Does WCF require configuration to handle different methods of authentication?

Question

A WCF service has been written and can be hosted in any web site. These web sites could use Windows, Kerberos, or Forms authentication.

Is any particular configuration or development required within the service to handle these different authentication types? Or is authentication independent and the service doesn't need to worry about it?

Answer 1

a good place to start is patterns & practices: WCF Security Guidance, this has a lot of information in regards to authentication and other security areas of concern.