[Check_mk (english)] check_mk : URL Monitoring : Check HTTPS login doesn't work

Hi

We have created a rule to monitor the URL for our internal application with Login ,the observation what we found is we are able to monitor the URL but we are not sure if the
Authorisation for the url monitoring works. The rule is monitoring only the url not the login because providing incorrect login credentials also shows the url check is healthy and Green.

Can you Please help us to configure the rule which can monitor the Application URL with Application Login ?

Please find that I have attached screenshot of the configuration.

Thanks,

Chaitanya

check_mk.jpg

Hi Chaitanya,

This will only work if your site is using basic http authentication.

If the site uses a form to login then you also need a check to fill the form data and transmit it.

How does the login to your page looks like?

Best regards

Andreas

···

Kuppa, Chaitanya (Reigate) Chaitanya.Kuppa@willistowerswatson.com schrieb am Do., 14. Nov. 2019, 11:36:

Hi

We have created a rule to monitor the URL for our internal application with Login ,the observation what we found is we are able to monitor the URL but we are not sure if the
Authorisation for the url monitoring works. The rule is monitoring only the url not the login because providing incorrect login credentials also shows the url check is healthy and Green.

Can you Please help us to configure the rule which can monitor the Application URL with Application Login ?

Please find that I have attached screenshot of the configuration.

Thanks,

Chaitanya

Notice of Confidentiality

This email contains confidential material prepared for the intended addressees only and it may contain intellectual property of Willis Towers Watson, its affiliates or a third party. This material may not be suitable for, and we accept no responsibility for,
use in any context or for any purpose other than for the intended context and purpose. If you are not the intended recipient or if we did not authorize your receipt of this material, any use, distribution or copying of this material is strictly prohibited
and may be unlawful. If you have received this communication in error, please return it to the original sender with the subject heading “Received in error,” then delete any copies.

You may receive direct marketing communications from Willis Towers Watson. If so, you have the right to opt out of these communications. You can opt out of these communications or request a copy of Willis Towers Watson’s privacy notice by emailing
unsubscribe@willistowerswatson.com.

Towers Watson Limited is a limited liability company registered in England and Wales under registered number 5379716.

Towers Watson Investment Management Limited is a limited liability company registered in England and Wales under registered number 05534464.

Registered address: Watson House, London Road, Reigate, Surrey, RH2 9PQ United Kingdom.

Towers Watson Limited and Towers Watson Investment Management Limited are authorised and regulated by the Financial Conduct Authority.


checkmk-en mailing list

checkmk-en@lists.mathias-kettner.de

Manage your subscription or unsubscribe

https://lists.mathias-kettner.de/cgi-bin/mailman/listinfo/checkmk-en

Hi Andreas,

Yes we are using basic Authentication , If you look at our login it just asks for username and password. Its doesn’t ask for any other
information.

Hope this answers your question. Please let us know your inputs.

Thanks,

Chaitanya

···

Hi Chaitanya,

This will only work if your site is using basic http authentication.

If the site uses a form to login then you also need a check to fill the form data and transmit it.

How does the login to your page looks like?

Best regards

Andreas

Kuppa, Chaitanya (Reigate) Chaitanya.Kuppa@willistowerswatson.com schrieb am Do., 14. Nov. 2019, 11:36:

Hi

We have created a rule to monitor the URL for our internal application with Login ,the observation what we found is
we are able to monitor the URL but we are not sure if the Authorisation for the url monitoring works. The rule is monitoring only the url not the login because providing incorrect login credentials also shows the url check is healthy and Green.

Can you Please help us to configure the rule which can monitor the Application URL with Application Login ?

Please find that I have attached screenshot of the configuration.

Thanks,

Chaitanya

Notice of Confidentiality

This email contains confidential material prepared for the intended addressees only and it may contain intellectual property of Willis Towers Watson, its affiliates or a third party. This material may not be suitable for, and we accept no responsibility for,
use in any context or for any purpose other than for the intended context and purpose. If you are not the intended recipient or if we did not authorize your receipt of this material, any use, distribution or copying of this material is strictly prohibited
and may be unlawful. If you have received this communication in error, please return it to the original sender with the subject heading “Received in error,” then delete any copies.

