PowerShell Script to Simulate Outlook Web Access URL User Logon

Recently I came across with a requirement to do user logon synthetic transaction on Outlook Web Access URL and capture its performance. This can be accomplished using Invoke-WebRequest PowerShell command let. The command let returns form elements which needs to be filled with username and password and the login page is invoked with the post data. The output is analyzed for successful login and logon results are returned.

001
002
003
004
005
006
007
008
009
010
011
012
013
014
015
016
017
018
019
020
021
022
023
024
025
026
027
028
029
030
031
032
033
034
035
036
037
038
039
040
041
042
043
044
045
046
047
048
049
050
051
052
053
054
055
056
057
058
059
060
061
062
063
064
065
066
067
068
069
070
071
072
073
074
075
076
077
078
079
080
081
082
083
084
085
086
087
088
089
090
091
092
093
094
095
096
097
098
099
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120

#Parameters Block
 #URL = "https://myserver.mydoamin.com/owa
 param(
  [Parameter(Mandatory=$true)]
  $URL,
  [Parameter(Mandatory=$true)]
  $Domain,
  [Parameter(Mandatory=$true)]
  $Username,
  [Parameter(Mandatory=$true)]
  $Password
 )
 #Initialize default values
 $Result = $False
 $StatusCode = 0
 $Latency = 0
 $Username = $Domain + "\" + $Username
 try{
 #########################
 #Work around to Trust All Certificates is is from this post
 add-type @"
     using System.Net;
     using System.Security.Cryptography.X509Certificates;
     public class TrustAllCertsPolicy : ICertificatePolicy {
         public bool CheckValidationResult(
             ServicePoint srvPoint, X509Certificate certificate,
             WebRequest request, int certificateProblem) {
             return true;
        }
    }
 "@
 [System.Net.ServicePointManager]::CertificatePolicy = New-Object TrustAllCertsPolicy
 #Initialize Stop Watch to calculate the latency.
 $StopWatch = [system.diagnostics.stopwatch]::startNew()
 #Invoke the login page
 $Response = Invoke-WebRequest -Uri $URL -SessionVariable owa
 #Login Page - Fill Logon Form
 if ($Response.forms[0].id -eq "logonform") {
 $Form = $Response.Forms[0]
 $Form.fields.username= $Username
 $form.Fields.password= $Password
 $authpath = "$URL/auth/owaauth.dll"
 #Login to OWA
 $Response = Invoke-WebRequest -Uri $authpath -WebSession $owa -Method POST -Body $Form.Fields
 #SuccessfulLogin 
 if ($Response.forms[0].id -eq "frm") {
   #Retrieve Status Code
   $StatusCode = $Response.StatusCode
   # Logoff Session
   $logoff = "$URL/auth/logoff.aspx?Cmd=logoff&src=exch"
   $Response = Invoke-WebRequest -Uri $logoff -WebSession $owa
   #Calculate Latency
   $StopWatch.stop()
   $Latency = $StopWatch.Elapsed.TotalSeconds
   $Result = $True
 }
 #Fill Out Language Form, if it is first login
 elseif ($Response.forms[0].id -eq "lngfrm") {
   $Form = $Response.Forms[0]
   #Set Default Values
   $Form.Fields.add("lcid",$Response.ParsedHtml.getElementById("selLng").value)
   $Form.Fields.add("tzid",$Response.ParsedHtml.getElementById("selTZ").value)
   $langpath = "$URL/lang.owa"
   $Response = Invoke-WebRequest -Uri $langpath -WebSession $owa -Method $form.Method -Body $form.fields
   #Retrieve Status Code
   $StatusCode = $Response.StatusCode
   # Logoff Session
   $logoff = "$URL/auth/logoff.aspx?Cmd=logoff&src=exch"
   $Response = Invoke-WebRequest -Uri $logoff -WebSession $owa
   #Calculate Latency
   $StopWatch.stop()
   $Latency = $StopWatch.Elapsed.TotalSeconds
   $Result = $True
 }
 elseif ($Response.forms[0].id -eq "logonform") {
   #We are still in LogonPage
   #Retrieve Status Code
   $StatusCode = $Response.StatusCode
   #Calculate Latency
   $StopWatch.stop()
   $Latency = $StopWatch.Elapsed.TotalSeconds
   $Result = "Failed to logon $username. Check the password or account."
 }
 }
 }
 #Catch Exception, If any
 catch
 {
   #Retrieve Status Code
   $StatusCode = $Response.StatusCode
   if ($StatusCode -notmatch '\d\d\d') {$StatusCode = 0}
   #Calculate Latency
   $StopWatch.stop()
   $Latency = $StopWatch.Elapsed.TotalSeconds
   $Result = $_.Exception.Message
 }
 #Display Results
 Write-Host "Status Code: $StatusCode`nResult: $Result`nLatency: $Latency Seconds"

Happy Blogging..

Comments (9)

Cancel reply

Gowdhaman Karthikeyan says:

July 23, 2017 at 10:37 am

Updated the script with logoff section.

Gowdhaman Karthikeyan says:

July 23, 2017 at 10:37 am

Are you using Exchange OWA other than 2010?

Teodora Sharkova says:

July 23, 2017 at 10:37 am

Great article.

turbomcp says:

March 6, 2015 at 2:03 pm

thanks for sharing very useful

Mani says:

March 10, 2015 at 5:29 am

Great article. Wish I had this for a previous project.

JC says:

March 31, 2015 at 4:13 am

Thanks for sharing.
I'm trying to monitor OWA mailbox from internet, it might help. the only problem i'm facing is too many sessions created. is it possible to logout the owa session at the end of the script executed?
after several attempts, the owa shows TooManyObjectsOpenedException error

JC says:

April 1, 2015 at 10:12 am

Hi Gowdhaman,
Somehow the exchange server remember the logon sessions and TooManyObjectsOpenedException still occur after running the script 4-5 times in batch. Anyway thanks again. It is the greatest code available on the web.
John

JC says:

April 2, 2015 at 2:15 am

Just noted that the code is for exchange 2010, so I quickly do a test and found that it works perfectly with OWA 2010.
Since our system is running on Exchange 2013, when I log in to OWA 2013 in browser, and paste https:///owa/auth/logoff.aspx?cmd=logoff&src=exch, the message displays "You have successfully signed out of Outlook Web App. To help protect your e-mail account,
close all browser windows". However, when I reopen the https://, it's found that the mailbox still accessible, unless all browser windows are closed. not sure if 2013 handle the logoff in different way.

sridhar says:

November 3, 2015 at 3:01 pm

hi just want to know this code will work in Solarwinds..