The Authentication Gate • Room 2

Configuring LDAP Authentication

LDAP integration is configured in authentication.conf. You define an LDAP strategy that points to your directory server, specifies the search base, and maps LDAP groups to Splunk roles.

Key settings include host (LDAP server), port (389 for LDAP, 636 for LDAPS), SSLEnabled, bindDN (service account), userBaseDN, and groupBaseDN.

Group mapping in authentication.conf links LDAP groups to Splunk roles. For example, mapping the "SplunkAdmins" LDAP group to the Splunk "admin" role.

authentication.conf LDAP stanza

[authentication]
authType = LDAP
authSettings = my_ldap

[my_ldap]
host = ldap.company.com
port = 636
SSLEnabled = 1
bindDN = CN=splunk_svc,OU=Service,DC=company,DC=com
userBaseDN = OU=Users,DC=company,DC=com
groupBaseDN = OU=Groups,DC=company,DC=com

Knowledge Check

Prove your understanding to clear the room (Rewards XP)

❤️❤️❤️

Question 1 of 2

What port is used for LDAPS (LDAP over SSL)?

A389

B443

C636

D8089