ExamTopics Logo
Mail Us[email protected]
Menu
Splunk Discussions
exam questions

Exam SPLK-3003 All Questions

View all questions & answers for the SPLK-3003 exam
Go to Exam

Exam SPLK-3003 topic 1 question 77 discussion

Actual exam question from Splunk's SPLK-3003
Question #: 77
Topic #: 1
[All SPLK-3003 Questions]

A working search head cluster has been set up and used for 6 months with just the native/local Splunk user authentication method. In order to integrate the search heads with an external Active Directory server using LDAP, which of the following statements represents the most appropriate method to deploy the configuration to the servers?

  • A. Configure the integration in a base configuration app located in shcluster-apps directory on the search head deployer, then deploy the configuration to the search heads using the splunk apply shcluster-bundle command.
  • B. Log onto each search using a command line utility. Modify the authentication.conf and authorize.conf files in a base configuration app to configure the integration.
  • C. Configure the LDAP integration on one Search Head using the Settings > Access Controls > Authentication Method and Settings > Access Controls > Roles Splunk UI menus. The configuration setting will replicate to the other nodes in the search head cluster eliminating the need to do this on the other search heads.
  • D. On each search head, login and configure the LDAP integration using the Settings > Access Controls > Authentication Method and Settings > Access Controls > Roles Splunk UI menus.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by chuchoneitor at Sept. 7, 2021, 11:51 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
chuchoneitor
Highly Voted 3 years, 7 months ago
I think the correct one is A
upvoted 11 times
...
Redtonyeah
Highly Voted 2 years, 11 months ago
Selected Answer: A
A is the correct
upvoted 6 times
...
b5white
Most Recent 9 months, 1 week ago
Selected Answer: C
C is correct and describes how I did it in the lab.
upvoted 1 times
...
M9201715
2 years, 3 months ago
Both A and C would work, and from the Services Core Implementation course notes it says that the UI is helpful for LDAP integration because "UI gives useful validation assistance" (p. 19). However, the base config for search heads has all of the LDAP parameters in it, and that's how we had to do it in the Core Implementation bootcamp. So I think A is the better choice
upvoted 4 times
D71
2 years, 2 months ago
For a single host I would agree that he UI is the preferred technique, but in a cluster, use an app and push it from the deployer. If a DEV system is available, they the UI can be used to create and validate the authentication.conf file.
upvoted 1 times
...
...
cornripper
2 years, 4 months ago
A is correct. You should have done this in the Core Implementation labs.
upvoted 3 times
b5white
9 months, 1 week ago
I did do this in the lab. I configured it on one SH through the UI and all of them got it. C.
upvoted 1 times
...
...
matsumo
2 years, 8 months ago
Selected Answer: C
C is the correct. It is recommended that LDAP settings be configured through the UI.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago