Client-Server Authentication Configurations

You instruct LoadRunner to apply client-server authentication by setting -check_client_cert to 1, using the Network and Security Manager - Command Line Tool. This setting forces the client machines to comply with the server certificates.

You must set this option on the machine acting as the server. For this reason, you need to determine which machine is acting as the server.

The following images illustrate three possibilities:

  • Controller--Load Generator Communication. In this environment, the load generator machine is the server and the Controller is the client. You activate the authentication on the load generator, and this enforces the security between the machines.

  • Controller--Load Generator--MI Listener Communication. In this environment, the MI Listener machine is the server and the Controller and load generators are the clients. You activate the authentication on the MI Listener machine and this enforces the security facing the Controller and load generators.

  • Controller--MI Listener--Load Generator--Monitor-Over-Firewall Communication. As in the previous environment, in this layout the MI Listener machine is the server. The Monitor over Firewall, Controller, and load generator machines are the clients. Once you activate authentication on the server—the MI Listener, it enforces the security on the other machines.

Back to top