https://community.splunk.com/t5/Security/Application-Without-Authentication/m-p/72993#M2405 <P>The first 2 links are dead; is there an archive anywhere?</P> Mon, 13 Apr 2015 20:21:41 GMT woodcock 2015-04-13T20:21:41Z https://community.splunk.com/t5/Security/Application-Without-Authentication/m-p/72990#M2402 <P>Could I create an application in splunk that requires no authentication? Since splunk already lives on our intranet, I'd like to give users access to dashboards without requiring them to log in.</P> Tue, 19 Oct 2010 23:23:12 GMT https://community.splunk.com/t5/Security/Application-Without-Authentication/m-p/72990#M2402 srussellnpr 2010-10-19T23:23:12Z https://community.splunk.com/t5/Security/Application-Without-Authentication/m-p/72991#M2403 <P>Yes. There are a few things you can do.</P> <P>Here's an example site (from the guys who do the SplunkTalk podcast):<BR /> &nbsp;&nbsp;&nbsp;&nbsp; <A href="http://bit.ly/splunktalkanalytics" rel="nofollow">http://bit.ly/splunktalkanalytics</A></P> <P>Take a look at this video blog post:<BR /> &nbsp;&nbsp;&nbsp;&nbsp; <A href="http://blogs.splunk.com/2010/09/27/video-glimpse-into-splunktalk-podcast-analytics-insecure-login-dashboard-tricks/" rel="nofollow">http://blogs.splunk.com/2010/09/27/video-glimpse-into-splunktalk-podcast-analytics-insecure-login-dashboard-tricks/</A></P> <P></P><HR /><P></P> <P>The gist is that you can use "<A href="http://www.splunk.com/base/Documentation/4.1.5/Developer/ThirdParty#Enable_insecure_login" rel="nofollow">insecure</A>" authentication, and embed login credentials into the URL. Then, create a dedicated role for that user, giving it access to on the indexes, search commands, etc. that it actually needs. Maybe even assign a search filter. Also, create a dedicated search app, with just the dashboards you need, and make that the default for the user. Using a separate, stripped-down search head can also help limit your attack surface.</P> <P>If you want to use always-on displays, the timeouts can be a problem as well, so see this thread:<BR /> &nbsp;&nbsp;&nbsp;&nbsp; <A href="http://answers.splunk.com/questions/7233/user-specific-browser-session-timeout" rel="nofollow">http://answers.splunk.com/questions/7233/user-specific-browser-session-timeout</A></P> <P>Remember the common tradeoffs between security and usability apply, so doing this of course involves a bit of additional risk. Provided you're ok with that, this should get you started.</P> Wed, 20 Oct 2010 00:18:18 GMT https://community.splunk.com/t5/Security/Application-Without-Authentication/m-p/72991#M2403 southeringtonp 2010-10-20T00:18:18Z https://community.splunk.com/t5/Security/Application-Without-Authentication/m-p/72992#M2404 <P>You're awesome southeringtonp!</P> Thu, 21 Oct 2010 00:06:33 GMT https://community.splunk.com/t5/Security/Application-Without-Authentication/m-p/72992#M2404 srussellnpr 2010-10-21T00:06:33Z https://community.splunk.com/t5/Security/Application-Without-Authentication/m-p/72993#M2405 <P>The first 2 links are dead; is there an archive anywhere?</P> Mon, 13 Apr 2015 20:21:41 GMT https://community.splunk.com/t5/Security/Application-Without-Authentication/m-p/72993#M2405 woodcock 2015-04-13T20:21:41Z