All Apps and Add-ons
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Is it possible to use an AD service account instead of local account?

bmileitch
Engager
‎01-16-2013 07:28 AM

Part of the install guide requires us to create a local account on each ESX host named splunkadmin, through the logincreator.pl script.

Instead of using a local account, is it possible to set the account name to an AD service account name we specify?

This would be a tremendous help to reduce deployment costs.

0 Karma
Reply

tfletcher_splun
Splunk Employee
Splunk Employee
‎01-30-2013 03:19 PM

Yes you can use AD accounts. The first thing you need to do is ensure that your hosts are joined to the domain already. Assuming that is done you can still use the logincreator.pl tool to create the roles necessary for the active directory user.

To permission an existing active directory user on a single host:

./logincreator.pl --target esxhost1.splunk.com --ad esxhostadmin --adpwd esxhostadminpwd123 --newuser MYDOMAIN\MYDOMAINUSER --newpwd DomainUserPassword

To permission an existing active directory user on all hosts for a particular vCenter:

./logincreator.pl --target vcenter.splunk.com --ad vcadmin --adpwd vcadminpassword --newuser MYDOMAIN\MYDOMAINUSER --newpwd DomainUserPassword --allhosts

That should get your active directory users permissioned correctly. Then you just specify them in your engine.conf or credential.conf just like any other user, though you must include the domain.

Reply
Career Survey
First 500 qualified respondents will receive a $20 gift card! Tell us about your professional Splunk journey.
Take the Survey
Get Updates on the Splunk Community!

Tech Talk Recap | Mastering Threat Hunting

Mastering Threat HuntingDive into the world of threat hunting, exploring the key differences between ...

Observability for AI Applications: Troubleshooting Latency

If you’re working with proprietary company data, you’re probably going to have a locally hosted LLM or many ...

Splunk AI Assistant for SPL vs. ChatGPT: Which One is Better?

In the age of AI, every tool promises to make our lives easier. From summarizing content to writing code, ...