Blogs: LDAP

Four blog posts and three of them relate to LDAP. This must be a complicated topic! It can be and that is why I break it up into chunks that should be easier to digest.

This post will be short and sweet. I want to provide a few examples of userBaseFilters and groupBaseFilters that you can use in your configuration to make your Splunk experience, hopefully, better.

When you specify a userBaseDN or groupBaseDN without a filter, you are asking your LDAP server to return all entries residing beneath the specified baseDN. In 99.9999999999% of cases, you don’t actually want all entries. This is where *BaseFilter configuration comes in handy. Now, let’s go right to the examples:

If you’re using AD, you can…