You may receive direct marketing communications from Willis Towers Watson. If so, you have the right to opt out of these communications. You can opt out of these communications or request a copy of Willis Towers Watson’s privacy notice by emailing
unsubscribe@willistowerswatson.com.

Towers Watson Limited is a limited liability company registered in England and Wales under registered number 5379716.

Towers Watson Investment Management Limited is a limited liability company registered in England and Wales under registered number 05534464.

Registered address: Watson House, London Road, Reigate, Surrey, RH2 9PQ United Kingdom.

Towers Watson Limited and Towers Watson Investment Management Limited are authorised and regulated by the Financial Conduct Authority.


checkmk-en mailing list
checkmk-en@lists.mathias-kettner.de
Manage your subscription or unsubscribe
https://lists.mathias-kettner.de/cgi-bin/mailman/listinfo/checkmk-en

That is no basic Auth. This is a form you need to fill. Basic Auth is a popup requesting a username and password.

Best regards

Andreas

···

Kuppa, Chaitanya (Reigate) Chaitanya.Kuppa@willistowerswatson.com schrieb am Do., 14. Nov. 2019, 15:36:

Hi Andreas,

Yes we are using basic Authentication , If you look at our login it just asks for username and password. Its doesn’t ask for any other
information.

Hope this answers your question. Please let us know your inputs.

Thanks,

Chaitanya

From: Andreas Döhler [mailto:andreas.doehler@gmail.com]
Sent: 14 November 2019 10:55
To: Kuppa, Chaitanya (Reigate) Chaitanya.Kuppa@willistowerswatson.com
Cc: checkmk-en@lists.mathias-kettner.de checkmk-en@lists.mathias-kettner.de
Subject: Re: [Check_mk (english)] check_mk : URL Monitoring : Check HTTPS login doesn’t work

Hi Chaitanya,

This will only work if your site is using basic http authentication.

If the site uses a form to login then you also need a check to fill the form data and transmit it.

How does the login to your page looks like?

Best regards

Andreas

Kuppa, Chaitanya (Reigate) Chaitanya.Kuppa@willistowerswatson.com schrieb am Do., 14. Nov. 2019, 11:36:

Hi

We have created a rule to monitor the URL for our internal application with Login ,the observation what we found is
we are able to monitor the URL but we are not sure if the Authorisation for the url monitoring works. The rule is monitoring only the url not the login because providing incorrect login credentials also shows the url check is healthy and Green.

Can you Please help us to configure the rule which can monitor the Application URL with Application Login ?

Please find that I have attached screenshot of the configuration.

Thanks,

Chaitanya

Notice of Confidentiality

This email contains confidential material prepared for the intended addressees only and it may contain intellectual property of Willis Towers Watson, its affiliates or a third party. This material may not be suitable for, and we accept no responsibility for,
use in any context or for any purpose other than for the intended context and purpose. If you are not the intended recipient or if we did not authorize your receipt of this material, any use, distribution or copying of this material is strictly prohibited
and may be unlawful. If you have received this communication in error, please return it to the original sender with the subject heading “Received in error,” then delete any copies.

You may receive direct marketing communications from Willis Towers Watson. If so, you have the right to opt out of these communications. You can opt out of these communications or request a copy of Willis Towers Watson’s privacy notice by emailing
unsubscribe@willistowerswatson.com.

Towers Watson Limited is a limited liability company registered in England and Wales under registered number 5379716.

Towers Watson Investment Management Limited is a limited liability company registered in England and Wales under registered number 05534464.

Registered address: Watson House, London Road, Reigate, Surrey, RH2 9PQ United Kingdom.

