There are many load testing systems out there (e.g. Load Runner (www.mercury.com), AdventNet Qengine) for Web based apps and custom Application code for .NET. My question is there any way to test for multiple login behaviour in active directory? For example I need to run 1000s of concurrent users for a test against a DC which would mimic the following (generalized):
A Machine Boots Up
- Queries DNS for SRV Records (AD Integrated DNS)
- Determines Site Information
- Checks Time Services SNTP
- Authenticates a Machine Account which gains a Kerberos Token, session and SID/RIDs from Group Membership(s)
- Checks for Slow Link Detection from GPO via ICMP
- Binds to sysvol - a DC now keeps track of this CIFS or SMB Share State
- Checks Machine GPO Settings using standard LSDOU (minus the L in this case)
- Checks for any published MSI Jobs
User Logs In
- Authenticates a User Account which gains a Kerberos Token, session and SID/RID Package from Group Membership
- Checks User GPO Settings using LSDOU (minus the L in this case)
- Checks for MSI Jobs
- Process Login Script - regardless of size and spawning mechanisms it would still need to run the first bind and connection from the DC
<Rest of the life of the session>
- Kerberos rechecked every half life or four hours
- SNTP rechecked at timed intervals
- GPOs applied every 30-90 minutes in random fashion
I know that I have not even touched E2k3 or other AD based application which may also want to communicate via LDAP Process calls etc. but for now, it is out of scope.
AFAIK - simulators cannot come close to this type of check, only one liners such as Kerberos tickets, or HTTP requests - all based on non stateful connections and even then it would be in a sequential format, user1, then user2, then user3 and so forth not user1.2.3 at the same exact time. The only way I know how to do this would be to have 1000s of physical (or virtual) machines login to hit the DC at once to come close to the full sequence above.
Any suggestions?
Many thanks
Jon
Visit our website at http://www.ubs.com This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.
E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. This message is provided for informational purposes and should not be construed as a solicitation or offer to buy or sell any securities or related financial instruments.
