Security
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

How do we list the users within an ldap group?

ddrillic
Ultra Champion
‎04-29-2016 04:42 PM

We would like to produce a report which lists all the users who belong to a certain ldap group.

The following brings users -

| rest services/authentication/users | where roles="xxx" | table title, email, realname

We are not sure whether this call brings back what we want or rather all users of this ldap group who are currently logged in.

Any idea?

Tags (4)
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

joshd
Builder
‎04-29-2016 05:23 PM

The REST point you're calling represents all users and not just currently logged in users. Therefore what is returned should be representative of all users mapped into the given role whether they are system or LDAP user.

Always good to keep the REST URI Quick Reference link in your back pocket: http://docs.splunk.com/Documentation/Splunk/6.4.0/RESTREF/RESTlist

View solution in original post

Reply
Solved! Jump to solution
Solution

joshd
Builder
‎04-29-2016 05:23 PM

The REST point you're calling represents all users and not just currently logged in users. Therefore what is returned should be representative of all users mapped into the given role whether they are system or LDAP user.

Always good to keep the REST URI Quick Reference link in your back pocket: http://docs.splunk.com/Documentation/Splunk/6.4.0/RESTREF/RESTlist

Reply
Solved! Jump to solution

ddrillic
Ultra Champion
‎05-01-2016 10:29 AM

Perfect joshd. This is what I thought. Much appreciated.

0 Karma
Reply
Get Updates on the Splunk Community!

See your relevant APM services, dashboards, and alerts in one place with the updated ...

As a Splunk Observability user, you have a lot of data you have to manage, prioritize, and troubleshoot on a ...

Index This | What goes away as soon as you talk about it?

May 2025 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with this month’s ...

What's New in Splunk Observability Cloud and Splunk AppDynamics - May 2025

This month, we’re delivering several new innovations in Splunk Observability Cloud and Splunk AppDynamics ...
Top