{"id":1780,"date":"2024-02-19T10:39:13","date_gmt":"2024-02-19T02:39:13","guid":{"rendered":"https:\/\/www.ruianding.com\/blog\/?p=1780"},"modified":"2024-02-20T11:07:32","modified_gmt":"2024-02-20T03:07:32","slug":"a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment","status":"publish","type":"post","link":"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/","title":{"rendered":"A Guide to Troubleshooting WHFB Sign-In Issues in a Hybrid Environment"},"content":{"rendered":"\n

Overview<\/h2>\n\n\n\n

In this post, we\u2019re assuming that the end customer has already completed the WHFB deployment and successfully provisioned the PIN sign-in method. However, they encountered a sign-in failure when using the WHFB sign-in options to login windows or SSO to the on-prem resources.<\/p>\n\n\n\n

\n\n\n\n

1. Identify the Trust Type<\/h2>\n\n\n\n

Firstly, it\u2019s always important to check the type of trust used for WHFB sign-in. Following the zero-trust strategy, it\u2019s recommended to verify this independently. There are several aspects that we can inspect.<\/p>\n\n\n\n

<\/td>Cloud Kerberos Trust<\/strong><\/td>Key Trust<\/strong><\/td>Certificate Trust<\/strong><\/td><\/tr>
PKI (AD CS)<\/strong><\/td>Not Required<\/td>Required<\/td>Required<\/td><\/tr>
AD FS<\/strong><\/td>Not Required<\/td>Not Required<\/td>Required<\/td><\/tr>
Policies (GPO, Local Policies, Intune)<\/strong><\/td>Use Windows Hello for Business
Use cloud Kerberos trust for on-premises authentication<\/td>		Use Windows Hello for Business<\/td>Use Windows Hello for Business
Use certificate for on-premises authentication<\/td><\/tr>
KDC Certificate<\/strong><\/td>Not Required<\/td>Required<\/td>Required<\/td><\/tr>
Sign-in Key\/Certificate<\/strong><\/td>Issued to userSID<\/td>Issued to userSID<\/td>Issued to userSID
Issued to username<\/td><\/tr>
DC Object<\/strong><\/td>AzureADKeberos<\/td>Required<\/td>Required<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

<\/p>\n\n\n\n

1.1 KDC Certificate (Used in Key Trust and Cert Trust)<\/h4>\n\n\n\n

The KDC certificate is stored in the Domain Controllers in an Active Directory environment. It is instrumental in ensuring secure and trustworthy communication in the Kerberos authentication process.<\/p>\n\n\n\n

Windows Hello for Business hybrid key trust deployment guide – Windows Security | Microsoft Learn<\/a><\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

How Windows Hello for Business authentication works – Windows Security | Microsoft Learn<\/a><\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n
    \n
  1. The Kerberos provider sends signed preauthentication data and the user\u2019s public key (in a self-signed certificate) to the KDC service on the domain controller.<\/li>\n\n\n\n
  2. The domain controller verifies the self-signed certificate, retrieves the public key from the certificate, and searches for the public key in Active Directory. It validates that the User Principal Name (UPN) for the authentication request matches the UPN registered in Active Directory and validates the signed preauthentication data using the public key from Active Directory.<\/li>\n\n\n\n
  3. Upon successful validation, the KDC returns a Ticket Granting Ticket (TGT) to the client with its KDC certificate in the KERB_AS_REP.<\/li>\n\n\n\n
  4. The Kerberos provider then verifies the trustworthiness of the response from the domain controller. It checks that the KDC certificate chains<\/strong> to a trusted root certificate, is within its validity period<\/strong>, hasn\u2019t been revoked, has the enhanced key usage KDC Authentication<\/strong> present, and that the subject alternate name in the KDC\u2019s certificate matches the domain name<\/strong> to which the user is authenticating.<\/li>\n<\/ol>\n\n\n\n
    \"\"<\/figure>\n\n\n\n
    \"\"<\/figure>\n\n\n\n

    Verifying at least three aspects will help us narrow down the actual trust type. If identification is not possible, no worries, because for WHFB sign-in issues, our troubleshooting is inseparable from the authlog (provided on aka.ms\/authscript<\/a>). The following section will guide how to determine what trust type is used through the logs in the authlog.<\/p>\n\n\n\n

    \n\n\n\n

    2. Narrow down the Issue<\/h2>\n\n\n\n

    After the trust type has been identified, we will have a clearer picture to help narrow down the issues that the customer is encountering. For example, if a customer has just set up key trust and finds they can\u2019t log in, we can quickly consider whether the customer needs to wait for the 30-minute key write-back time to be able to log in normally.<\/p>\n\n\n\n

    I will also outline some common issues. If the customer\u2019s issue aligns with these patterns, it might be possible to resolve the problem directly.<\/p>\n\n\n\n