Towers Watson Limited and Towers Watson Investment Management Limited are authorised and regulated by the Financial Conduct Authority.


checkmk-en mailing list
checkmk-en@lists.mathias-kettner.de
Manage your subscription or unsubscribe
https://lists.mathias-kettner.de/cgi-bin/mailman/listinfo/checkmk-en

Notice of Confidentiality

This email contains confidential material prepared for the intended addressees only and it may contain intellectual property of Willis Towers Watson, its affiliates or a third party. This material may not be suitable for, and we accept no responsibility for,
use in any context or for any purpose other than for the intended context and purpose. If you are not the intended recipient or if we did not authorize your receipt of this material, any use, distribution or copying of this material is strictly prohibited
and may be unlawful. If you have received this communication in error, please return it to the original sender with the subject heading “Received in error,” then delete any copies.

You may receive direct marketing communications from Willis Towers Watson. If so, you have the right to opt out of these communications. You can opt out of these communications or request a copy of Willis Towers Watson’s privacy notice by emailing
unsubscribe@willistowerswatson.com.

Towers Watson Limited is a limited liability company registered in England and Wales under registered number 5379716.

Towers Watson Investment Management Limited is a limited liability company registered in England and Wales under registered number 05534464.

Registered address: Watson House, London Road, Reigate, Surrey, RH2 9PQ United Kingdom.

Towers Watson Limited and Towers Watson Investment Management Limited are authorised and regulated by the Financial Conduct Authority.

Hi Andreas,

Thanks for your response.

Could you please let us know If Check_MK can monitor the login form by checking the login page is working using the provided username
and password?

Also Can Check_MK have the capability to perform synthetic monitoring?

Thanks,

Chaitanya

···

That is no basic Auth. This is a form you need to fill. Basic Auth is a popup requesting a username and password.

Best regards

Andreas

Kuppa, Chaitanya (Reigate) Chaitanya.Kuppa@willistowerswatson.com schrieb am Do., 14. Nov. 2019, 15:36:

Hi Andreas,

Yes we are using basic Authentication , If you look at our login it just asks for username and password.
Its doesn’t ask for any other information.

Hope this answers your question. Please let us know your inputs.

Thanks,

Chaitanya

From: Andreas
Döhler [mailto:andreas.doehler@gmail.com]
Sent: 14 November 2019 10:55
To: Kuppa, Chaitanya (Reigate) Chaitanya.Kuppa@willistowerswatson.com
Cc: checkmk-en@lists.mathias-kettner.de checkmk-en@lists.mathias-kettner.de
Subject: Re: [Check_mk (english)] check_mk : URL Monitoring : Check HTTPS login doesn’t work

Hi Chaitanya,

This will only work if your site is using basic http authentication.

If the site uses a form to login then you also need a check to fill the form data and transmit it.

How does the login to your page looks like?

Best regards

Andreas

Kuppa, Chaitanya (Reigate) Chaitanya.Kuppa@willistowerswatson.com schrieb am Do., 14. Nov. 2019, 11:36:

Hi

We have created a rule to monitor the URL for our internal application with Login ,the observation what we found is
we are able to monitor the URL but we are not sure if the Authorisation for the url monitoring works. The rule is monitoring only the url not the login because providing incorrect login credentials also shows the url check is healthy and Green.

Can you Please help us to configure the rule which can monitor the Application URL with Application Login ?

Please find that I have attached screenshot of the configuration.

Thanks,

Chaitanya

Notice of Confidentiality

This email contains confidential material prepared for the intended addressees only and it may contain intellectual property of Willis Towers Watson, its affiliates or a third party. This material may not be suitable for, and we accept no responsibility for,
use in any context or for any purpose other than for the intended context and purpose. If you are not the intended recipient or if we did not authorize your receipt of this material, any use, distribution or copying of this material is strictly prohibited
and may be unlawful. If you have received this communication in error, please return it to the original sender with the subject heading “Received in error,” then delete any copies.

You may receive direct marketing communications from Willis Towers Watson. If so, you have the right to opt out of these communications. You can opt out of these communications or request a copy of Willis Towers Watson’s privacy notice by emailing
unsubscribe@willistowerswatson.com.

Towers Watson Limited is a limited liability company registered in England and Wales under registered number 5379716.

Towers Watson Investment Management Limited is a limited liability company registered in England and Wales under registered number 05534464.

