Security

If users are no longer part of Active Directory and cannot authenticate, can we do a Reload Authentication Configuration?

abhijit_mhatre
Path Finder

If users are no longer part of Active Directory & cannot authenticate, can we do a Reload Authentication Configuration?

0 Karma
1 Solution

rdimri_splunk
Splunk Employee
Splunk Employee

Splunk basic authentication should still work, if you create a user in splunk (or better use admin user) with admin privileges, then local authentication takes priority over ldap. You should be able to reload authentication with that user

View solution in original post

0 Karma

rdimri_splunk
Splunk Employee
Splunk Employee

Splunk basic authentication should still work, if you create a user in splunk (or better use admin user) with admin privileges, then local authentication takes priority over ldap. You should be able to reload authentication with that user

0 Karma

abhijit_mhatre
Path Finder

Does the reloading the configuration option would place all the users currently mapped from LDAP into correct roles as they are now?
The main purpose of reloading the configuration would be able to clear some errors we are seeing in regards to users no longer being part of AD or should we exclude these errors.

The errors are as follows:
1) AuthenticationManagerLDAP Error
Could not find user="abc" with strategy="AD_Adhoc"

2) UserManagerPro Error
Failed to get LDAP user="pqr" from any configured errors.

0 Karma
Get Updates on the Splunk Community!

What's new in Splunk Cloud Platform 9.1.2312?

Hi Splunky people! We are excited to share the newest updates in Splunk Cloud Platform 9.1.2312! Analysts can ...

What’s New in Splunk Security Essentials 3.8.0?

Splunk Security Essentials (SSE) is an app that can amplify the power of your existing Splunk Cloud Platform, ...

Let’s Get You Certified – Vegas-Style at .conf24

Are you ready to level up your Splunk game? Then, let’s get you certified live at .conf24 – our annual user ...