Humio supports the following authentication types:

  • None (Default) Humio can run without authentication at all, and with only a single user account named developer. This is the default if authentication is not configured, but is not recommended for production systems.
  • Single user
    Single-user mode is similar to running with no authentication except that it enables login using a password.
  • LDAP
    Humio can connect to an LDAP server and authenticate users.
  • By-Proxy
    Humio can use the username provided by the proxy in a HTTP header.
  • OAuth2 Identity Providers
    Authentication is done by external OAuth identity provider, Humio supports:
  • Auth0 Integration
    Auth0 is a cloud service making it possible to login with many different OAuth identity providers e.g. Google and Facebook. You can also create your own database of users in Auth0.
  • SAML SSO Leverages a SAML 2.0 compatible IDP for a seamless single sign-on experience.

Users are authenticated (logged in) using one of the above integrations. But the authorization is done in Humio. Which repositories a user can access is specified in Humio.

Authentication disabled by default
In order to make first-time setup easy for new users, Humio defaults to running without authentication at all. This is not recommended for production environments.