Data and source types for the Splunk Supporting Add-on for Active Directory
The Splunk Supporting Add-on for Active Directory performs LDAP queries against Active Directory. As the main function of the add-on is to provide data from an external source, it does not collect data like other add-ons do.
The add-on provides the following source type:
|Log File||Log Format||Source Type||Default File Location|
|SA-LDAPsearch log file||Plain text||
The SA-LDAPsearch.log file contains debugging information from the various SA-LDAPsearch commands.
The ldap.conf configuration file
Release Notes for Splunk Supporting Add-on for Active Directory
This documentation applies to the following versions of Splunk® Supporting Add-on for Active Directory: 1.1.13, 2.0.0, 2.0.1, 2.1.0, 2.1.1, 2.1.2, 2.1.3, 2.1.4, 2.1.5, 2.1.6, 2.1.7, 2.1.8, 2.2.0, 2.2.1, 3.0.0, 3.0.1, 3.0.2, 3.0.3