CN101640618B - Authentication test method and system, and network with function of authentication test - Google Patents
Authentication test method and system, and network with function of authentication test Download PDFInfo
- Publication number
- CN101640618B CN101640618B CN2008101452246A CN200810145224A CN101640618B CN 101640618 B CN101640618 B CN 101640618B CN 2008101452246 A CN2008101452246 A CN 2008101452246A CN 200810145224 A CN200810145224 A CN 200810145224A CN 101640618 B CN101640618 B CN 101640618B
- Authority
- CN
- China
- Prior art keywords
- computer system
- remote server
- tested
- module
- login
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Abstract
The invention discloses an authentication test method which is applicable to test when a computer system is set as a client side of a light weight catalog access protocol server. The method comprises the following steps of using an LDAP server to log in the computer system and obtaining a first test information, inputting an authentication data into the computer system and obtaining a second test information, and judging whether the light weight catalog access protocol server is authenticated by the computer according to the first test information and the second test information.
Description
Technical field
The invention relates to a kind of authentication test technology of computer system, and particularly can test the authentication test technology whether remote server can authenticate for the computer system of client relevant for a kind of.
Background technology
Light weight catalog access protocol (Lightweight Directory Access Protocol is called for short LDAP) is the system of similar database, and its biggest advantage is exactly a professional platform independence, therefore can be installed on the server of various kinds.One light weight catalog access protocol server (hereinafter to be referred as ldap server) can be online with a plurality of clients, so each client can capture desired information from the catalogue of ldap server.In the application of enterprise, in the catalogue of ldap server, can the stored electrons addresses of items of mail, the information of mail routing iinformation, human resource data, public secret key, contacts list or the like.
When a host computer need be set to the client of a ldap server, need to be set with regard to position (IP Address), administrative staff (Administrator), cipher mode, the domain name (DomainName) of ldap server earlier.Whether in addition, also will test ldap server can be authenticated by host computer.In traditional technology, whether can be if will test ldap server by the host computer of client authentication (Authenticate), then the engineer need utilize manual mode to go to test.Yet if when having many clients need be with LDAP online, the time of test will be elongated, thereby causes the decrease in efficiency of testing.
Summary of the invention
Therefore, the invention provides authentication test method, authentication test system and have the workbench of function of authentication test, can carry out authentication test to a plurality of host computers rapidly and effectively.
The invention provides a kind of authentication test (Authentication) method, be suitable for when a computer system is set to the client of a ldap server, testing, it comprises and utilizes ldap server login (Login) computer system to be tested, and obtains one first detecting information.In addition, utilize verify data input computer system, and obtain one second detecting information.And according to first detecting information and second detecting information, the present invention can judge whether light weight catalog access protocol server can be authenticated by computer system.
From another viewpoint, the present invention also provides a kind of authentication test system, can test when online being set in a computer system with a remote server, it comprises a transceiver module, a processing module, a Telnet module and a machine (Native) login module.Transceiver module can couple processing module, and the input instruction or the output system information that are used for receiving the user are given the user.The Telnet module then can couple processing module and remote server, is used for controlling remote server login computer system, and login result is returned to this processing module.In addition, this machine login module also can couple processing module, imports computer system to utilize a verify data, and login result is returned to processing module.
From another viewpoint, the present invention also provides a kind of workbench with function of authentication test, comprises remote server and a plurality of host computer.Wherein, remote server can see through a network and online with remote server.In addition, an application program can be installed in one of them host computer.When this application program is performed, can make remote server login computer to be tested, and utilize a verify data to import computer to be tested again, carry out authentication test to treat test computer.
From another viewpoint, the invention provides another authentication test method, can be used for a plurality of computer systems, and these computer systems comprise a computer system to be tested.Authentication test method of the present invention comprises provides a remote server, with online with all computer systems, and utilizes remote server login computer system to be tested.In addition, the present invention can check whether remote server finishes login computer system to be tested.Can't login computer system to be tested when remote server, judge that then remote server can't be authenticated by computer system to be tested.
