Security

Single Dashboard without authentication

FritzWittwer_ol
Contributor

We are using LDAP for all authentications, but now I have to provide one single dashboard, which is loaded via an URL which contains some parameters, e.g.

https://splunk.xxxx.yyy/en-US/app/my-app/dashboard_mydb?form.Job=<JobId>&form.Env=<EnvID>.

I can't use an embedded report as the variables change in each request. This URL is called from the app and displayed in an internal webbrowser. Only a limited List of IP addresses should be able to call this URL without any authentication. We already have an Apache web server in front of your search head to provide access via standard SSL Port 443 even though our splunkd is not running as root.

The only solution I currently see is to setup an additional Apache web server and operate it as a proxy just for the URL above. Our search head could then accept single sign on requests for this proxy as documented in http://docs.splunk.com/Documentation/Splunk/6.1.5/Security/ConfigureSplunkSSO and have SSOmode set to Permissive, so the other Apache still allows the normal logon.

Looks like a rather complex setup just for this single dashboard, has anyone another solution implemented?

0 Karma

trsavela
Path Finder

I have to provide reports w/o auth as well, my solution was to use the JS SDK and provide a simple web page the users can hit.

There are some great examples you can build off of.

http://dev.splunk.com/view/javascript-sdk/SP-CAAAECM

0 Karma
Get Updates on the Splunk Community!

Index This | I am a number, but when you add ‘G’ to me, I go away. What number am I?

March 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...

What’s New in Splunk App for PCI Compliance 5.3.1?

The Splunk App for PCI Compliance allows customers to extend the power of their existing Splunk solution with ...

Extending Observability Content to Splunk Cloud

Register to join us !   In this Extending Observability Content to Splunk Cloud Tech Talk, you'll see how to ...