Security

Use SSO and reverse proxy to skip the login page

Hamsu
Loves-to-Learn Lots

I want to use SSO and reverse proxy to skip the login page and go directly to the service app page.

I found several resources and created a setup as shown below, but it doesn't skip the login when accessing those addresses.

The environment is as follows

Ubuntu 20.04.6
Nginx 1.18
Splunk 8.2.9

Is it possible to implement login skipping with this configuration alone?
Or is this possible with additional authentication services such as ldap or IIS authentication, SAML, etc?

If so, what additional areas of the above setup should we be looking at?

 

splunk스크린샷.png

 web.conf

 

[settings]
SSOMode = strict
trustedIP = 127.0.0.1,192.168.1.142,192.168.1.10
remoteUser = REMOTEUSER
tools.proxy.on = true 
root_endpoint = /

enableWebDebug=true

 

 

server.conf

 

[general]
serverName = dev-server
sessionTimeout = 24h
trustedIP = 127.0.0.1

[settings]
remoteUser = REMOTEUSER

 

nginx.conf

 

server {
    listen 8001;
    server_name splunkweb;

   location / {
        proxy_pass http://192.168.1.10:8000/;
        proxy_redirect / http://192.168.1.10:8000/;
        proxy_set_header REMOTEUSER admin;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
    }
}

 

 

Labels (3)
0 Karma
Get Updates on the Splunk Community!

Observe and Secure All Apps with Splunk

  Join Us for Our Next Tech Talk: Observe and Secure All Apps with SplunkAs organizations continue to innovate ...

Splunk Decoded: Business Transactions vs Business IQ

It’s the morning of Black Friday, and your e-commerce site is handling 10x normal traffic. Orders are flowing, ...

Fastest way to demo Observability

I’ve been having a lot of fun learning about Kubernetes and Observability. I set myself an interesting ...