In addition, authentication test method provided by the present invention also comprises after checking that the remote server login is finished, and then makes remote server nullify (Logout) computer system to be tested, and utilizes verify data input computer system to be tested.In the time can't utilizing verify data to import computer system to be tested, judge that then remote server can't be authenticated by computer system to be tested.Relatively, when inspection utilizes verify data successfully to login computer system to be tested, judge that then remote server can be authenticated by computer system to be tested.
In certain embodiments, verify data comprises user's account number and user's password.
Because the present invention can utilize remote server and verify data to login computer system to be tested automatically, so the present invention can be rapidly and efficiently to carrying out authentication test with the online computer system of remote server.
For above and other objects of the present invention, feature and advantage can be become apparent, preferred embodiment cited below particularly, and conjunction with figs. are described in detail below.
Description of drawings
Fig. 1 illustrates the Organization Chart into a kind of network.
Fig. 2 illustrates and is the system block diagrams according to a kind of authentication test system of a preferred embodiment of the present invention.
Fig. 3 illustrates and is the system block diagrams according to a kind of Telnet module of a preferred embodiment of the present invention.
Fig. 4 illustrates and is the system block diagrams according to a kind of machine login module of a preferred embodiment of the present invention.
Fig. 5 illustrate is a kind of flow chart of steps of logining method of testing according to a preferred embodiment of the present invention.
Embodiment
Fig. 1 illustrates the Organization Chart into a kind of network.Please refer to Fig. 1, the network 100 in the present embodiment can be a LAN.In network 100, comprise remote server 102, it can be online with a plurality of clients, and for example 104,106,108.In the present embodiment, remote server 102 can be a ldap server, and it can provide the service of LDAP.In addition, 104,106 and 108 of clients can comprise a host computer respectively.When client 104,106 and 108 is will be with ldap server 102 online, need carry out initialized setting earlier, for example need to set network address, keeper, cipher mode, domain name of ldap server 102 or the like.
In addition, in the present embodiment, an authentication test system can be installed in the host computer of one of them client.This authentication test system can be an application program, and it can be set with ldap server 102 in client 104,106,108 and be performed when online, so that each client is carried out authentication test.
Fig. 2 illustrates and is the system block diagrams according to a kind of authentication test system of a preferred embodiment of the present invention.Please refer to Fig. 2, the authentication test system 200 that present embodiment provided comprises transceiver module 202, processing module 204, Telnet module 206 and this machine login module 208.Transceiver module 202 can couple processing module 204, and processing module 204 then can couple Telnet module 206 and this machine login module 208 respectively.Wherein, Telnet module 206 can also couple ldap server 212, and this ldap server 212 can be the remote server 102 among Fig. 1.208 of this machine login module can couple computer system to be measured 214 in addition, and this computer system 214 can be the computer system in the host computer of a client wherein among Fig. 1.
Fig. 3 illustrates and is the system block diagrams according to a kind of Telnet module of a preferred embodiment of the present invention.Please merge with reference to Fig. 2 and Fig. 3, Telnet module 206 can comprise command generation module 302, output module 304 and information extraction module 306.Command generation module 302 can couple processing module 204, and is coupled to ldap server 212 through output module 304.In addition, information extraction module 306 can couple ldap server 212 and processing module 204.
When Telnet module 206 processed modules 204 were called out, command generation module 302 can produce logging request instruction LIRQ and give output module 304, and delivers to ldap server 212 through output module.When ldap server 212 is received logging request instruction LIRQ, can be from Telnet computer system 214 to be tested.In addition, finish after the program of Telnet computer system 214 when ldap server 212, can produce a log-on message LIRS1, and this log-on message LIRS1 can be captured by information extraction module 306, and change into the corresponding detecting information TMS1 of output and give processing module 204, to carry out interpretation.
Suppose that processing module 204 learns that according to log-on message TMS1 ldap server 212 can't login computer system to be tested 214, then processing module 204 information that can see through the failure of transceiver module 202 authentication releases is given the user.Yet, when if processing module 204 learns that according to log-on message TMS1 ldap server 212 has successfully been logined computer system 214 to be tested, then again among some embodiment, processing module 204 can make instruction module 302 outputs one de-registration request instruction LORQ, and delivers to LDAO server 212 through output module 304.At this moment, ldap server 212 can instruct LORQ and nullify from computer system 214 according to de-registration request.
