Its been a while, we are struggling to configure synthetics for application which uses multi factor or two factor authentication and we have more than 10 such application which uses MFA.
I went through some threads, where they suggested to skip is for the UserID which is used for synthetic.
However, from security standpoint its not feasible.
What I was thinking is, pick the PIN from email ID and use it or get the PIN from text file stored on some host/ActiveGate and use it.
Is it something that is doable/achievable with our synthetics?
Solved! Go to Solution.
There are issues with MFA whatever type of synthetic you use.
Now, if you've got your PIN in an email, and are able to put it in a file, you're halfway done.
Of course, be careful with all this, as this will defeat MFA in the first place...
The other way I imagine it can work, without files, is getting it through a webservice or other type of HTTP call, to a web server that would give the reply. It would be a blocking call to that service, that would reply once the MFA value is known. You could then get the value into the Dynatrace synthetic script, and run it from there. Please beware of the multiple security risks involved...
Somehow I'm able to get the PIN via API.
- Steps I followed while recording are,
1. Loading of main URL
2. Login with credentials
3. PIN generation page appear
4. Access API URL in new tab which has PIN value
- Custom Steps are, (not configured yet)
6. Pass the value to on PIN generation page
Now the problem is, when we playback this script, API URL entered in 4th step never get launched in new tab. Instead of that, it launches in same window and this is making difficult to configure 5th and 6th steps.
In the 3rd step, besides loading the page, you should include a XHR request that gets the data. If you launch a new page, or leave that page, I believe you will not be able to go back.
You should probably follow the example laid out in the following help page: