Go to:
Manager » Access controls » Authentication method » LDAP strategies » YourLDAP
And check the user base DN. It will depend on your AD layout. Example:
OU=YouruserOU,DC=internal,DC=splunk,DC=com
Usually I want all users from a certain AD security group. So I put:
user base filter: (objectclass=user)
user name attribute: samaccountname
real name attribute: cn
group mapping attribute: dn
Group Base DN: OU=Groups,OU=YouruserOU,DC=internal,DC=splunk,DC=com static group search filter: (name=Splunk) group name attribute: cn static member attribute: member
These config assum there is a group name Splunk in the AD and people allowed to use splunk should be a member of this group. So you have to adapt it to your AD layout.
Are you sure you have your user base DN pointing to something that exists in your AD structure?
Still i am facing the same error, what might be the issue.
The Splunk Server is presently live.