When 214 successes of ldap server 212 login computer systems, and after computer system 214 cancellations, processing module 202 can also be called out this machine login module 208.Fig. 4 illustrates and is the system block diagrams according to a kind of machine login module of a preferred embodiment of the present invention.Please refer to Fig. 4, this machine login module 208 can comprise verify data generation module 402, output module 404 and check module 406.Wherein, verify data generation module 402 can couple processing module 202, and is coupled to computer system to be tested 214 through output module 404.In addition, check that module 406 also can couple computer system 214, and couple processing module 202.
Please merge with reference to Fig. 2 and Fig. 4, when processing module 202 was called out this machine login module 208, verify data generation module 402 can be exported a verify data AD.Verify data AD can comprise user's account number and the user's password that will login computer system 214.After certified data generating module 402 outputs of this verify data AD, can see through output module 404 and deliver to computer system 214, with login computer system 214.Because in certain embodiments, authentication test system 200 can be installed in this locality (Local) end of computer system 214, or is installed in another computer system in the network 100.Therefore, this machine login module 208 can be utilized verify data AD and from the local side or the Telnet computer system 214 to be tested of computer system 214.
When this machine login module 208 when logining the program of computer system 214, check module 406 can check whether this machine login module 208 successfully logins computer system 214, and produce corresponding detecting information TMS2 and give processing module 202.If processing module 202 judges according to TMS2 when this machine login module 208 can't be utilized verify data AD login computer system 214, then processing module 202 information that can see through the failure of transceiver module 202 authentication releases is given the user.Relatively, if this machine login module 208 can utilize verify data AD successfully to login computer system 214, then processing module 202 can see through the information of transceiver module 202 authentication release successes to the user.
An arrangement is done in above narration, and the present invention also provides a kind of steps flow chart of logining method of testing, is used for testing a plurality of computer systems, illustrates as Fig. 5.Please refer to Fig. 5, in the present embodiment, can provide a remote server (for example ldap server) as described in the step S502, and online with all computer systems.At this moment, in certain embodiments, the present invention can provide an option interface to import to the user, and selects wherein a computer system to be used as computer system to be tested according to user's input, just as described in the step S504.
After computer system to be tested was chosen, the authentication test method of present embodiment can send a logging request to remote server, with as described in step S506, can utilize remote server login computer system to be tested.In addition, present embodiment can also check whether remote server can login computer system to be tested as described in the step S508.If remote server can't successfully be logined computer system to be tested (being exactly the "No" that step S508 is indicated), then represent test crash.In other words, be exactly that remote server can't be authenticated by computer system to be tested.
Relatively, if remote server can successfully be logined computer system to be tested (being exactly the "Yes" that step S508 is indicated), then present embodiment can carry out step S510, makes remote server nullify computer system to be tested exactly.At this moment, present embodiment can utilize verify data input computer system to be tested as described in the step S512.And this verify data just as mentioned above, can comprise required user's account number and the user's password of computer system that login is to be tested.Similarly, present embodiment can check whether to utilize verify data input computer system to be tested as described in the step S514.
In step S514,, then represent test crash if can't utilize verify data input computer system (being exactly the "No" that step S514 is indicated) to be tested.Otherwise,, then represent authentication success if can utilize verify data successfully to login computer system to be tested (being exactly the "Yes" that step S514 is indicated).In other words, be exactly that remote server can be authenticated by computer system to be tested.
In sum, owing to the present invention can utilize ldap server respectively and utilize verify data to login computer system to be tested, and produce detecting information respectively.By this, the present invention just can utilize the mode of analytical test information, also judges exactly whether ldap server can be authenticated by computer system to be tested rapidly.
Though the present invention discloses as above with preferred embodiment; right its is not in order to limiting the present invention, anyly has the knack of this skill person, without departing from the spirit and scope of the present invention; when can doing a little change and retouching, so protection scope of the present invention is when with being as the criterion that claim was defined.
