Installation
Highlighted

Can SSO with Okta be setup without SSL?

Engager

I am setting up Okta SSO in our Splunk Enterprise 6.5.0 installation. This is my first SSO integration and just want to make sure of the requirement.

Highlighted

Re: Can SSO with Okta be setup without SSL?

Builder

SAML assertions can be signed and/or encrypted, or neither.
http://stackoverflow.com/questions/8276233/is-it-recommended-to-sign-and-encrypt-saml-and-use-ssl

I do not encrypt the assertions between my IdP and splunk, nor do I see a requirement to do so. However splunk will only accept signed assertions:

authentication.conf

signedAssertion = [true|false]
* OPTIONAL
* This tells Splunk if the SAML assertion has been signed by the IDP
* If set to false, Splunk will not verify the signature of the assertion
  using the certificate of the IDP.
* Currently, we accept only signed assertions.
0 Karma