What key parameters are extracted by the vCenter_ExtraCertFromMdb.py script and how are they used in SAML authentication?
The script extracts the domain, idp_cert, trusted_cert_1, and trusted_cert_2. These parameters are used to forge a SAML request for an administrator user: the domain and certificates are employed by the SAML login tool (vcenter_saml_login.py) to authenticate against the vCenter server and obtain an administrator JSESSIONID cookie.
---
**Related reading:**
- vSphere Development Guide 6 - vCenter SAML Certificates — original article
- Covenant Utilization Analysis
- ADAudit Plus Exploitation Analysis — Data Encryption Analysis
- Domain Penetration - Executing Programs on Remote Systems Using DCOM
---
**Related reading:**
- vSphere Development Guide 6 - vCenter SAML Certificates — original article
- Covenant Utilization Analysis
- ADAudit Plus Exploitation Analysis — Data Encryption Analysis
- Domain Penetration - Executing Programs on Remote Systems Using DCOM
vCenter_ExtraCertFromMdb.pydomainidp_certtrusted_certSAML request