Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Testing web service with SoapUI and Windows authentication

Tags:

user-interface

soap

web-services

testing

soapui

Is it possible to include the Windows domain credentials to test my web service with SOAP UI?

I found a properties page but the IIS just responses with "wrong credentials".

like image 910
Henrik P. Hessel Avatar asked May 27 '09 09:05

Henrik P. Hessel

People also ask

How do I pass Windows authentication in SoapUI?

In SoapUI, choose File > Preferences, then select "Proxy Settings". Enter Host "localhost" and port "8081". Use SoapUI as normal. It will send requests through Burp Proxy, which will do the NTLM authentication for you.

How do you provide authentication for SOAP Web services?

The basic authentication is encoded in the HTTP request that carries the SOAP message. When the application server receives the HTTP request, the user name and password are retrieved and verified using the authentication mechanism specific to the server. Use transport-level security to enable basic authentication.

How do I use Windows authentication on a Web application?

On the taskbar, click Start, and then click Control Panel. In Control Panel, click Programs and Features, and then click Turn Windows Features on or off. Expand Internet Information Services, then World Wide Web Services, then Security. Select Windows Authentication, and then click OK.

2 Answers

SoapUI doesn't seem to work directly with NTLM authentication, but you can use a proxy such as Burp Suite to do the auth for you.

  1. Download Burp Suite from http://portswigger.net/burp/ and crank it up.
  2. On Burp's "Proxy : Intercept" tab, click the button to turn intercept off.
  3. On Burp's "Proxy : Options" tab, make sure it's set to an unused port, the default is 8081
  4. On Burp's "Options" tab, tick "do www authentication" and add a setting for the server you wish to hit. Also tick "prompt for credentials on authentication failure"
  5. Switch to Burp's "Proxy : History" tab so you can see requests going through.
  6. In SoapUI, choose File > Preferences, then select "Proxy Settings". Enter Host "localhost" and port "8081".
  7. Use SoapUI as normal. It will send requests through Burp Proxy, which will do the NTLM authentication for you.
like image 174
Mike Mason Avatar answered Oct 12 '22 08:10

Mike Mason

soapUI 4.5 just added support for NTLMv2 which negates the need for Burp Suite.

like image 44
MadMoai Avatar answered Oct 12 '22 07:10

MadMoai
Sign in to Comment

Related questions

What are the other heroku environment variables?
Authentication for REST web services
Does ESPN Cricinfo have an API? [closed]
Tool to monitor HTTP, TCP, etc. Web Service traffic [closed]
What does "x-powered by" mean?
Are REST request headers encrypted by SSL?
Is There a JSON Parser for VB6 / VBA?
ASP.Net which user account running Web Service on IIS 7?
How to pass a JSON array as a parameter in URL
Best practices for custom http user-agent strings? [closed]
WebMethod vs ScriptMethod
Differences between App.Config and Web.Config?
How to add parameters into a WebRequest?
WCF Service Returning "Method Not Allowed"
jQuery Ajax call - Set variable value on success [duplicate]
What is service discovery, and why do you need it?
Server did not recognize the value of HTTP Header SOAPAction
Differences between Azure App Services and Cloud Services
What is the best way to consume REST web services? [closed]
RMI vs. Web Services. What's best for Java2Java remoting? [closed]

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!