Lab 2.7 - Testing

In this section you will use user1’s credentials to default website header-iap.acme.com. However, when you attempt to access the admin page you will be prompted for certificate based authentication. After a successful login you will close your browser and login to default website using user2’s credentials. User2 will be denied due to not having the correct AD groups.

Task - Login to header-iap.acme.com using user1

  1. Open a new browser tab

  2. Access the site https://header-iap.acme.com

  3. At the logon page enter the Username: user1 and Password: user1

  4. Click Logon

    image30

  5. Notice the custom header UserID has a value of user1

    image31

  6. Access the admin portion of the website https://header-iap.acme.com/admin.php

    image32

  7. Select the certificate user1

  8. Click OK

    image33

  9. You should be successfully logged into the admin portion of the site.

    image37

  10. Close the browser completely.

Task - Login to header-iap.acme.com using user2

  1. Open a new browser window.

  2. Access the site https://header-iap.acme.com

  3. At the logon page enter the Username: user2 and Password: user2

  4. Click Logon

    image34

  5. Notice the custom header UserID has a value of user2

    image35

  6. Access the admin portion of the website https://header-iap.acme.com/admin.php

  7. You receive a Access Denied page due to not having the correct group membership

    image36