Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. In server-config.json, change "autheticationProtocol": “SAML”.

  2. In uiConfig.json, change "autheticationProtocol": “SAML”.

  3. In the configDesc.json update “SAML” property with the following value:

    Code Block
    "SAML": {
    		"loginURL": "/PlatformService/saml2/authenticate/insights_saml2_sso",
            "logoutURL": "/PlatformService/saml/logout"
    },
  4. Open Grafana defaults.ini file and enable following [auth.proxy] section, do not change other property

    Code Block
    [auth.proxy]
    enabled = true
    header_name = X-WEBAUTH-USER
    header_property = username
    auto_sign_up = true
    sync_ttl = 60
    whitelist =
    headers =
    headers_encoded = true
    enable_login_token = false
  5. Add following in Apache Httpd vhost file Apache24\conf\extra\httpd-vhosts.conf.

    Code Block
    SetEnvIf Cookie "(^|;\ *)username=([^;\ ]+)" MyCookieValue=$2
    <If "%{env:MyCookieValue} != ''">
    	  RequestHeader set X-WEBAUTH-USER "%{MyCookieValue}e"
    </If>
  6. Restart Apache httpd server and Grafana.

  7. Add your SAML or SSO provider detail in server.config.json under “singleSignOnConfig” section.

  8. We can configure either metadataUrl or the metadataFilePath.

  9. Add “insights_saml2_sso” as value for the “registrationId” property.

  10. Add application host name in insightsServiceURL in server-config.json.

  11. Add host information in  trustedHosts in server-config.json.

  12. Restart PlatformService and UI.

  13. Call URL https://<HostOrDomainName>/insights.

  14.   Login with your organization credential.

...