Registered address: Watson House, London Road, Reigate, Surrey, RH2 9PQ United Kingdom.

Towers Watson Limited and Towers Watson Investment Management Limited are authorised and regulated by the Financial Conduct Authority.


checkmk-en mailing list
checkmk-en@lists.mathias-kettner.de
Manage your subscription or unsubscribe
https://lists.mathias-kettner.de/cgi-bin/mailman/listinfo/checkmk-en

Notice of Confidentiality

This email contains confidential material prepared for the intended addressees only and it may contain intellectual property of Willis Towers Watson, its affiliates or a third party. This material may not be suitable for, and we accept no responsibility for,
use in any context or for any purpose other than for the intended context and purpose. If you are not the intended recipient or if we did not authorize your receipt of this material, any use, distribution or copying of this material is strictly prohibited
and may be unlawful. If you have received this communication in error, please return it to the original sender with the subject heading “Received in error,” then delete any copies.

You may receive direct marketing communications from Willis Towers Watson. If so, you have the right to opt out of these communications. You can opt out of these communications or request a copy of Willis Towers Watson’s privacy notice by emailing
unsubscribe@willistowerswatson.com.

Towers Watson Limited is a limited liability company registered in England and Wales under registered number 5379716.

Towers Watson Investment Management Limited is a limited liability company registered in England and Wales under registered number 05534464.

Registered address: Watson House, London Road, Reigate, Surrey, RH2 9PQ United Kingdom.

Towers Watson Limited and Towers Watson Investment Management Limited are authorised and regulated by the Financial Conduct Authority.

Hi Chaitanya,

that is not the question if CheckMK can do it. This is done with classic check plugins like the check_http. For the submission of HTTP forms you can take a look at

the plugin “check_form_submit”. This check can also be configured inside WATO → “Check HTML Form Submit”.

If this is not working with your use case you can also use other Nagios compatible active checks. But I have no good example at the moment.

Best regards

Andreas

···

Am Fr., 15. Nov. 2019 um 13:34 Uhr schrieb Kuppa, Chaitanya (Reigate) Chaitanya.Kuppa@willistowerswatson.com:

Hi Andreas,

Thanks for your response.

Could you please let us know If Check_MK can monitor the login form by checking the login page is working using the provided username
and password?

Also Can Check_MK have the capability to perform synthetic monitoring?

Thanks,

Chaitanya

From: Andreas Döhler [mailto:andreas.doehler@gmail.com]
Sent: 14 November 2019 14:41
To: Kuppa, Chaitanya (Reigate) Chaitanya.Kuppa@willistowerswatson.com
Cc: checkmk-en@lists.mathias-kettner.de checkmk-en@lists.mathias-kettner.de
Subject: Re: [Check_mk (english)] check_mk : URL Monitoring : Check HTTPS login doesn’t work

That is no basic Auth. This is a form you need to fill. Basic Auth is a popup requesting a username and password.

Best regards

Andreas

Kuppa, Chaitanya (Reigate) Chaitanya.Kuppa@willistowerswatson.com schrieb am Do., 14. Nov. 2019, 15:36:

Hi Andreas,

Yes we are using basic Authentication , If you look at our login it just asks for username and password.
Its doesn’t ask for any other information.

Hope this answers your question. Please let us know your inputs.

Thanks,

Chaitanya

From: Andreas
Döhler [mailto:andreas.doehler@gmail.com]
Sent: 14 November 2019 10:55
To: Kuppa, Chaitanya (Reigate) Chaitanya.Kuppa@willistowerswatson.com
Cc: checkmk-en@lists.mathias-kettner.de checkmk-en@lists.mathias-kettner.de
Subject: Re: [Check_mk (english)] check_mk : URL Monitoring : Check HTTPS login doesn’t work

Hi Chaitanya,

This will only work if your site is using basic http authentication.

If the site uses a form to login then you also need a check to fill the form data and transmit it.

How does the login to your page looks like?

