Can SAML and a local accout co-exist?
search cancel

Can SAML and a local accout co-exist?

book

Article ID: 241320

calendar_today

Updated On:

Products

Network Observability Spectrum

Issue/Introduction

Can SAML and localaccount co-exist?  Can we configured both SAML and a non-SAML user to log in and use Spectrum?

If SAML integration fails, can I still log on OneClick console with local accounts?

We have REST integrations as well that do not use SAML.  How can those accounts be configured so they can run REST queries when SAML is enabled?

Resolution

You can achieve this by configuring that user model in the $SPECROOT/tomcat/conf/non-saml-config.xml file.  It looks like this:


tomcat/conf/non-saml-config.xml
<?xml version="1.0" encoding="UTF-8"?>
<NonSamlConfig>
  <allowBasicAuthentication>true</allowBasicAuthentication>
  <userName>svc_caspectrum_user</userName>
</NonSamlConfig> (edited) 
 

Change the "svc_caspectrum_user" entry to your local spectrum username and cycle tomcat.

You can add multiple <userName> tags.  One for each user.

 

Powered by Wolken Software