issue was similar to yours. Everything worked fine in dev environment. It was also fine when the web api was hosted in production and called from a dev asp.net app. 401 unauthorized error only occurred when the web api and the app were both run on production server. Windows authentication was used for both. The fix (or workaround) was to call the web api using its IP address instead of a friendly url. This might not be a favorable way to do it since the IP address did not have a SSL certificate.

Can you share how you resolved your issue?

KathiravanK 11-Aug-18 7:54am

I am also facing same issue can anyone help me out how to resolve solution

2 solutions

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Mr Bhanu Prasad · Answer 1 · 2017-10-03T23:43:00

Helo Kulile,

it would be better if you've mentioned subcode of the error(given below).
This will helps in resolving the issue.

401.1: Access is denied due to invalid credentials.
401.2: Access is denied due to server configuration favoring an alternate authentication method.
401.3: Access is denied due to an ACL set on the requested resource.
401.4: Authorization failed by a filter installed on the Web server.
401.5: Authorization failed by an ISAPI/CGI application.
401.7: Access denied by URL authorization policy on the Web server.

KathiravanK · Answer 2 · 2018-08-11T02:27:00

Solution 2

Api project App Startup

app.UseMvc();
app.UseAuthentication();
To this...

app.UseAuthentication();
app.UseMvc();

if change this issue fixed

Posted 11-Aug-18 2:27am

KathiravanK