8

I am creating a Java open source package that makes it easy to connect with HttpClient 3.1 to resources that are protected by NTLm v1/v2 and Kerberos.

I need to test this tool against real world servers. Are there any publicly available endpoints that are protected by NTLM or Kerberos that I can get a user and password to test against?

Basically I am looking for something like Browserspy for NTLM/Kerberos. Also a public site using self signed certificates would be helpful for testing.

U880D
  • 597
  • 7
  • 17
dov.amir
  • 190
  • 1
  • 5
  • 1
    Here is a link to the tool i created on github, ill be happy to hear feedback. https://github.com/DovAmir/httpclientAuthHelper – dov.amir May 22 '14 at 17:05
  • 1
    There was for a while http://httpbin-ntlm.com/ but that's gone offline now. See https://github.com/shazow/urllib3/issues/242#issuecomment-24180808 – Colonel Panic Oct 06 '14 at 16:29
  • I myself made http://ntlm.herokuapp.com/ but that runs a Ruby implementation of the protocol so it's not ideal for testing. Also, I've forgotten the password! – Colonel Panic Nov 19 '14 at 15:31
  • Is your Kerberos infrastructure publicly available? If not, you'll only achieve ntlm authentication. – user2320464 Jun 27 '15 at 17:03
  • @ColonelPanic username: `user` and password: anything will work – Harry Sep 14 '17 at 14:33

1 Answers1

1

A bit late to the party but ...

The freeipa project has a public demo realm. See the instructions.

$ kinit admin@DEMO1.FREEIPA.ORG
Password for admin@DEMO1.FREEIPA.ORG: 
$ klist 
Ticket cache: KEYRING:persistent:1000:1000
Default principal: admin@DEMO1.FREEIPA.ORG

Valid starting       Expires              Service principal
05/09/2019 20:53:50  05/10/2019 20:53:44    krbtgt/DEMO1.FREEIPA.ORG@DEMO1.FREEIPA.ORG
$ klist 
Ticket cache: KEYRING:persistent:1000:1000
Default principal: admin@DEMO1.FREEIPA.ORG

Valid starting       Expires              Service principal
05/09/2019 20:54:21  05/10/2019 20:53:44  HTTP/ipa.demo1.freeipa.org@DEMO1.FREEIPA.ORG
05/09/2019 20:54:21  05/10/2019 20:53:44  HTTP/ipa.demo1.freeipa.org@
05/09/2019 20:53:50  05/10/2019 20:53:44  krbtgt/DEMO1.FREEIPA.ORG@DEMO1.FREEIPA.ORG

The http ticket appeared after kinit'ing and visiting https://ipa.demo1.freeipa.org

natxo asenjo
  • 5,641
  • 2
  • 25
  • 27