Security

Using SAML with multiple idP

markusspitzli
Communicator

Currently we are connecting our Splunk Searchheads to our idBroker. The idBroker supports the use of multiple id Providers.

According to the documentation, Splunk only uses three fields: role, realname and mail.
(https://docs.splunk.com/Documentation/Splunk/8.0.3/Security/ConfigureSSOinSplunkWeb and
https://docs.splunk.com/Documentation/Splunk/8.0.3/Admin/Authenticationconf#Authentication_Response_...)

But since we will use multiple idProviders, we will need to map the scSourceIssuer too.
(http://schemas.swisscom.com/ws/2019/01/identity/claims/scSourceIssuer=scSourceIssuer)

Does anyone know who to solve that?

Labels (1)
0 Karma

khourihan_splun
Splunk Employee
Splunk Employee

Request a feature on ideas.splunk.com, asking for support of more than 1 SAML IDP.

 

0 Karma
Get Updates on the Splunk Community!

AppDynamics Summer Webinars

This summer, our mighty AppDynamics team is cooking up some delicious content on YouTube Live to satiate your ...

SOCin’ it to you at Splunk University

Splunk University is expanding its instructor-led learning portfolio with dedicated Security tracks at .conf25 ...

Credit Card Data Protection & PCI Compliance with Splunk Edge Processor

Organizations handling credit card transactions know that PCI DSS compliance is both critical and complex. The ...