Hi,
I am configuring Splunk access control with SAML onelogin and I have uploaded the onelogin IdP meta data file to splunk. After configuration splunk app is redirecting to onelogin login page. But getting a message like
"Federation Exception: Missing Assertion Consumer Service URL. Please contact your administrator."
Does any one know how do i get Consumer URL for splunk ?
-thanks
Is the AuthNRequest signed? For some reason, Splunk does not include the ACS URL in unsigned assertions.
In your authentication.conf file, set the following attribute:
[<saml-authSettings-key>]
signAuthnRequest = true
It's in your splunk SP metadata:
https://yoursplunk.yourfqdn.ca:8000/saml/spmetadata
Look for the following tag:
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://yoursplunk.yourdomain.ca/saml/acs" index="0">