Hi All,
We would like to enable SSO for SPlunk Enterprise instance without using SAML. if any one has tried the same or any other alternative solution to achieve the SSO please share?
Regards,
Shweta
Hi
this is doable with couple of steps. Basically you are needing couple of things:
- AD / Kerberos server
- Splunk running on Linux server(s)
- working kerberos config on those linux host
- Apache with
- mod_auth_kerb
- reverse proxy
- Some Splunk configuration
It seems that there are already guide how to do it in URL: https://sites.google.com/site/mrxpalmeiras/notes/configuring-splunk-with-kerberos-sso-via-apache-rev...
On SHC you can create own TA-sso-w-apache for those splunk configs (web.conf + server.conf). If I recall right currently the one can put those server.conf part to web.conf, but please check it from documentation.
That is quite similar what we are using in SHC cluster.
r. Ismo