Security & Authentication

You can configure Humio to run with or without user authentication. If user authentication is disabled, then everyone with access to the UI or the API can do anything!

Authentication disabled by default
In order to make first-time set up easy for new users, Humio defaults to running without authentication at all. This is not recommended for production environments.

When you run Humio with authentication enabled, each repository has its own set of permissions.

Humio identifies users by their email address or username, and validates identities using an external identity provider, like LDAP, Google OAuth, or SAML IdP.

There are three levels of users: Normal, Administrator, and Root:

  • Normal users can only access and query data, including managing dashboards and saved queries
  • Administrators can also add and remove other users to a Repository and make them administrators of the Repository.
  • Root users can add repositories and create new root users.

You can create your initial users with ‘Root’ access through the HTTP API. See how to gain root access using a local access token.

You can manage Users and their rights using the Repository Web UI. Root users (apart from the initial one) can get added through the Administration page when you are logged in as a root user.

Authentication Types

Humio supports the following authentication types:

  • None (Default) Humio can run without authentication at all, and with only a single user account named developer. This is the default if authentication is not configured, but is not recommended for production systems.
  • Single user
    Single-user mode is similar to running with no authentication except that it enables login using a password.
  • LDAP
    Humio can connect to an LDAP server and authenticate users.
  • By-Proxy
    Humio can use the username provided by the proxy in an HTTP header.
  • OAuth2 Identity Providers
    Authentication is done by external OAuth identity provider, Humio supports:
  • Auth0 Integration
    Auth0 is a cloud service making it possible to log in with many different OAuth identity providers like Google and Facebook. You can also create your own database of users in Auth0.
  • SAML SSO Leverages a SAML 2.0 compatible IDP for a seamless single sign-on (SSO) experience.

Users are authenticated (logged in) using one of the above integrations. But authorization and permissions are handled in Humio.