    2.1 Key Trust – “That option is temporarily unavailable.”<\/h4>\n\n\n\n

    After the user provisions a Windows Hello for Business credential in a hybrid key trust environment, the key must sync from Microsoft Entra ID to Active Directory during a Microsoft Entra Connect Sync cycle. The user’s public key is written to the msDS-KeyCredentialLink<\/code> attribute of the user object.<\/p>\n\n\n\n

    \"\"<\/figure>\n\n\n\n

    There could be several reasons for the issue. The user might just need to wait for a sync cycle to allow the public key to sync back to the user attribute. Additionally, the problem could also be caused by an inheritance issue with the MSOL service account, which may not have the rights to write the attribute in the user account. Moreover, it could be related to the deletion issue mentioned in this document: Windows Hello for Business known deployment issues – Windows Security | Microsoft Learn<\/a><\/p>\n\n\n\n

    \n\n\n\n

    If the issue is particularly challenging, we will need to capture the authlog. You can refer to this post to understand the process of capturing the authlog. By examining the log, we can ultimately pinpoint the specific problem.<\/p>\n","protected":false},"excerpt":{"rendered":"

    Overview In this post, we\u2019re assuming that the end customer has already completed the WHFB deployment and successfully provisioned the PIN sign-in method. However, they encountered a sign-in failure when using the WHFB sign-in options to login windows or SSO to the on-prem resources. 1. Identify the Trust Type Firstly, it\u2019s always important to check […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_themeisle_gutenberg_block_has_review":false,"footnotes":""},"categories":[43],"tags":[],"class_list":["post-1780","post","type-post","status-publish","format-standard","hentry","category-whfb"],"yoast_head":"\nA Guide to Troubleshooting WHFB Sign-In Issues in a Hybrid Environment - \u6781\u7b80IT\uff5cSimpleIT<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"A Guide to Troubleshooting WHFB Sign-In Issues in a Hybrid Environment - \u6781\u7b80IT\uff5cSimpleIT\" \/>\n<meta property=\"og:description\" content=\"Overview In this post, we\u2019re assuming that the end customer has already completed the WHFB deployment and successfully provisioned the PIN sign-in method. However, they encountered a sign-in failure when using the WHFB sign-in options to login windows or SSO to the on-prem resources. 1. Identify the Trust Type Firstly, it\u2019s always important to check […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/\" \/>\n<meta property=\"og:site_name\" content=\"\u6781\u7b80IT\uff5cSimpleIT\" \/>\n<meta property=\"article:published_time\" content=\"2024-02-19T02:39:13+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-02-20T03:07:32+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2024\/02\/image-5.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1593\" \/>\n\t<meta property=\"og:image:height\" content=\"607\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Ruian Ding\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ruian Ding\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/\"},\"author\":{\"name\":\"Ruian Ding\",\"@id\":\"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/440d88575b7dc819a4cefc8c4199db3b\"},\"headline\":\"A Guide to Troubleshooting WHFB Sign-In Issues in a Hybrid Environment\",\"datePublished\":\"2024-02-19T02:39:13+00:00\",\"dateModified\":\"2024-02-20T03:07:32+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/\"},\"wordCount\":731,\"publisher\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/440d88575b7dc819a4cefc8c4199db3b\"},\"image\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2024\/02\/image-5.png\",\"articleSection\":[\"WHFB\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/\",\"url\":\"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/\",\"name\":\"A Guide to Troubleshooting WHFB Sign-In Issues in a Hybrid Environment - \u6781\u7b80IT\uff5cSimpleIT\",\"isPartOf\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2024\/02\/image-5.png\",\"datePublished\":\"2024-02-19T02:39:13+00:00\",\"dateModified\":\"2024-02-20T03:07:32+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/#primaryimage\",\"url\":\"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2024\/02\/image-5.png\",\"contentUrl\":\"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2024\/02\/image-5.png\",\"width\":1593,\"height\":607},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.ruianding.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"A Guide to Troubleshooting WHFB Sign-In Issues in a Hybrid Environment\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.ruianding.com\/blog\/#website\",\"url\":\"https:\/\/www.ruianding.com\/blog\/\",\"name\":\"Ruian's Tech Troubleshooting Toolbox\",\"description\":\"Debug the World.\",\"publisher\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/440d88575b7dc819a4cefc8c4199db3b\"},\"alternateName\":\"\u4e01\u777f\u5b89\u7684\u6280\u672f\u5206\u4eab\u535a\u5ba2\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.ruianding.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":[\"Person\",\"Organization\"],\"@id\":\"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/440d88575b7dc819a4cefc8c4199db3b\",\"name\":\"Ruian Ding\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2023\/05\/logo.png\",\"contentUrl\":\"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2023\/05\/logo.png\",\"width\":284,\"height\":284,\"caption\":\"Ruian Ding\"},\"logo\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/image\/\"},\"description\":\"I am currently a Support Specialist at NIO, focusing on cloud-related issues for NIO Power. Previously, at Microsoft Entra ID, I specialized in identity and access management (IAM), including device registration, Windows Hello for Business (WHfB), multi-factor authentication (MFA), and single sign-on (SSO). In addition to my core expertise, I have a strong foundation in Active Directory, Servers, Cloud Computing, Network Administration, and Front-end Web Development. This diverse technical skill set enables me to effectively handle a wide range of challenges in a fast-paced IT environment.\",\"sameAs\":[\"https:\/\/www.ruianding.com\"],\"url\":\"https:\/\/www.ruianding.com\/blog\/author\/ruiand\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"A Guide to Troubleshooting WHFB Sign-In Issues in a Hybrid Environment - \u6781\u7b80IT\uff5cSimpleIT","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/","og_locale":"en_US","og_type":"article","og_title":"A Guide to Troubleshooting WHFB Sign-In Issues in a Hybrid Environment - \u6781\u7b80IT\uff5cSimpleIT","og_description":"Overview In this post, we\u2019re assuming that the end customer has already completed the WHFB deployment and successfully provisioned the PIN sign-in method. However, they encountered a sign-in failure when using the WHFB sign-in options to login windows or SSO to the on-prem resources. 1. Identify the Trust Type Firstly, it\u2019s always important to check […]","og_url":"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/","og_site_name":"\u6781\u7b80IT\uff5cSimpleIT","article_published_time":"2024-02-19T02:39:13+00:00","article_modified_time":"2024-02-20T03:07:32+00:00","og_image":[{"width":1593,"height":607,"url":"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2024\/02\/image-5.png","type":"image\/png"}],"author":"Ruian Ding","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Ruian Ding","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/#article","isPartOf":{"@id":"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/"},"author":{"name":"Ruian Ding","@id":"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/440d88575b7dc819a4cefc8c4199db3b"},"headline":"A Guide to Troubleshooting WHFB Sign-In Issues in a Hybrid Environment","datePublished":"2024-02-19T02:39:13+00:00","dateModified":"2024-02-20T03:07:32+00:00","mainEntityOfPage":{"@id":"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/"},"wordCount":731,"publisher":{"@id":"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/440d88575b7dc819a4cefc8c4199db3b"},"image":{"@id":"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/#primaryimage"},"thumbnailUrl":"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2024\/02\/image-5.png","articleSection":["WHFB"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/","url":"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/","name":"A Guide to Troubleshooting WHFB Sign-In Issues in a Hybrid Environment - \u6781\u7b80IT\uff5cSimpleIT","isPartOf":{"@id":"https:\/\/www.ruianding.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/#primaryimage"},"image":{"@id":"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/#primaryimage"},"thumbnailUrl":"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2024\/02\/image-5.png","datePublished":"2024-02-19T02:39:13+00:00","dateModified":"2024-02-20T03:07:32+00:00","breadcrumb":{"@id":"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/#primaryimage","url":"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2024\/02\/image-5.png","contentUrl":"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2024\/02\/image-5.png","width":1593,"height":607},{"@type":"BreadcrumbList","@id":"https:\/\/www.ruianding.com\/blog\/a-guide-to-troubleshooting-whfb-sign-in-issues-in-a-hybrid-environment\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.ruianding.com\/blog\/"},{"@type":"ListItem","position":2,"name":"A Guide to Troubleshooting WHFB Sign-In Issues in a Hybrid Environment"}]},{"@type":"WebSite","@id":"https:\/\/www.ruianding.com\/blog\/#website","url":"https:\/\/www.ruianding.com\/blog\/","name":"Ruian's Tech Troubleshooting Toolbox","description":"Debug the World.","publisher":{"@id":"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/440d88575b7dc819a4cefc8c4199db3b"},"alternateName":"\u4e01\u777f\u5b89\u7684\u6280\u672f\u5206\u4eab\u535a\u5ba2","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.ruianding.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":["Person","Organization"],"@id":"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/440d88575b7dc819a4cefc8c4199db3b","name":"Ruian Ding","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2023\/05\/logo.png","contentUrl":"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2023\/05\/logo.png","width":284,"height":284,"caption":"Ruian Ding"},"logo":{"@id":"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/image\/"},"description":"I am currently a Support Specialist at NIO, focusing on cloud-related issues for NIO Power. Previously, at Microsoft Entra ID, I specialized in identity and access management (IAM), including device registration, Windows Hello for Business (WHfB), multi-factor authentication (MFA), and single sign-on (SSO). In addition to my core expertise, I have a strong foundation in Active Directory, Servers, Cloud Computing, Network Administration, and Front-end Web Development. This diverse technical skill set enables me to effectively handle a wide range of challenges in a fast-paced IT environment.","sameAs":["https:\/\/www.ruianding.com"],"url":"https:\/\/www.ruianding.com\/blog\/author\/ruiand\/"}]}},"_links":{"self":[{"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/posts\/1780","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/comments?post=1780"}],"version-history":[{"count":15,"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/posts\/1780\/revisions"}],"predecessor-version":[{"id":1806,"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/posts\/1780\/revisions\/1806"}],"wp:attachment":[{"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/media?parent=1780"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/categories?post=1780"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/tags?post=1780"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}