Claims (17)
1. an authentication test method be suitable for testing when a computer system is set to the client of a light weight catalog access protocol server, and this authentication test method comprises the following steps:
Utilize this this computer system of light weight catalog access protocol server log, and obtain one first detecting information;
Utilize a verify data to import this computer system, and obtain one second detecting information; And
Judge according to this first detecting information and this second detecting information whether this light weight catalog access protocol server can be authenticated by this computer system.
2. method of testing as claimed in claim 1 is characterized in that, this verify data comprises user's account number and user's password.
3. method of testing as claimed in claim 1 is characterized in that, utilizes this verify data to import the step of this computer system, comprises from long-range or login this computer system from local side.
4. authentication test system is suitable for being set with a remote server in a computer system and tests when online, and this authentication test system comprises:
One transceiver module is in order to receive an input instruction and output one system information;
One processing module couples this transceiver module, in order to handle this input instruction and to control this transceiver module and export this system information;
One Telnet module couples this processing module and this remote server, with so that this remote server is logined this computer system, and login result is returned to this processing module; And
A machine login module couples this processing module, logins this computer system in order to utilize a verify data, and login result is returned to this processing module.
5. authentication test as claimed in claim 4 system is characterized in that this remote server is a light weight catalog access protocol server.
6. authentication test as claimed in claim 4 system is characterized in that this Telnet module comprises:
One command generation module couples this processing module, in order to produce logging request instruction;
One output module couples this command generation module and this remote server, in order to this remote server is delivered in this logging request instruction, logins this computer system to utilize this remote server; And
One information extraction module couples this remote server and this processing module, after logining this computer system at this remote server, captures a log-on message from this remote server, and produces corresponding detecting information to this processing module interpretation.
7. authentication test as claimed in claim 4 system is characterized in that this this machine login module comprises:
One verify data generation module is in order to provide this verify data;
One output module couples this verify data generation module, in order to this verify data is delivered to this computer system, to login this computer system; And
Whether one checks module, utilize verify data to import this computer system in order to inspection and finish, and the corresponding result of generation is carried out interpretation to processing module.
8. authentication test as claimed in claim 4 system is characterized in that this verify data comprises user's account number and user's password.
9. workbench with function of authentication test comprises:
One remote server; And
A plurality of host computers, it is online to see through a network and this remote server, and this host computer comprises a computer to be tested at least, and an application program be installed in those host computers at least one of them, when this application program is performed, can make this this computer to be tested of remote server login, and utilize this computer to be tested of verify data input, so that this computer to be tested is carried out authentication test.
10. workbench as claimed in claim 9 is characterized in that, this remote server is a light weight catalog access protocol server.
11. workbench as claimed in claim 9 is characterized in that, this network is a LAN.
12. workbench as claimed in claim 9 is characterized in that, this application program is selected those host computers according to a user input, and one of them is used as computer system to be tested.
13. an authentication test method be applicable to a plurality of computer systems, and those computer systems comprises a computer system to be tested, wherein this authentication test method comprises the following steps:
Provide a remote server, with online with those computer systems;
Utilize this remote server to login this computer system to be tested;
Check whether this remote server finishes this computer system to be tested of login; And
Can't login this computer system to be tested when this remote server, judge that then this remote server can't be this computer system to be tested authentication.
14. authentication test method as claimed in claim 13 is characterized in that, also comprises the following steps:
Finish when this remote server login, then make this remote server nullify this computer system to be tested;
Utilize this computer system to be tested of verify data input;
Whether check utilizes this verify data successfully to login this computer system to be tested;
When inspection can't utilize this verify data to import computer system to be tested, judge that then this remote server can't be this computer system to be tested authentication; And
When inspection utilizes this verify data successfully to login this computer system to be tested, judge that then this remote server is authenticated by this computer system to be tested.
15. authentication test method as claimed in claim 13 is characterized in that, comprises user's account number and user's password from this verify data.
16. authentication test method as claimed in claim 13 is characterized in that, also comprises the following steps:
Provide an option interface to import to the user; And
According to the instruction that this user imported, one of them is used as this computer system to be tested and select those computer systems.
