Security

Single Dashboard without authentication

FritzWittwer
Contributor

We are using LDAP for all authentications, but now I have to provide one single dashboard, which is loaded via an URL which contains some parameters, e.g.

https://splunk.xxxx.yyy/en-US/app/my-app/dashboard_mydb?form.Job=<JobId>&form.Env=<EnvID>.

I can't use an embedded report as the variables change in each request. This URL is called from the app and displayed in an internal webbrowser. Only a limited List of IP addresses should be able to call this URL without any authentication. We already have an Apache web server in front of your search head to provide access via standard SSL Port 443 even though our splunkd is not running as root.

The only solution I currently see is to setup an additional Apache web server and operate it as a proxy just for the URL above. Our search head could then accept single sign on requests for this proxy as documented in http://docs.splunk.com/Documentation/Splunk/6.1.5/Security/ConfigureSplunkSSO and have SSOmode set to Permissive, so the other Apache still allows the normal logon.

Looks like a rather complex setup just for this single dashboard, has anyone another solution implemented?

0 Karma

trsavela
Path Finder

I have to provide reports w/o auth as well, my solution was to use the JS SDK and provide a simple web page the users can hit.

There are some great examples you can build off of.

http://dev.splunk.com/view/javascript-sdk/SP-CAAAECM

0 Karma
Get Updates on the Splunk Community!

.conf24 | Registration Open!

Hello, hello! I come bearing good news: Registration for .conf24 is now open!   conf is Splunk’s rad annual ...

Splunk is officially part of Cisco

Revolutionizing how our customers build resilience across their entire digital footprint.   Splunk ...

Splunk APM & RUM | Planned Maintenance March 26 - March 28, 2024

There will be planned maintenance for Splunk APM and RUM between March 26, 2024 and March 28, 2024 as ...