padraic Carron
asked on
Splunk Active Directory Add-on
Hi,
I have just installed splunk enterprise, I want to monitor windows data etc.
I installed the Add-on for active director App and the windows app and am trying to configure them. I have opened the AD App and have started configuring using the wizard. I have entered the following parameters:
Domain name = mydomain.ie
Alternate Domain name = mydomain
LDAP Server:
Hostname = ip address of domain controller
port = 389
ssl = blank
Credentials:
Bind DN = mydomain\domain admin username
Password = Domain admin user password
When I hit test I get an error:
could not access the directory service at ldap://DC IP Address:389 ldapinvalidcredentialsresu lt - 49 - invalidcredentials - none - 80090308: ldaperr: dsid-0c0903a9, comment: acceptsecuritycontext error, data 52e, v1db0 - bindresponse - none"
I some time also get an error stating the Alternate domain name is in the domain please correct,
Any ideas what I am doing wrong here, the splunk documentation is not very helpful for a novice
Thanks
I have just installed splunk enterprise, I want to monitor windows data etc.
I installed the Add-on for active director App and the windows app and am trying to configure them. I have opened the AD App and have started configuring using the wizard. I have entered the following parameters:
Domain name = mydomain.ie
Alternate Domain name = mydomain
LDAP Server:
Hostname = ip address of domain controller
port = 389
ssl = blank
Credentials:
Bind DN = mydomain\domain admin username
Password = Domain admin user password
When I hit test I get an error:
could not access the directory service at ldap://DC IP Address:389 ldapinvalidcredentialsresu
I some time also get an error stating the Alternate domain name is in the domain please correct,
Any ideas what I am doing wrong here, the splunk documentation is not very helpful for a novice
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks that seemed to work, but when I go to save it fails on the Alternate domain name.
I have put in the paramaters:
Domain name = mydomain.ie
Alternate Domain = mydomain
The error is "This domain is in use by the mydomain.ie"
I have put in the paramaters:
Domain name = mydomain.ie
Alternate Domain = mydomain
The error is "This domain is in use by the mydomain.ie"
I'm not too familiar with the product you are using but my two suggestions would be.
1. You may not need the additional domain name.
2. It may be referring to your DNS domain name versus your netbios domain name.
I would try number 1 first.
1. You may not need the additional domain name.
2. It may be referring to your DNS domain name versus your netbios domain name.
I would try number 1 first.
ASKER
I just put in a dummy name and it seemed to work ???
You probably don't need it.
get-aduser {admin username} | select-object distinguishedname