Nagios Support Forum

Hello - anyone have any luck using the webinject to log into OKTA and then look for content on redirected page. Does not seem to be able to login. What am I missing? Any assistance here

example:

<testcases repeat="1">

<case
id="1"
description1="initial url"
method="get"
url="https://url"
/>

<case
id="2"
description1="redirected to okta"
method="post"
url="https://okta.com"
postbody="username=USER&password=PASSWORD1"
verifynegative="User unknown"
errormessage="Unable to authenticate user in Okta"
logrequest="yes"
logresponse="yes"
/>

<case
id="3"
description1="Navigate through MyApplication while authenticated"
method="get"
url="https://redirected url"
verifypositive="Hello, world"
errormessage="Unable to MATCH content Hello, world"
logrequest="yes"
logresponse="yes"
/>

</testcases>

Hi @trondeau,

Thanks for joining the support forum! Glad to have you here. Looking this over, what type of OKTA authentication do you have setup on this web app? Looking over the plugin, it does support basic authentication, but I don't believe it can work with SAML 2.0. Let us know when you have a moment.

Yes this works with SAML Auth 2, is there plans and what have others done to be able to monitor a url that has OKTA.

Thanks

Hi @trondeau,

I looked around the Nagios Exchange and researched the support history on this use case, but it doesn't look like there's currently a Nagios plugin out there that will support authentication using SAML.

There are some python modules that are there for this type of authentication that could be used to write a custom plugin, if that's an option for you.

Hope that helps and let us know if you have more questions.

Benjamin