Has anyone been successful in getting Jmeter to authenticate on a Windows client with a Windows server using "Negotiate" and Kerberos? This would look like a four step handshake in which the server responds first with a 302 re-direct, then twice with 401, Unauthorized, and finally with a 200, OK as the client sends progressively more security information.
If not, has anyone determined that this does not work work in Jmeter? I can configure my HTTP Authorization Manager, and krb5.conf and jaas.conf files, but Jmeter will not respond to the challenge from the server. I am not seeing any Java exceptions. However, in the Jmeter log, for each of the last three request/response pairs, I see: DEBUG o.a.h.i.c.TargetAuthenticationStrategy: Authentication schemes in the order of preference: [Negotiate, Kerberos, NTLM, CredSSP, Digest, Basic] DEBUG o.a.h.i.c.TargetAuthenticationStrategy: Challenge for Kerberos authentication scheme not available DEBUG o.a.h.i.c.TargetAuthenticationStrategy: Challenge for CredSSP authentication scheme not available DEBUG o.a.h.i.c.TargetAuthenticationStrategy: Challenge for Digest authentication scheme not available DEBUG o.a.h.i.c.TargetAuthenticationStrategy: Challenge for Basic authentication scheme not available Thanks. This message and any attachments (the "Message") may contain confidential, proprietary and/or privileged information and are only for their intended recipient(s). If you are not the intended recipient, you should notify the sender and delete the Message. E-mail transmissions cannot be guaranteed to be secure or error-free. This Message is provided for information purposes and should not be construed as a solicitation or offer to buy or sell any securities or financial instruments, or to provide investment advice in any jurisdiction where the sender is not properly licensed or permitted to do so. This Message is subject to additional conditions and restrictions. Please read them here: https://legal.dimensional.com/email The sender of this Message is an independent contractor or consultant engaged by Dimensional Fund Advisors LP, its subsidiaries and/or affiliates (collectively, "DFA") for a limited purpose. The sender is not an employee, officer or director of DFA, and does not have the authority to enter into any agreement or undertaking on behalf of DFA or bind DFA in any way. Any questions concerning the authority of the sender should be directed to an appropriate officer or employee of DFA. For a list of DFA officers, please use this link: https://us.dimensional.com/firm/leadership
