I am trying to set up SSO with Splunk. I configured IdP, configured Splunk (authentication.conf) and it almost goes through.
Splunk POST SAML request to IdP
IdP creates SAML assertions and sends it to Splunk
However, Splunk shows this error:
No valid splunk role found in the local mapping or assertion.
My authentication.conf file contains this section (which I assume to be a map between a username and a role)
[userToRoleMap_SAML]
myuser@mydomain.com = admin;
And I see that in the assertion:
<Subject><NameID Format="urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress">myuser@mydomain.com</NameID>...
My question is: What am I missing? (I assumed that it should be enough for it to work)
... View more