Use SSO and reverse proxy to skip the login page

Hamsu · ‎07-30-2024

I want to use SSO and reverse proxy to skip the login page and go directly to the service app page.

I found several resources and created a setup as shown below, but it doesn't skip the login when accessing those addresses.

The environment is as follows

Ubuntu 20.04.6
Nginx 1.18
Splunk 8.2.9

Is it possible to implement login skipping with this configuration alone?
Or is this possible with additional authentication services such as ldap or IIS authentication, SAML, etc?

If so, what additional areas of the above setup should we be looking at?

web.conf

[settings]
SSOMode = strict
trustedIP = 127.0.0.1,192.168.1.142,192.168.1.10
remoteUser = REMOTEUSER
tools.proxy.on = true 
root_endpoint = /

enableWebDebug=true

server.conf

[general]
serverName = dev-server
sessionTimeout = 24h
trustedIP = 127.0.0.1

[settings]
remoteUser = REMOTEUSER

nginx.conf

server {
    listen 8001;
    server_name splunkweb;

   location / {
        proxy_pass http://192.168.1.10:8000/;
        proxy_redirect / http://192.168.1.10:8000/;
        proxy_set_header REMOTEUSER admin;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
    }
}

Use SSO and reverse proxy to skip the login page

authentication

login

SSO

Index This | When is October more than just the tenth month?

Observe and Secure All Apps with Splunk

What’s New & Next in Splunk SOAR

Are you a member of the Splunk Community?

Use SSO and reverse proxy to skip the login page

authentication

login

SSO

Index This | When is October more than just the tenth month?

Observe and Secure All Apps with Splunk

What’s New & Next in Splunk SOAR