https://community.splunk.com/t5/Security/SSO-with-web-application-firewall-and-SAML/m-p/50739#M1660 <P>Not at this moment. </P> <P>According to my iterations with Splunk support with regards to running Splunk (GUI) behind a firewall/proxy that handles authentication and general authorization, SAML might be implemented in the future.</P> <P>My best bet is for you to either either do a scripted authentication hack - or, if you are using LDAP as the source for your user database, enable this in Splunk. The latter is probably the least painful solution.</P> Fri, 13 Jan 2012 10:05:24 GMT RubenOlsen 2012-01-13T10:05:24Z https://community.splunk.com/t5/Security/SSO-with-web-application-firewall-and-SAML/m-p/50738#M1659 <P>I am investigating placing Splunk behind a web application firewall that handles authentication and general authorization.</P> <P>Is there a way for Splunk to handle a SAML assertion?</P> Fri, 13 Jan 2012 09:25:23 GMT https://community.splunk.com/t5/Security/SSO-with-web-application-firewall-and-SAML/m-p/50738#M1659 dominiquevocat 2012-01-13T09:25:23Z https://community.splunk.com/t5/Security/SSO-with-web-application-firewall-and-SAML/m-p/50739#M1660 <P>Not at this moment. </P> <P>According to my iterations with Splunk support with regards to running Splunk (GUI) behind a firewall/proxy that handles authentication and general authorization, SAML might be implemented in the future.</P> <P>My best bet is for you to either either do a scripted authentication hack - or, if you are using LDAP as the source for your user database, enable this in Splunk. The latter is probably the least painful solution.</P> Fri, 13 Jan 2012 10:05:24 GMT https://community.splunk.com/t5/Security/SSO-with-web-application-firewall-and-SAML/m-p/50739#M1660 RubenOlsen 2012-01-13T10:05:24Z https://community.splunk.com/t5/Security/SSO-with-web-application-firewall-and-SAML/m-p/50740#M1661 <P>yes, we currently do that as well as the groupmemberships etc. Is it possible to place a apache with a custom module handling the saml in between?</P> Fri, 13 Jan 2012 10:14:18 GMT https://community.splunk.com/t5/Security/SSO-with-web-application-firewall-and-SAML/m-p/50740#M1661 dominiquevocat 2012-01-13T10:14:18Z https://community.splunk.com/t5/Security/SSO-with-web-application-firewall-and-SAML/m-p/50741#M1662 <P>I see no reason why not - but then your infrastructure becomes quite elaborate?</P> Fri, 13 Jan 2012 12:54:05 GMT https://community.splunk.com/t5/Security/SSO-with-web-application-firewall-and-SAML/m-p/50741#M1662 RubenOlsen 2012-01-13T12:54:05Z https://community.splunk.com/t5/Security/SSO-with-web-application-firewall-and-SAML/m-p/50742#M1663 <P>Yes, it's possible as long as your web application firewall can talk SAML. Take a look at Configuring <A href="https://docs.splunk.com/Documentation/Splunk/7.0.0/Security/ConfigureSplunkSSO">Single Sign-On with reverse proxy</A>. This doc shows how you offload SAML to your web app.</P> Fri, 24 Nov 2017 14:45:29 GMT https://community.splunk.com/t5/Security/SSO-with-web-application-firewall-and-SAML/m-p/50742#M1663 suarezry 2017-11-24T14:45:29Z