My LDAP groups membership lists change often. I need a way to programmatically tell Splunk to reload authentication. Can this be done?
Please refer to this blog post on the command you can run from CLI. You can write a cronjob to run the command on a regular basis to keep your group membership list updated automatically.
Note that this only applies to versions 3.x and 4.0.x. In version 4.1, the manner in which we cache LDAP user/group information becomes more dynamic and so reloading authentication is not necessary.
$ splunk _internal call /authentication/providers/services/_reload -auth admin:changeme
Please refer to this blog post on the command you can run from CLI. You can write a cronjob to run the command on a regular basis to keep your group membership list updated automatically.
Note that this only applies to versions 3.x and 4.0.x. In version 4.1, the manner in which we cache LDAP user/group information becomes more dynamic and so reloading authentication is not necessary.