How to include a JMeter script for a secure (https) application?
It is necessary to install the JMeter secure CA certificate in the browser before recording secure web applications with JMeter. The HTTP(S) test script recorder in JMeter can record the secure web application. Certificates are used in secure connections (HTTPS) to verify the identity of the connection between the web server and the browser. The server displays the certificate to the browser when establishing an HTTPS connection. The browser verifies that the server’s certificate is signed by a certificate authority (CA) connected to one of the built-in root CAs to verify the certificate. To enable a secure connection and intercept the HTTPS connection from the browser, JMeter must use its own certificate. JMeter essentially has to pretend to be the target server.
How to install a JMeter certificate in different browsers?
You can add the JMeter certificate in the appropriate browser by following the instructions below:
Google Chrome:
Access to Firefox settings.
Look for the phrase “View certificates” or select the “Privacy and security” tab.
See the “Certificates” section.
Select ‘View certificates’.
Click ‘Permissions’.
the “Import…” button.
Visit “ApacheJMeterTemporaryRootCA.crt” (located in apache-jmeter-X.X -> bin) to see it.
Select “Open”
Verify that the certificate details match those displayed by JMeter Test Script Recorder by clicking “View”.
Click OK to confirm your choice to “Trust this CA to identify websites”.
If necessary, press OK to end the calls.
Some important points regarding the Apache JMeter Root CA certificate:
When JMeter is started for recording, this certificate is automatically generated or updated.
The secure application or website is registered using the root CA certificate. This certificate is not required for non-secure applications.
The root CA certificate is valid for 7 days from the date of creation.
If a certificate expires, you can import a newly created certificate and remove the expired certificate from the browser.
The Apache JMeter /bin subdirectory contains the root CA certificate for JMeter.
