You may want to create a separate index dedicated to BlazeMeter API Monitoring event data. Once HEC is enabled, create a token using the instructions provided by Splunk. Make note of your instance host name and the configured port for use later on. Contact Sales to get started.įollow the instructions provided by Splunk to enable the HEC data input on your Splunk Cloud instance. The Splunk Cloud integration requires a qualifying plan. Splunk Cloud offers the features of award-winning Splunk Enterprise as an easy-to-use cloud service. Using the wrong value will prevent you from authenticating via SAML to Splunk Enterprise.Splunk Cloud delivers Operational Intelligence as a cloud service, enabling you to gain critical insights from your machine data without the need to manage any infrastructure. Make sure that you entered the correct value in the Your site URL field under the General tab in Okta. *" in order to send * all* groups to the Splunk Enterprise instance. Note: You can use the Regex filter with the value ". Also, you need to have the same group(s) in Okta (assigned to your Splunk Enterprise application users).In our example below we used Equals filter with the splunkcloudadmin value (step 16). This filter and value should cover the required group(s) in Splunk Enterprise. Select a group filter and filter value for the role attribute. Still in Okta, select the Sign On tab for the Splunk Enterprise app, then click Edit. In Splunk, navigate to Settings > Access controls > Authentication method, then click Reload authentication configuration:Įnter your Entity ID. Note that it can be a one to many relationship – you can have a group map to one or more Splunk Roles. The roles you select are copied over to the Selected Item(s) list. This name should be exactly the same value as user’s Group name in Okta.Ĭlick on one or more roles in the Splunk Roles - Available item(s) selection list. In the Create new SAML Group page, enter the following (see screen shot at end of step for reference): Redirect port – load balancer port: Enter 0 (zero).īack in the SAML Settings panel, click New Group in the upper right hand corner: Scroll down to the Advanced Settings section and enter the following (see screen capture at end of step for reference):įully qualified domain name or IP of the load balancer of your instance: Enter. Note: This value is case sensitive so it should be typed in exactly as you are going to use in the Okta app ( step 18).Ĭheck Sign AuthnRequest and Sign SAML Response. Metadata Contents: Copy and paste the following: Sign in to Okta Admin app to have this variable generated for you.Įntity ID: Use the following value: Splunk-.įor example, if you log into, use Splunk-acme as the Entity ID. In the SAML Configuration page, enter the following (see screen capture at end of step for reference): In the SAML Settings panel, click SAML Configuration in the upper right hand corner: Login to Splunk Enterprise as an administrator.įor External Authentication Method, select SAML, then click Configure Splunk to use SAML: In Okta, select the Sign On tab for the Splunk Enterprise app, then click Edit.Ĭlick Browse and navigate to the splunkcloud.cert file you just saved ( step 5, above), then click Upload to upload it to Okta. Save the certificate into a non-formatted text file (Notepad for example), and place a row above the certificate with the text -BEGIN CERTIFICATE- and a row below the certificate with the text -END CERTIFICATE. From the metadata, capture the search head's certificate (masked out below) between the and, as shown below: Once SAML is enabled, open the following URL: /saml/spmetadata.įor example, if you log into, you should open this URL. The Okta/Splunk Enterprise SAML integration currently supports the following features:Ĭontact the Splunk Enterprise Support team and request that they enable SAML 2.0 for your account. Please use the Okta Administrator Dashboard to add an application and view the values that are specific for your organization. This setup might fail without parameter values that are customized for your organization.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |