Splunk Enterprise

Do tokens need to be unique per user?


I've created tokens with local authentication and shared the ID and password with the users of the applications needing access. So a single userid, mapped to a role, works for multiple users running Grafana, in this case.

I'd like to do the same thing using SAML. Is it possible (and reasonable) to create a "generic token", for lack of a better phrase, and provide that to the custom dashboard users? It may still be Grafana, or maybe some other mechanism to yet be determined, passing a search string to splunk. 

For example, if I had 10 users to configure to use API access, it would seem that I'd need to generate 10 tokens, based on what I get out of the documentation. Can anyone direct me? Thank you in advance.


Labels (1)
Tags (3)
0 Karma
Get Updates on the Splunk Community!

Enterprise Security Content Updates (ESCU) - New Releases

In the last month, the Splunk Threat Research Team (STRT) has had 3 releases of new content via the Enterprise ...

Thought Leaders are Validating Your Hard Work and Training Rigor

As a Splunk enthusiast and member of the Splunk Community, you are one of thousands who recognize the value of ...

.conf23 Registration is Now Open!

Time to toss the .conf-etti 🎉 —  .conf23 registration is open!   Join us in Las Vegas July 17-20 for ...