Security

Accidentally changed the authentication method from LDAP to Splunk. How can I revert back if I can't log in?

Communicator

Hi,

I accidentally changed the authentication method from LDAP to Splunk from front end and now I am not able to log in. How can I revert back?

0 Karma
1 Solution

Influencer

If you have a user that exists in Splunk (e.g. The admin user) you should be able to log in still. (You'd have to know the password, which ideally isn't the default changeme)

Alternatively if you have sufficient access to the machine running Splunk, you can manually reconfigure authentication.conf to use LDAP settings as described in the security manual and restart Splunk for your changes to take effect.

View solution in original post

Influencer

If you have a user that exists in Splunk (e.g. The admin user) you should be able to log in still. (You'd have to know the password, which ideally isn't the default changeme)

Alternatively if you have sufficient access to the machine running Splunk, you can manually reconfigure authentication.conf to use LDAP settings as described in the security manual and restart Splunk for your changes to take effect.

View solution in original post

Don’t Miss Global Splunk
User Groups Week!

Free LIVE events worldwide 2/8-2/12
Connect, learn, and collect rad prizes
and swag!