SSO without an SAML


Hi All,

We would like to enable SSO for SPlunk Enterprise instance without using SAML. if any one has tried the same or any other alternative solution to achieve the SSO please share?


Tags (1)
0 Karma



this is doable with couple of steps. Basically you are needing couple of things:
- AD / Kerberos server
- Splunk running on Linux server(s)
- working kerberos config on those linux host
- Apache with
- mod_auth_kerb
- reverse proxy
- Some Splunk configuration

It seems that there are already guide how to do it in URL:

On SHC you can create own TA-sso-w-apache for those splunk configs (web.conf + server.conf). If I recall right currently the one can put those server.conf part to web.conf, but please check it from documentation.

That is quite similar what we are using in SHC cluster.

r. Ismo

0 Karma
Get Updates on the Splunk Community!

Platform Newsletter Highlights | March 2023

 March 2023 | Check out the latest and greatestIntroducing Splunk Edge Processor, simplified data ...

Enterprise Security Content Updates (ESCU) - New Releases

In the last month, the Splunk Threat Research Team (STRT) has had 3 releases of new content via the Enterprise ...

Thought Leaders are Validating Your Hard Work and Training Rigor

As a Splunk enthusiast and member of the Splunk Community, you are one of thousands who recognize the value of ...