On a recent project, I was tasked with load testing a website which was currently under development. This article reviews some challenges encountered with ADFS authentication and the approach taken to overcome them.
The website being developed utilized ADFS security which had already been implemented. I used Visual Studio to create a web performance test (WPT). Unfortunately, the freshly recorded WPT wouldn’t successfully execute; it was failing on the authentication calls into ADFS. So much for a quick an easy solution, right? So it’s off to Google to search for helpful articles. Ironically, the article that ended up being the most helpful was one written by Deliveron’s Mike Douglas’ which provided a portion of the approach that would be needed.
In conclusion, ADFS authentication can prove challenging to overcome in load tests. ADFS implementations vary greatly from network to network, and in our case we had to get creative in discovering how to get around this. Chrome’s Network profiler and SAML Tracer for Firefox were integral to learning how authentication was taking place. Lastly, and in addition to leveraging some new tools. I was able to incorporate knowledge from a colleague to weave together a solution that got the job done.