17. authentication test method as claimed in claim 13 is characterized in that, this remote server is a light weight catalog access protocol server.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008101452246A CN101640618B (en) | 2008-07-28 | 2008-07-28 | Authentication test method and system, and network with function of authentication test |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008101452246A CN101640618B (en) | 2008-07-28 | 2008-07-28 | Authentication test method and system, and network with function of authentication test |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101640618A CN101640618A (en) | 2010-02-03 |
| CN101640618B true CN101640618B (en) | 2011-12-07 |
Family
ID=41615424
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2008101452246A Expired - Fee Related CN101640618B (en) | 2008-07-28 | 2008-07-28 | Authentication test method and system, and network with function of authentication test |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101640618B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105243017B (en) * | 2015-10-20 | 2018-09-28 | 上海斐讯数据通信技术有限公司 | The test method and system of debarkation authentication are carried out based on SSH agreements |
| CN110545264B (en) * | 2019-08-16 | 2021-09-03 | 苏州浪潮智能科技有限公司 | Method and device for automatically detecting LDAP authentication injection vulnerability |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1588897A (en) * | 2004-09-13 | 2005-03-02 | 深圳市中实科技有限公司 | Detecting and analyzing server, customer end and system for network digital communication signal |
| US7233927B1 (en) * | 2002-11-27 | 2007-06-19 | Microsoft Corporation | Method and system for authenticating accounts on a remote server |
| CN101114953A (en) * | 2007-07-03 | 2008-01-30 | 中兴通讯股份有限公司 | Automatized test method for broadband accessing server |
-
2008
- 2008-07-28 CN CN2008101452246A patent/CN101640618B/en not_active Expired - Fee Related
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7233927B1 (en) * | 2002-11-27 | 2007-06-19 | Microsoft Corporation | Method and system for authenticating accounts on a remote server |
| CN1588897A (en) * | 2004-09-13 | 2005-03-02 | 深圳市中实科技有限公司 | Detecting and analyzing server, customer end and system for network digital communication signal |
| CN101114953A (en) * | 2007-07-03 | 2008-01-30 | 中兴通讯股份有限公司 | Automatized test method for broadband accessing server |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101640618A (en) | 2010-02-03 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CA2881167C (en) | Authorization method, apparatus, and system | |
| US9602484B2 (en) | Online user account login method and a server system implementing the method | |
| WO2017016252A1 (en) | Token generation and authentication method, and authentication server | |
| CN103475726B (en) | A kind of virtual desktop management, server and client side | |
| US8955125B2 (en) | Snoop echo response extractor | |
| US9525848B2 (en) | Domain trusted video network | |
| TW201517559A (en) | Gateway configuration and management system and method | |
| TW201706901A (en) | Authentication method, apparatus, and system | |
| CN105162774B (en) | Virtual machine entry method, the virtual machine entry method and device for terminal | |
| JP4745965B2 (en) | Login method with multiple identifiers for instant messaging system | |
| CN105516171A (en) | Authentication service cluster-based portal keep-alive system, method, authentication system and method | |
| CN101640618B (en) | Authentication test method and system, and network with function of authentication test | |
| CN113225409A (en) | NAT load balancing access method, device and storage medium | |
| CN109905402B (en) | SSO login method and device based on SSL VPN | |
| CN103179089A (en) | System and method for identity authentication for accessing of different software development platforms | |
| CN110336824B (en) | Weak password detection method, detection control equipment and weak password detection system | |
| CN101674327A (en) | Heterogeneous system message integration method, framework and system | |
| JP2010033562A (en) | Communication terminal, authentication information generation device, authentication system, authentication information generation program, authentication information generation method and authentication method | |
| US20190294764A1 (en) | Method for remotely authorizing login to a computer system | |
| CN114499965B (en) | Internet surfing authentication method and system based on POP3 protocol | |
| CN105100107B (en) | The method and apparatus of agent client account certification | |
| WO2013034108A1 (en) | Cloud service establishment system and method | |
| CN108833608B (en) | Method for dynamically determining and changing server through password | |
| CN116418539A (en) | Identity authentication method, system, device, equipment and storage medium | |
| JP2006171923A (en) | Electronic application system equipped with individual specification function |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20111207 Termination date: 20160728 |