Authenticating to SharePoint from fiddler/postman fails with 401

Question

I am trying to follow the guidance in many articles, one by Fabian williams, on how to make queries from Fiddler or Postman, but I keep getting 401 unauthorized. I have SharePoint on prem 2016, with Feature pack 2.

I am trying to make a post request, to a url that looks like this:

http://devserver/sites/hr/_api/contextinfo

in Postman, I added the authorization as basic auth, with my username and password, which added the Authorization header for me, and Accept: application/json;odata=verbose;

When I try to make the request, I get 401 unauthorized.

Here's how my request looks like in Postman:

Any help is appreciated.

Thanks.

@TrevorSeward do I need to be signed in with the same user I have access to in SharePoint? For example, I am signed to my computer with a local user, but connecting to sharepoint with a domain user. — Brittany Rutherford, Feb 24 '19 at 00:23
With Postman, you can pass arbitrary credentials. But you should make sure your username is just the sAMAccountName and the Domain box is filled with your domain's FQDN (e.g. corp.example.com). — , Feb 25 '19 at 16:08
@TrevorSeward I tried that, it doesn't work. I saw some examples requiring me to do a POST request to the contextapi end point in order to generate access token, but that request itself isn't authorized. What am I missing? — Brittany Rutherford, Feb 26 '19 at 07:55

score 0 · Answer 1 · edited Jun 05 '20 at 12:47

0

Dont forget to use BearerToken from authentication request to the Data request.

By authentication to the login.microsoftonline.com/company.onmicrosoft.com/oauth2/token URL address, you will get a bearer token (you need to fill body with user_credentials). This bearer token will be used in the data request.

Look at Postman examples about authentication
Example
another example

Hope it helps!

edited Jun 05 '20 at 12:47

Gryu

291
2
13

answered Feb 25 '19 at 09:30

Zdeněk Vinduška

2,889
2
12
24

Thanks for your answer. When you say "from authentication request" do you mean the POST request to the contextapi? Any request I try to make to sharepoint will generate a 401 unauthorized error. – Brittany Rutherford Feb 26 '19 at 07:56
Hi authentication to this URL address, you will get bearer token https://login.microsoftonline.com/company.onmicrosoft.com/oauth2/token (you need to fill body with user_credentials. This bearer token use in the data request. – Zdeněk Vinduška Feb 26 '19 at 08:04
I used it for accessing GraphApi, but I think it will works the same – Zdeněk Vinduška Feb 26 '19 at 08:05
I am using SharePoint server 2016 – Brittany Rutherford Feb 26 '19 at 08:16
ok sorry I looked on tags and SP2016 wasnt here. Here is nice answer: https://sharepoint.stackexchange.com/questions/236286/sharepoint-online-rest-api-authentication-in-postman – Zdeněk Vinduška Feb 26 '19 at 08:21
That post describes the case with sharepoint online and using Azure. – Brittany Rutherford Feb 26 '19 at 15:01

score 0 · Answer 2 · answered Mar 26 '19 at 03:24

0

Within Fiddler is an option to "Automatically Authenticate" and it works beautifully.

You'll still have to call the contextinfo and copy and paste the digest into your call using the X-RequestDigest header

answered Mar 26 '19 at 03:24

Mike

12,186
8
41
64

Authenticating to SharePoint from fiddler/postman fails with 401

2 Answers2

Linked