Best regards

Andreas

Kuppa, Chaitanya (Reigate) Chaitanya.Kuppa@willistowerswatson.com schrieb am Do., 14. Nov. 2019, 11:36:

Hi

We have created a rule to monitor the URL for our internal application with Login ,the observation what we found is
we are able to monitor the URL but we are not sure if the Authorisation for the url monitoring works. The rule is monitoring only the url not the login because providing incorrect login credentials also shows the url check is healthy and Green.

Can you Please help us to configure the rule which can monitor the Application URL with Application Login ?

Please find that I have attached screenshot of the configuration.

Thanks,

Chaitanya

Notice of Confidentiality

This email contains confidential material prepared for the intended addressees only and it may contain intellectual property of Willis Towers Watson, its affiliates or a third party. This material may not be suitable for, and we accept no responsibility for,
use in any context or for any purpose other than for the intended context and purpose. If you are not the intended recipient or if we did not authorize your receipt of this material, any use, distribution or copying of this material is strictly prohibited
and may be unlawful. If you have received this communication in error, please return it to the original sender with the subject heading “Received in error,” then delete any copies.

You may receive direct marketing communications from Willis Towers Watson. If so, you have the right to opt out of these communications. You can opt out of these communications or request a copy of Willis Towers Watson’s privacy notice by emailing
unsubscribe@willistowerswatson.com.

Towers Watson Limited is a limited liability company registered in England and Wales under registered number 5379716.

Towers Watson Investment Management Limited is a limited liability company registered in England and Wales under registered number 05534464.

Registered address: Watson House, London Road, Reigate, Surrey, RH2 9PQ United Kingdom.

Towers Watson Limited and Towers Watson Investment Management Limited are authorised and regulated by the Financial Conduct Authority.


checkmk-en mailing list
checkmk-en@lists.mathias-kettner.de
Manage your subscription or unsubscribe
https://lists.mathias-kettner.de/cgi-bin/mailman/listinfo/checkmk-en

Notice of Confidentiality

This email contains confidential material prepared for the intended addressees only and it may contain intellectual property of Willis Towers Watson, its affiliates or a third party. This material may not be suitable for, and we accept no responsibility for,
use in any context or for any purpose other than for the intended context and purpose. If you are not the intended recipient or if we did not authorize your receipt of this material, any use, distribution or copying of this material is strictly prohibited
and may be unlawful. If you have received this communication in error, please return it to the original sender with the subject heading “Received in error,” then delete any copies.

You may receive direct marketing communications from Willis Towers Watson. If so, you have the right to opt out of these communications. You can opt out of these communications or request a copy of Willis Towers Watson’s privacy notice by emailing
unsubscribe@willistowerswatson.com.

Towers Watson Limited is a limited liability company registered in England and Wales under registered number 5379716.

Towers Watson Investment Management Limited is a limited liability company registered in England and Wales under registered number 05534464.

Registered address: Watson House, London Road, Reigate, Surrey, RH2 9PQ United Kingdom.

Towers Watson Limited and Towers Watson Investment Management Limited are authorised and regulated by the Financial Conduct Authority.

Notice of Confidentiality

This email contains confidential material prepared for the intended addressees only and it may contain intellectual property of Willis Towers Watson, its affiliates or a third party. This material may not be suitable for, and we accept no responsibility for,
use in any context or for any purpose other than for the intended context and purpose. If you are not the intended recipient or if we did not authorize your receipt of this material, any use, distribution or copying of this material is strictly prohibited
and may be unlawful. If you have received this communication in error, please return it to the original sender with the subject heading “Received in error,” then delete any copies.

You may receive direct marketing communications from Willis Towers Watson. If so, you have the right to opt out of these communications. You can opt out of these communications or request a copy of Willis Towers Watson’s privacy notice by emailing
unsubscribe@willistowerswatson.com.

Towers Watson Limited is a limited liability company registered in England and Wales under registered number 5379716.

Towers Watson Investment Management Limited is a limited liability company registered in England and Wales under registered number 05534464.

Registered address: Watson House, London Road, Reigate, Surrey, RH2 9PQ United Kingdom.

Towers Watson Limited and Towers Watson Investment Management Limited are authorised and regulated by the Financial Conduct Authority.