LDAP user role setting

anoopambli · ‎04-28-2014

I have configured LDAP for user authorization and role management. I want all the users in our organization have limited access to our splunk instance, basically they should be able to get in and get limited access to data. I talked to the LDAP admin here and he asked to take out the group based filtering option so that it does not filter users based on any group membership. I tried that but whats happening it it is pulling up all the AD groups but have no roles mapped to it. There are close to 1000 groups getting pulled up that way and i cant sit and assign splunk role to it.

Is there anyway i can assign role to all these groups at one go?

rijhwani · ‎04-28-2014

No, but you could get all the users assigned to a Splunk group in the LDAP, and craft your group search accordingly. It is, after all, how LDAP was supposed to be used.

anoopambli · ‎04-29-2014

ok, i will check with LDAP guys to see if they already hav global group present.

grijhwani · ‎04-28-2014

True enough.

martin_mueller · ‎04-28-2014

Depending on how your LDAP is built, there may already be a global users group containing everyone.

LDAP user role setting

Join Us for Splunk University and Get Your Bootcamp Game On!

.conf24 | Learning Tracks for Security, Observability, Platform, and Developers!

Announcing Scheduled Export GA for Dashboard Studio