Hi,
At starting of splunk we had created user in splunk and in that we had created mutiple reports and dashboard, at now same user we have planning to migrate to authenticate from LDAP with same username, So is this possible that all dashboards and reports of splunk user will assign to LDAP user by identifying username which is same ?
Hi rameshlpatel,
this should works as long as the username is exactly the same; the username in $SPLUNK_HOME/etc/passwd
must match the LDAP username.
Nevertheless, if you face some trouble you can change the owner
for the dashboards and reports in local.meta
and/or savedsearch.conf
here are some docs related to this:
http://docs.splunk.com/Documentation/Splunk/6.1.3/Security/Addmanagementaccesstocustomroles
http://docs.splunk.com/Documentation/Splunk/6.1.3/Admin/Savedsearchesconf
http://docs.splunk.com/Documentation/Splunk/6.1.3/AdvancedDev/SetPermissions#Set_permissions_in_the_...
hope this helps ...
cheers, MuS
Hi rameshlpatel,
this should works as long as the username is exactly the same; the username in $SPLUNK_HOME/etc/passwd
must match the LDAP username.
Nevertheless, if you face some trouble you can change the owner
for the dashboards and reports in local.meta
and/or savedsearch.conf
here are some docs related to this:
http://docs.splunk.com/Documentation/Splunk/6.1.3/Security/Addmanagementaccesstocustomroles
http://docs.splunk.com/Documentation/Splunk/6.1.3/Admin/Savedsearchesconf
http://docs.splunk.com/Documentation/Splunk/6.1.3/AdvancedDev/SetPermissions#Set_permissions_in_the_...
hope this helps ...
cheers, MuS
We started with LDAP authentication right away, except for "admin". In my setup, per-user information is stored in /opt/splunk/etc/users path. The "admin" user, which authenticates locally, is also listed there.
I have not tested what happens if the same userID is used on multiple authentication providers (local, LDAP, ...). In worst case you can copy user preferences at disk level from local user path to LDAP user path.