a lil background story..:
In my company we are using IBM Cognos TM1 / IBM Cognos Analytics with BI Gateway for the authentification via SSO (we use a LDAP ApacheDS as Directory).
Since the restructure of the LDAP Directory, my shown username get weired long, its the whole entry DN with some special chars inside and my name, but not the UID (its clustered in a CN)
So the SSO is still working fine, now i started to sniff the traffic in the network and search the cookies for my user creditials, i found a SSO Cookie with a NEGOTIATE header string, is there a possiblity to decode this, so that i can see my username again which is send?
Thanks for the support
is there a possiblity to decode this, so that i can see my username again which is send?
Not really (not easily).
The Negotiate header implies using Kerberos, NTLM or SPNEGO protocol (search for it). They are multi-step protocols and the values should be encrypted.