JMeter and optional SSL client certificate

ssl-certificate jmeter
22,658

What you can do is the following:

  • Add to jmeter the following JVM Properties:

    -Djavax.net.ssl.keyStore=<path to folder containing keystore>/keystore.jks       

-Djavax.net.ssl.keyStorePassword=password if any

  • Use Keystore Configuration

  • set in user.properties:

    https.use.cached.ssl.context=false

  • Use HC4Impl for the sampler that must send client certificate

  • Use JavaImpl for the one that must not send it (it is a kind of trick, I must say I don't understand why you must not send client certificate if server requests it)

Share:
22,658
gabuzo
Author by

gabuzo

Freelance Java Expert.

Updated on July 09, 2022

Comments

  • gabuzo
    gabuzo almost 2 years

    I'm setting up a test plan using JMeter 2.8 involving SSL client certificates. The test plan roughly consist in two https calls to server1 and server2.

    The tricky part is that the call to server1 should not use SSL client authentication (although the server is requesting one) while the call to server2 must use SSL client authentication.

    Currently as soon as I give a keystore to JMeter all https calls are sending SSL certificate which cause the call to server1 to fail.

    I currently tried two approaches:

    1. I removed the -Djava.net.ssl.keyStore=xxx from the JMeter command line and use a BeanShell or BSH pre-processor to set it just before the call to server2 but it does not work and call to server 2 fails as if no keystore had been specified.
    2. I try to use the Keystore management configurator to specify an inexisting key before making the call to server1 but when I put the start and end indices after the last certificate in the store, JMeter still send the first certificate in the store.
  • gabuzo
    gabuzo over 11 years
    Nice trick. For the why here is a quick explaination: I connect during the test to several servers. The second one requires client certificate authentication. The first can authenticate either with a certificate or fallback to a username/password form if no certificate is provided. Since I must use the form authentication on the first, setting a client certificate without the trick will prevent my test to work.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

JMeter load client-side certificate
Flutter on Android 7 CERTIFICATE_VERIFY_FAILED with LetsEncrypt SSL cert after Sept 30, 2021
Firebase Hosted flutter app shows not a secure connection error when launching an external URL
Flutter video player wont accept self signed https connection
How to Bypass SSL Certificate Verification in flutter?
Flutter OAuth request fails when using self-signed certificate
How to test api calls from flutter app to localhost service?
Flutter web, problem making request to a server with self signed certificate
Flutter Future<HttpClient> is not a substype of HttpClinet
JMeter : How to increment dates by +1 within date ranges for every iteration