Use SSO and reverse proxy to skip the login page

Hamsu · ‎07-30-2024

I want to use SSO and reverse proxy to skip the login page and go directly to the service app page.

I found several resources and created a setup as shown below, but it doesn't skip the login when accessing those addresses.

The environment is as follows

Ubuntu 20.04.6
Nginx 1.18
Splunk 8.2.9

Is it possible to implement login skipping with this configuration alone?
Or is this possible with additional authentication services such as ldap or IIS authentication, SAML, etc?

If so, what additional areas of the above setup should we be looking at?

web.conf

[settings]
SSOMode = strict
trustedIP = 127.0.0.1,192.168.1.142,192.168.1.10
remoteUser = REMOTEUSER
tools.proxy.on = true 
root_endpoint = /

enableWebDebug=true

server.conf

[general]
serverName = dev-server
sessionTimeout = 24h
trustedIP = 127.0.0.1

[settings]
remoteUser = REMOTEUSER

nginx.conf

server {
    listen 8001;
    server_name splunkweb;

   location / {
        proxy_pass http://192.168.1.10:8000/;
        proxy_redirect / http://192.168.1.10:8000/;
        proxy_set_header REMOTEUSER admin;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
    }
}

Use SSO and reverse proxy to skip the login page

authentication

login

SSO

Developer Spotlight with Brett Adams

Index This | What can you do to make 55,555 equal 500?

Say goodbye to manually analyzing phishing and malware threats with Splunk Attack ...