Building my first Splunk cluster for lab. All hosts CentOS6 with full AD (kerberos) integration but wanting to add AD integration (towards SSO goal) into cluster
Question:
1) I am getting error "Encountered the following error while trying to save: In handler 'LDAP-auth':strategy=aessatl.arrow.com" Error binding to LDAP. reason="Invalid credentials". Where can I get better examples, or someone who can post details about how to set this up.
Settings /field inputs used
Name aessatl.arrow.com
Server atllabman1.aessatl.arrow.com
Port 389
Bind DN CN=Administrator,OU=users,DC=aessatl,DC=arrow,DC=com
User Base DN OU=Users,DC=aessatl,DC=arrow,DC=com
User Name Attribute sAMAccountName
Real Name Attribute cn
eMail Attribute Mail
Group Mapping Attribute dn
User Base DN OU=Users,DC=aessatl,DC=arrow,DC=com
User Name Attribute sAMAccountName
Real Name Attribute cn
eMail Attribute Mail
Group Mapping Attribute dn
Group Settings DC=aessatl,DC=arrow,DC=com
Group Name Attribute cn
Static Member Attribute member
Nested Groups <check>
Dynamic Group
<no changes>
Advanced Settings
<check box but leave defaults>
2) I am doing this on the Deployment (deployer / license server) server, to get it working, but I need to deploy this across the cluster. I would assume this would be across all tiers of the cluster (search head nodes, indexers, forwarders, cluster master, deployer). What is the best methodology for this?
I would attach my configuation (saved as PDF) showing the fields I used so someone could point out what I am putting in wrong.. but I was bad in previous life... and this one... well... likely future also.. and as such have insufficient karma.
... View more