IBM RPT Kerberos Authentication
I am trying to capture a script using IBM-RPT for a web application which uses SSO with Kerberos security authentication.
During script capture the user id and the password is provided by the user. I have configured the web browser as per the suggested in IBM help section “Recording Kerberos applications with Internet Explorer” and “Recording Kerberos applications with Mozilla Firefox” and tried recording the user actions.
The sequence of activity that are noted for login is a below
Request 1: CALLTYPE=AUTH&AUTH_TYPE=CHALLENGE_RESPONSE&USER_ID =PT12&LCLANG=INFENG&SESSION_ID=
Response 1: ERROR_CODE=0&SESSION_ID=<Session ID>&CHALLENGE_TOKEN=<Challenge Token>
Request 2: CALLTYPE=AUTH&AUTH_TYPE=CHALLENGE_RESPONSE&USER_ID =<User ID>&CHALLENGE_TOKEN=<Challenge Token>&RESPONSE_TOKEN=<Response Token>&SESSION_ID=<Session ID>&LCLANG=<LCLANG>
Response 2: ERROR_CODE=0&SESSION_ID=< Session ID >&RESPONSE_TOKEN=<Response Token>
Request 3: CALLTYPE=AUTH&REQ_TYPE=GET_TOK&AUTH_TYPE=CHALLENGE _RESPONSE&USER_ID=<UserID>&LCLANG=< LCLANG>&SESSION_ID=<Session ID>
Response 3: IS_CHANGE_PWD_REQ=<no>&TWO_FACTOR_AUTH_REQ=N&ERROR _CODE=0&SESSION_ID=<Session Id>&IS_LOCAL=<is local>&SESSION_KEY=<Session Key>&INACTIVITY_TIME_OUT=<Time Out>
Request 4: SESSION_ID=<Session Id>&CALLTYPE=GET_SRVC_TOK&REQUEST_TOKEN=<Request Token>
Response 4: ERROR_CODE=0&SERVICE_TOKEN=<Service Token >
Request 5: SERVICE_TOKEN=<Service Token >&USER_ID=<User Id >&SESSION_ID=<Session ID>&LCLANG=< LCLANG >&IS_CHANGE_PWD_REQ=<PChnge NO>
Response 5: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">……… </html>
The user manual mentions that “The test generation process attempts to detect if Kerberos was used when a test was recorded. If the test generation process detects that Kerberos was used when a test was recorded, you are prompted for the Kerberos credentials.” But in my case the Kerberos credentials were not requested.
I manually entered the values for the “Kerberos” under the security tab and generated the “KRB5.ini” file. On trying to run the scripts after correlation, I do not get a failure response code or any Authentication failure, but the context verification point, for a successful login fails.
It is also noted that the all the tokens except for the “Session ID” are sending the values captured while recording, and not using values that are generated based on the server request. Can someone please help me resolve this issue?
RPT Version – 8.2
Browser – IE8, Firefox 23.0.1
OS – Windows 7 – SP1