Splunk Search
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

Splunk access to External users

Manasa_401
Communicator
‎04-04-2024 07:34 AM

Hello Splunkers,

My Splunk instance is configured with default SAML authentication. Now i wanted to add users from external domain to access list of Splunk dashboards. How can i do that?

I searched in community and found that we can use en-US/account/login?loginType=splunk after changing enable_insecure_login = False in web.conf

I'm little worried about the consequences after I change the above setting. 
Is there any way to provide access to external users without any concerns with security.

Thank you in advance!

0 Karma
Reply

richgalloway
SplunkTrust
SplunkTrust
‎04-04-2024 07:54 AM

You do not have to do anything to enable_insecure_login to allow external users to use your Splunk.  Just add a Splunk account for them and give them the loginType URL.

---
If this reply helps you, Karma would be appreciated.
0 Karma
Reply

Manasa_401
Communicator
‎04-04-2024 08:01 AM

Hello @richgalloway 

I created Splunk account to the user and gave URL en-US/account/login?loginType=splunk
but getting Bad Request

Manasa_401_0-1712242845075.png

 

 

0 Karma
Reply

richgalloway
SplunkTrust
SplunkTrust
‎04-04-2024 08:52 AM

"en-US/account/login?loginType=splunk" is the tail end of the URL.  Append it to your standard Splunk URL (https://<<my splunk>>/en-US/account/login?loginType=splunk).

---
If this reply helps you, Karma would be appreciated.
0 Karma
Reply

Manasa_401
Communicator
‎04-04-2024 08:56 AM

Hello @richgalloway 

Yes, I appended that to my instance URL and got that bad request.

0 Karma
Reply

richgalloway
SplunkTrust
SplunkTrust
‎04-04-2024 09:02 AM

Try loginType=Splunk

---
If this reply helps you, Karma would be appreciated.
0 Karma
Reply

SanjayReddy
SplunkTrust
SplunkTrust
‎04-04-2024 01:21 PM

Hi @Manasa_401 

response  provided by @richgalloway , will work. 

 https://localhost:8000/en-US/account/login?loginType=splunk

In addition to rich reponse. if your existing URL contains 8000 number keep that as well.
sometimes it might be issue with  language en-us or en-gb , kindly try with  language for URL with SAML auth



0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Index This | What travels the world but is also stuck in place?

April 2026 Edition  Hayyy Splunk Education Enthusiasts and the Eternally Curious!   We’re back with this ...

Discover New Use Cases: Unlock Greater Value from Your Existing Splunk Data

Realizing the full potential of your Splunk investment requires more than just understanding current usage; it ...

Continue Your Journey: Join Session 2 of the Data Management and Federation Bootcamp ...

As data volumes continue to grow and environments become more distributed, managing and optimizing data ...