Splunk Enterprise
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Active Directory Credentials- How do I prevent AD disabling accounts?

dglass0215
Path Finder
‎09-06-2022 12:26 PM

Hello,

My Splunk environment is integrated with Active Directory for Logins per DoD STIG Requirement.  However one of the Active Directory STIGs requires AD accounts to be disabled if not logged in the past 30 days.  And it does not seem that logging in via Splunk notifies AD that the user has logged in.  Please help as I have certain users that only login via the Splunk UI and every month AD is disabling their accounts.

Thanks

David

Labels (1)
Labels
0 Karma
Reply

dglass0215
Path Finder
‎09-12-2022 11:26 AM

Surprised that I have not received a response.  Is this not the right place for this type of question?  And if not, can someone point me to where I might get a better reply?

Thanks

David

0 Karma
Reply
Get Updates on the Splunk Community!

Observe and Secure All Apps with Splunk

  Join Us for Our Next Tech Talk: Observe and Secure All Apps with SplunkAs organizations continue to innovate ...

Splunk Decoded: Business Transactions vs Business IQ

It’s the morning of Black Friday, and your e-commerce site is handling 10x normal traffic. Orders are flowing, ...

Fastest way to demo Observability

I’ve been having a lot of fun learning about Kubernetes and Observability. I set myself an interesting ...