Splunk Cloud Platform

Migration to Splunk cloud


Two concerns come when moving on-prem data to the cloud:


1. Data sensitivity- What if confidential data is lost? (in transit or at rest)

2. Authentication - Login into the cloud, there is no 2FA or anything, just username and password, and the user can just login like this.


Would like to ask cloud users how do you manage to overcome these 2 concerns when shifting your data to Splunk cloud?

Labels (1)
0 Karma


1.  Splunk cloud uses TLS 1.2/SSL  for data in transit.
2.  You can configure SAML authentication with Splunk Cloud  or enable 2FA - Duo Security as per your requirement

Any confidential data/PII must be ideally masked as per normal standards for governance and compliance purposes, unless there's a business use case for it requiring the data to be stored and processed in cloud.

0 Karma


1. Will like to explore more secure way on top of just TLSv1.2

If data must be masked, might as well deploy on-prem. 

2.SAML authentication seems complicated, the link does not show how to configure SAML authentication for Duo


Here shows Splunk cloud can't configure MFA



0 Karma
Get Updates on the Splunk Community!

Happy CX Day to our Community Superheroes!

Happy 10th Birthday CX Day!What is CX Day? It’s a global celebration recognizing innovation and success in the ...

Check out This Month’s Brand new Splunk Lantern Articles

Splunk Lantern is a customer success center providing advice from Splunk experts on valuable data insights, ...

Routing Data to Different Splunk Indexes in the OpenTelemetry Collector

This blog post is part of an ongoing series on OpenTelemetry. The OpenTelemetry project is the second largest ...