Join the Conversation
- Find Answers
- :
- Splunk Administration
- :
- Admin Other
- :
- Security
- :
- Scripted Authentication
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark Topic
- Subscribe to Topic
- Mute Topic
- Printer Friendly Page
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi,
We are using scripted authentication in our application. We have implemented the authentication script with all the required methods. These are my settings in authentication.conf:
[authentication]
authType = Scripted
authSettings = script
[script]
scriptPath = "<path to my script>"
scriptSearchFilters = 1
# Cache results for 1 second per call
[cacheTiming]
userLoginTTL = 1
getUserInfoTTL = 1
getUsersTTL = 1
When I monitor the script logs I am seeing that the getUsers() and getUserInfo() methods get called every 30 seconds even when no user is logged into the application. Can anyone please help me out with these methods and explain why are they being called even when no user is logged in. Am I missing something?
Thanks,
Keerthana
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
This should give you full details
http://answers.splunk.com/answers/131453/need-help-in-understanding-scripted-authentication
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
This should give you full details
http://answers.splunk.com/answers/131453/need-help-in-understanding-scripted-authentication
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I noticed the same thing when I wrote an app to perform authentication via RADIUS. In my case, I had my application cache the user info and only update the cache with the information from the server when the user logs in. That way, calls to getUserInfo() don't require a server call.
Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!
Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.
What Is the Name of the USB Key Inserted by Bob Smith? (BOTS Hint, Not the Answer)
Automating Threat Operations and Threat Hunting with Recorded Future
Keep the Learning Going with the New Best of .conf Hub
