Burp Suite User Forum

Login to post

Burp Suite Enterprise - SAML Authentication Issues

Nilkanth | Last updated: Jul 13, 2021 08:05PM UTC

Hello Team, We have enabled SAML authentication for our Burp Suite setup, but we observed that burp suite does not verify user identity or display the user details on UI post login with SAML. There is no capability to manage individual users and permissions, currently application only provides group based role/permission management which seems difficult to manage and we will end up having huge number of groups both in application and in idp. We would like to understand if you provide single sign-on capabilities such as SCIM, where we can manage users in burp suite who are logged in with SAML integration. Please let us know if you need any further information. Thanks, Suresh

Alex, PortSwigger Agent | Last updated: Jul 14, 2021 02:20PM UTC

Hi Suresh, Thanks for your post. This is our current process for configuring user groups and permissions with SSO: https://portswigger.net/burp/documentation/enterprise/administration-tasks/sso/permissions We are adding SCIM support to Burp Suite Enterprise for SSO, and this is due in a future release. I have linked your details to this, so you should be notified when the release is available. Thanks

Nilkanth | Last updated: Jul 16, 2021 04:49PM UTC

Hi Alex, Thank you for your response. Do you have tentative timelines by when the SCIM support for SSO will be added to Burp Suite Enterprise? Thanks

Alex, PortSwigger Agent | Last updated: Jul 20, 2021 08:07AM UTC

Hi, This feature is actively being developed as part of a larger effort to improve identity management across Burp Suite Enterprise. Unfortunately, due to the scope of this work, I am unable to give you a timeline at this moment. As mentioned, I have linked your details with the development work so you are notified when the release is available. You are also welcome to check back in with us at a later date to see if the timeline has been updated. Thanks

Nilkanth | Last updated: Mar 10, 2022 10:43PM UTC

Hello, Do we have any update on this feature release? We are eagerly waiting on to get this feature, please let us know timelines when this will be available? Thanks!

Alex, PortSwigger Agent | Last updated: Mar 11, 2022 08:59AM UTC

Hi, Apologies you were not notified but the initial phase of SCIM support has now been released - https://portswigger.net/burp/documentation/enterprise/administration-tasks/scim SCIM is currently only supported for on-premise installations of Burp Suite Enterprise Edition and has been tested with Okta and OneLogin IdPs. Thanks

Nilkanth | Last updated: Mar 25, 2022 05:42PM UTC

Hi Alex, We referred documentation on SCIM and have few questions. Can you please clarify on on-premise terminology for Burp? Since in above documentation there is no clear differentiation on this. We have the Burp Suite Enterprise setup on cloud managed by us. So, curious to know if our setup will support initial phase of SCIM or not? Thanks!

James, PortSwigger Agent | Last updated: Mar 28, 2022 02:57PM UTC

Hi Nilkanth,

Thanks for you message.

To clarify on the terminology. By our "standard" or "on-premise" version of Burp Suite Enterprise, we mean our standard package installer version, rather than our Cloud Template deployed version.

Many users do install our standard version in the cloud, using a VM.

If you are unsure, you can check by going to the (Settings > Integrations) page in the Burp Enterprise console. If the SCIM integration option is available, you are using the standard version.

Please let us know if you need anything further.

Nilkanth | Last updated: Apr 18, 2022 07:46PM UTC

Thank you James for Clarification! We have Cloud Template Version deployed. Do you have timelines for the SCIM support for Cloud version? Thanks, Suresh

James, PortSwigger Agent | Last updated: Apr 19, 2022 10:55AM UTC

Hi Suresh,

We will be adding SCIM support for our new cloud (Kubernetes) version. This item of development is currently in our development backlog and I don't have any ETA at present.

If you are using a Cloud Template version, just to let you know that you will need to migrate to our new Kubernetes version, which is replacing the Cloud Template version. No further Burp Enterprise updates will now be available for the Cloud Template version (although you can still update the Scanner component for a short time).

Please see the below resources for further information.

Blog - New Kubernetes Version - "Migrating from a legacy cloud template deployment" section

Documentation - Migration Guide

You need to Log in to post a reply. Or register here, for free.