Configure SAML single sign-on (SSO) to Splunk Cloud
Splunk Cloud lets you use SAML authentication for single sign-on (SSO).
- A managed deployment of Splunk Cloud. Self-service deployments log in through the Splunk customer portal and cannot independently configure SAML SSO.
- An identity provider configured to provide the
- An admin role with the
change_authenticationcapability. This permission level lets you enable SAML and edit authentication settings on the Splunk Cloud search head.
- For AD FS, you may need to set the Claim Type as "UPN" when configuring your IdP. The Splunk blog post at https://www.splunk.com/blog/2016/09/14/configuring-microsofts-adfs-splunk-cloud.html provides more information about configuring AD FS for Cloud.
When you configure Splunk Cloud to use your SAML authentication system, you can authorize groups on your SAML server to log in by mapping them to Splunk Cloud roles. To enable SSO, use information provided by your identity provider to configure Splunk Cloud to work with SAML. For details, see Configure single sign-on with SAML in the Securing Splunk Enterprise manual.
Manage Splunk Cloud users and roles
Configure hybrid search
This documentation applies to the following versions of Splunk Cloud™: 6.6.3, 7.0.0, 7.0.2, 7.0.3, 7.0.5, 7.0.8, 7.1.3, 7.1.6, 7.2.3, 7.2.4, 7.2.6, 7.2.7