Security
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Splunk Cloud IP range

jodyglsi
Engager
‎11-24-2014 05:25 AM

Hi,

We are in the process of moving from Splunk on premise to Splunk Cloud and we need to configure LDAPS authentication (such a shame ADFS or SAML aren't supported!).
This requires we open up LDAPS on our firewall and for obvious reasons we want to limit this to only the IP's used by Splunk Cloud. Can anyone confirm these please?

Many thanks!

Tags (3)
Reply

yannK
Splunk Employee
Splunk Employee
‎09-11-2015 07:58 AM

On large Splunkcloud deployments, use an nslookup on your search-head, and you will have the IP.
example : nslookup megazilla.splunkcloud.com
if you have several search-heads, use sh1.megazilla.splunkcloud.com sh2.megazilla.splunkcloud.com etc...

Remark : this does not apply to self service splunkcloud instances, as they use your splunk.com username for the authentication, and cannot use LDAP

For your indexers, use the same technique with the 5 dns load balanced addresses:
nslookup inputs1.megazilla.splunkcloud.com
nslookup inputs2.megazilla.splunkcloud.com
nslookup inputs3.megazilla.splunkcloud.com
nslookup inputs4.megazilla.splunkcloud.com
nslookup inputs5.megazilla.splunkcloud.com

.

0 Karma
Reply

mcronkrite
Splunk Employee
Splunk Employee
‎09-01-2015 07:16 AM

Contact Splunk Cloud Ops support and get the IPs of your Search Heads, and supporting management servers. Only your search heads should have direct user access. When you setup ldap.conf you will need to specify the secure port. Use good SSL certificates to complete the connection.

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk Observability Cloud's AI Assistant in Action Series: Auditing Compliance and ...

This is the third post in the Splunk Observability Cloud’s AI Assistant in Action series that digs into how to ...

Splunk Community Badges!

  Hey everyone! Ready to earn some serious bragging rights in the community? Along with our existing badges ...

What You Read The Most: Splunk Lantern’s Most Popular Articles!

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...
Top