This app provides the 'ldapquery' generating command to query standard LDAP directory implementations (openldap, 389, Red Hat Directory Server, etc.) from Splunk search without any dependencies or configuration. Simply install this app on your Linux search head, restart Splunk, and use the command like so: | ldapquery uri='ldap://ldap.example.com' basedn='dc=example,dc=com' If you wish to query Active Directory, please use the SA-ldapsearch app (https://splunkbase.splunk.com/app/1151/) instead.