Splunk® Supporting Add-on for Active Directory

Deploy and Use the Splunk Supporting Add-on for Active Directory (SA-LDAPSearch)

This documentation does not apply to the most recent version of Splunk® Supporting Add-on for Active Directory. For documentation on the most recent version, go to the latest release.

Data and source types for the Splunk Supporting Add-on for Active Directory

The Splunk Supporting Add-on for Active Directory performs LDAP queries against Active Directory. As the main function of the add-on is to provide data from an external source, it does not collect data like other add-ons do.

The add-on provides the following source type:

Log File Log Format Source Type Default File Location
SA-LDAPsearch log file Plain text SA-Ldapsearch $SPLUNK_HOME/var/log/splunk/sa-ldapsearch.log

SA-LDAPsearch.log

The SA-LDAPsearch.log file contains debugging information from the various SA-LDAPsearch commands.

Last modified on 10 April, 2015
The ldap.conf configuration file   Release Notes for Splunk Supporting Add-on for Active Directory

This documentation applies to the following versions of Splunk® Supporting Add-on for Active Directory: 1.1.13, 2.0.0, 2.0.1, 2.1.0, 2.1.1, 2.1.2, 2.1.3, 2.1.4, 2.1.5, 2.1.6, 2.1.7, 2.1.8, 2.2.0, 2.2.1, 3.0.0, 3.0.1, 3.0.2, 3.0.3

Acrobat logo Download manual
Acrobat logo Download this page

Was this topic useful?







You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters