25,130 questions
Simulate ms ad login for Loadrunner performance testing
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 45%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EV%3C/text%3E%3C/svg%3E)
Venkat
26
Reputation points
Hello,
First of all thanks to all the community for the content of this site.
We have a website using MS Azure AD SAML to authenticate all users. In order to automate the performance tests in the website, we need to simulate the login into the Azure AD SAML to obtain a SAML Assertion ID to pass to our website. We followed the same authentication flow that we identified in our browser.
So far, we are following these steps:
GET to our local SP with a redirect to Azure Client ID (IdP = https://sts.windows.net/xxx-xxx ) to obtain the SAML Request.
From this point we get the following parameters that are used in the next step: SAMLRequest, SigAlg, Signature
This step is working as expected and we get all expected parameters.
GET to login.microsoftonline.com/clientID/saml2?SAMLRequest=XX&SigAlg=XX&Signature=XX
From this point we get the following parameters that are used in the next step: esctx, canary, ApiCanary, flowToken, originalRequest, hpgact, hpgid, hpgrequestid, x-ms-request-id, buid, ctx
This step is working as expected and we get all the expected parameters.
POST to login.microsoftonline.com/common/GetCredentialType?mkt=en-US
We made a POST using JSON format to pass, amount others, the flowToken, originalRequest and the username.
This step is working as expected and we get the expected response verifying that the user has password to continue with the login.
POST to login.microsoftonline.com/clientID/login
We made a POST using format application/x-www-form-urlencoded to pass, amount others, the flowToken, login, password, canary, hpgrequestid and ctx.
This step is working as expected and we get the expected response.
POST to login.microsoftonline.com/clientID/kmsi
We made a POST using format application/x-www-form-urlencoded to pass amount others the flowToken, canary, hpgrequestid and ctx.
This step is not working and we do not get the SAMLResponse to give it back to our IdP. (We get a 200 but in the response says that we are missing a parameter)
We verify many times that we are passing all the cookies and headers to every step (HTTP Request) in the Test Plan and so far we get the same responses and cookies as if we were in the browser.
Could you please tell us:
Is it possible to simulate this authentication flow using
Loadrunner?
If it is, are we calling all the right entry points to make a successful login or are we missing some?
We were searching for documentation about this authentication flow, but without success, so, is there any documentation about this topic and all the endpoints to be called?
Thanks a lot in advance.
Best regards,
Venkat
Microsoft Security | Microsoft Entra | Microsoft Entra ID
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(201.6, 37%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKK%3C/text%3E%3C/svg%3E)
Kirandeep Kaur 0 Reputation points2024-01-19T06:41:18.88+00:00 Hi Were you able to solve this and how ?
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 54%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Gourav Madan 0 Reputation points2024-02-15T16:16:44.2966667+00:00 Need help for the same! Thanks
Sign in to comment
Sign in to answer