I was voluntold to install Splunk asap. A VM was created with 2019 Datacenter. I was "guided" by someone from another agency. I downloaded and installed Splunk 8.1.1 and he walked me through the installation. One of our primary reasons for installing Splunk is to be able monitor Active Directory. I did NOT use an AD account when installing Enterprise. I guess it just lets you install with a made-up ID. So the questions are: Can I monitor AD if I didn't install with an AD account? If not, is the only option to reinstall?
... View more