How to Capture SAML SSO and Menlo Authentication on Wireshark : Ask4key IT & Network Customer Support

How to Capture SAML SSO and Menlo Authentication on Wireshark Print

Created by: Customer Support

Modified on: Sun, 14 Aug, 2022 at 11:35 PM

How to Use Wireshark to Identify a List of Domains Connected via MSIP

Capture the PCAP file using Wireshark
Start Wireshark.
Open the PCAP capture file.
Enter the following query into the display filter, using the relevant port number for the configuration in the environment being investigated

Using SAML SSO on Port 3131

http.request.method == "CONNECT" and tcp.port==3131

Using Menlo Authentication on Port 3129

http.request.method == "CONNECT" and tcp.port==3129

Customer is the author of this solution article.

Did you find it helpful? Yes No

Help Desk Software by Freshdesk