Splunk AppDynamics
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Stop any Users from login into AppDynamics SAML

Mohit_Gupta2
Explorer
‎03-13-2022 01:13 AM

Hi,

We have implemented SAML with ADFS. Now, we want to block a set of users from login into AppDynamics.

Since its SSO any user in domain is able to login as there has to be at least one default role mapped and AppDynamics has no option to show user that they are not authorized to login (When using SSO). For now, we have created a role with no permissions and mapped it with Default SAML group. How can we block particular set of users in domain from login into AppDynamics while continue to use SSO for the intended users. 

Regards,

Mohit

Labels (3)
Tags (4)
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

Morelz
Motivator
‎03-13-2022 09:42 PM

Hi Mohit

You can use the SAML Access Attribute option in the SAML Configuration page to manage access.

Create or use an attribute that would need to be set for users that are allowed to access AppDynamics

Ciao

View solution in original post

Reply
Solved! Jump to solution
Solution

Morelz
Motivator
‎03-13-2022 09:42 PM

Hi Mohit

You can use the SAML Access Attribute option in the SAML Configuration page to manage access.

Create or use an attribute that would need to be set for users that are allowed to access AppDynamics

Ciao

Reply
Solved! Jump to solution

Mohit_Gupta2
Explorer
‎03-18-2022 11:40 PM

Hi Mario,

Worked, we created a new attribute in ADFS and passing the value of a Security group there.

Now, we are checking if the user is part of our "AppDynamicsSaaS" security group if yes the user will be able to login if no user will get HTTP 400 error. 

I wonder if there was a better screen to display instead of HTTP 400 error.

Regards,

Mohit

Tags (1)
Reply
Get Updates on the Splunk Community!

Shape the Future of Splunk: Join the Product Research Lab!

Join the Splunk Product Research Lab and connect with us in the Slack channel #product-research-lab to get ...

Auto-Injector for Everything Else: Making OpenTelemetry Truly Universal

You might have seen Splunk’s recent announcement about donating the OpenTelemetry Injector to the ...

[Puzzles] Solve, Learn, Repeat: Character substitutions with Regular Expressions

This challenge was first posted on Slack #puzzles channelFor BORE at .conf23, we had a puzzle question which ...