All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Security Audit Reports

ianbow
Explorer
‎07-17-2012 03:03 AM

When trying to run the Audit reports I recieve a warning and no data displays:

  • No matching fields exist
  • Lookup table 'tSessions' is empty
  • Lookup table 'HostInfo' is empty

the AD bind account has the correct details? Any help would be much appreciated.

More info...

Using the native openldap command:

"ldapsearch -x -b "dc=testdomain,dc=com" -D "CN=ldap,ou=services,dc=testdomain,dc=com" -h 192.168.0.10 -p 389 -W"

Returns data from AD where the configuration lines have been taken directory from the activedirectory.conf file. Therefore I can only conclude this to be an application fault. I am running on Centos 6.3 64bit with Perl 5.10. Has anyone managed to get the reporting working on this application?

0 Karma
Reply

kelvinlow
New Member
‎10-01-2012 11:06 PM

Hi, me too. this error keep appearing since day one when Splunk for AD was installed and till now couldnt find the solution..

0 Karma
Reply

treinke
Builder
‎07-17-2012 06:42 AM

I am also getting this.

There are no answer without questions
0 Karma
Reply
Get Updates on the Splunk Community!

Enterprise Security Content Update (ESCU) | New Releases

In December, the Splunk Threat Research Team had 1 release of new security content via the Enterprise Security ...

Why am I not seeing the finding in Splunk Enterprise Security Analyst Queue?

(This is the first of a series of 2 blogs). Splunk Enterprise Security is a fantastic tool that offers robust ...

Index This | What are the 12 Days of Splunk-mas?

December 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...