Solved: How to setup local access on a search-head that us...

a212830 · ‎07-23-2018

Hi,

We have a single search-head that uses LDAP for most users. However, I have a requirement to enable local accounts, where a user can access the search-head, bypassing ldap. What steps would I need to do this? Pretty sure that I need to setup permissiveMode, but think that there is more to it than just that step.

sloshburch · ‎07-23-2018

You're overthinking it. You should have no problem just creating a user in the traditional fashion who would exist locally but not in LDAP.

https://docs.splunk.com/Documentation/Splunk/latest/Security/ConfigureuserswithSplunkWeb

View solution in original post

sloshburch · ‎07-23-2018

You're overthinking it. You should have no problem just creating a user in the traditional fashion who would exist locally but not in LDAP.

https://docs.splunk.com/Documentation/Splunk/latest/Security/ConfigureuserswithSplunkWeb

a212830 · ‎07-23-2018

hey burch!

Thanks. Appreciate it.

sloshburch · ‎07-24-2018

🙂 Glad to help!

I noticed you didn't accept. Was this all you needed or still unresolved?

How to setup local access on a search-head that uses LDAP

Tech Talk | One Log to Rule Them All

Splunk Security Content for Threat Detection & Response, Q1 Roundup

Splunk Life | Happy Pride Month!