Configure SAML 2.0 for Cribl Cloud
This guide provides instructions on configuring SAML 2.0 Single Sign-On (SSO) for the Cribl Cloud app.
Contents
Supported features
Cribl Cloud supports the following features:
Cribl Cloud doesn't support IdP-initiated SSO or Just-in-Time (JIT) provisioning.
Prerequisites
- Ensure that you have an Okta admin role with permission to manage apps.
- Ensure that you have admin access to your Cribl Cloud org.
- Retrieve your Organization ID from Cribl Cloud. Sign in to your Cribl Cloud org, and from the sidebar under Organization Details, copy the Organization ID.
Set up fallback access
Before you configure SSO, create a fallback user to avoid being locked out of your org. In your Cribl Cloud org, invite a new member using an email domain that's different from the corporate domain on which you're configuring SSO. Assign the Owner permission to this member. You can use this account to sign in with a username and password if you need to troubleshoot SSO issues.
Integrate the app in Okta
- In the Admin Console, go to Applications > Applications.
- Click Browse App Catalog.
- Search for and select the Cribl Cloud app.
- Click Add Integration.
- On the General Settings tab, enter an Application label and the Organization ID you retrieved from Cribl Cloud.
- Click Done.
- Assign the app to the users you want to grant access to. To assign to app to a group, follow these steps:
- For static groups, use
Cribl.* as the filter. Refer to the guide.
- For dynamic groups with Teams, use the regex match
Cribl.* as the filter. Refer to the guide.
- Click Save.
Verify SP-initiated SSO
Go to your Cribl Cloud sign-in URL. Click Continue with okta.com. You're redirected to the sign-in page for your org. Enter your Okta credentials and click Sign in. You're signed in to Cribl Cloud.