With a distributed environment am I required to have the same authentication.conf and authorize.conf on search heads and indexers? I'm using both basic auth and LDAP.
I currently get errors like this ERROR UserManagerPro - Could not get info for non-existent user="<user>" and they seem to be related to scheduled searches. I'm guessing that that the knowledge bundle is getting sent from the search head with the configured search to the indexers. I do not have the same authentication.conf or authorize.conf on the indexers, is this why I am seeing this error?
And if the same config is necessary what if I wanted to prevent users besides admin from being able to log into the indexers?
... View more