All Apps and Add-ons
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Splunk App for Active Directory - Universal Forwarder 5.0 support

yrajah
Explorer
‎03-15-2013 03:03 AM

Hi,
Just noticed that "The Splunk App for Active Directory does not currently work with Splunk universal forwarder versions 5.0 and later".

Does anybody know when it will be supported?

Many thanks.

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

ahall_splunk
Splunk Employee
Splunk Employee
‎03-15-2013 07:42 AM

To clarify - it will be supported in the next release. If you want the TA's to support the Splunk Universal Forwarder 5.0, then do the following for each TA:

1) Go into the TA directory/defaults
2) Append the contents of perfmon.conf to inputs.conf
3) Edit inputs.conf and do a global search-and-replace on PERFMON: - replace it with perfmon://

Note that case is important here. Once that is done, then you will be ready to go. Do this in defaults instead of the normal local area because then, when the upgrade happens, your changes will be replaced with the "official" changes.

View solution in original post

Reply
Solved! Jump to solution
Solution

ahall_splunk
Splunk Employee
Splunk Employee
‎03-15-2013 07:42 AM

To clarify - it will be supported in the next release. If you want the TA's to support the Splunk Universal Forwarder 5.0, then do the following for each TA:

1) Go into the TA directory/defaults
2) Append the contents of perfmon.conf to inputs.conf
3) Edit inputs.conf and do a global search-and-replace on PERFMON: - replace it with perfmon://

Note that case is important here. Once that is done, then you will be ready to go. Do this in defaults instead of the normal local area because then, when the upgrade happens, your changes will be replaced with the "official" changes.

Reply
Solved! Jump to solution

ahall_splunk
Splunk Employee
Splunk Employee
‎03-15-2013 08:16 AM

Not as yet.

0 Karma
Reply
Solved! Jump to solution

yrajah
Explorer
‎03-15-2013 07:57 AM

Thank you for the reply. Is there a scheduled date for the next release?

0 Karma
Reply
Solved! Jump to solution

jgedeon120
Contributor
‎03-15-2013 05:02 AM

Yrajah,

I reached out to the microsoft team yesterday and they are currently working on the issues. Hopefully it will be sometime soon. They did not give a date yet. You can subscribe to the app/project and be notified of updates.

Reply
Get Updates on the Splunk Community!

Accelerating Observability as Code with the Splunk AI Assistant

We’ve seen in previous posts what Observability as Code (OaC) is and how it’s now essential for managing ...

Integrating Splunk Search API and Quarto to Create Reproducible Investigation ...

 Splunk is More Than Just the Web Console For Digital Forensics and Incident Response (DFIR) practitioners, ...

Congratulations to the 2025-2026 SplunkTrust!

Hello, Splunk Community! We are beyond thrilled to announce our newest group of SplunkTrust members!  The ...