Other Usage
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

No valid Splunk role found in local mapping - Microsoft Azure Entra SSO

JRacca
Explorer
‎06-06-2024 04:13 AM

Hi,

We are integrating the Splunk to our Microsoft Azure SSO, and followed instructions from https://learn.microsoft.com/en-us/entra/identity/saas-apps/splunkenterpriseandsplunkcloud-tutorial#c...

But after all the configuration, we are hitting the "No valid Splunk role found in local mapping"

 

Also checked Configure SSO with Microsoft Azure AD or AD FS as your Identity Provider - Splunk Documentation to remove the alias but was not able to make it work.

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

richgalloway
SplunkTrust
SplunkTrust
‎06-06-2024 08:56 AM

The docs say to use the group ID or UUID.  I have little experience with Azure so I can't help much there.

---
If this reply helps you, Karma would be appreciated.

View solution in original post

Reply
Solved! Jump to solution

richgalloway
SplunkTrust
SplunkTrust
‎06-06-2024 04:59 AM

Did you continue to the next step "Map SAML groups to Splunk Enterprise roles "?

---
If this reply helps you, Karma would be appreciated.
Reply
Solved! Jump to solution

JRacca
Explorer
‎06-06-2024 07:41 AM

Yes I did and put in the Object ID of the Application created on Azure as the Group Name.
I'm trying to figure out how is it not working.

Did I put the correct Object ID?

0 Karma
Reply
Solved! Jump to solution
Solution

richgalloway
SplunkTrust
SplunkTrust
‎06-06-2024 08:56 AM

The docs say to use the group ID or UUID.  I have little experience with Azure so I can't help much there.

---
If this reply helps you, Karma would be appreciated.
Reply
Solved! Jump to solution

JRacca
Explorer
‎06-07-2024 08:49 AM

Hi!

Thank you! UUID did not work but Group ID did 🙂
This was my mis-out thank you

Reply
Get Updates on the Splunk Community!

Observe and Secure All Apps with Splunk

  Join Us for Our Next Tech Talk: Observe and Secure All Apps with SplunkAs organizations continue to innovate ...

Splunk Decoded: Business Transactions vs Business IQ

It’s the morning of Black Friday, and your e-commerce site is handling 10x normal traffic. Orders are flowing, ...

Fastest way to demo Observability

I’ve been having a lot of fun learning about Kubernetes and Observability. I set myself an interesting ...