Stack Overflow
Stack Overflow

Questions tagged [apache-ranger]

Apache Ranger is a framework to enable, monitor and manage comprehensive data security across the Hadoop platform. The vision with Ranger is to provide comprehensive security across the Apache Hadoop ecosystem.

Apache Ranger has the following goals:

  • Centralized security administration to manage all security related tasks in a central UI or using REST APIs.
  • Fine grained authorization to do a specific action and/or operation with Hadoop component/tool and managed through a central administration tool Standardize authorization method across all Hadoop components.
  • Enhanced support for different authorization methods - Role based access control, attribute based access control etc.
  • Centralize auditing of user access and administrative actions (security related) within all the components of Hadoop.

References

Related Tags

115 questions
1
vote
1 answer

Integrating Spark jobs with Apache Ranger Plugin for Authorization with Hive tables

We are running spark jobs in the Kubernetes cluster and we want to enable authorization for spark jobs with Ranger policies defined on hive tables, I could see that there are no direct plugins available to connect with Ranger from the spark. Can…
srihari kusumanchi
  • 11
  • 3
1
vote
1 answer

How to extract audit log from Apache Ranger via REST API

I need to extract daily the audit log, I thought of using the REST API. But I don't understand how to extract it with a curl. I saw this…
Francesco_ITA
  • 11
  • 3
1
vote
1 answer

Tag based policies in Apache Ranger not working

I am new to Apache Ranger and the BigData field in general. I am working on an on-prem big data pipeline. I have configured resource based policies in Apache Ranger (ver 2.2.0) using ranger hive plugin (Hive ver 2.3.8) and they seem to be working…
user882763
  • 51
  • 4
1
vote
1 answer

Ranger LDAP Integration User/Group Sync issue

I am using Ranger version 1.2.0.Iam trying to integrate with LDAP user/group sync. Below are the configurations of ranger. Bind User: uid=admin,o=Mobility Username Attribute : cn User Object Class​ : inetOrgPerson User Search Base :…
satish pujara
  • 219
  • 1
  • 11
1
vote
1 answer

How to migrate roles from one apache ranger instance to other instance?

We are planning to make a replica cluster of existing CDP cluster. I can import/export policies but can not import/export roles. We have around 2k+ roles, using following api I can create role but wanted to know if this can be…
potatoaim
  • 75
  • 1
  • 1
  • 5
1
vote
1 answer

Row level security with Presto and Apache Ranger

I'm running Presto (348) with a several catalogs configured. In Apache Ranger (2.1.0) I have enabled the Presto plugin, which is working fine for general access. In the Jira Ticker RANGER-2754, it's described that row level filtering and column…
element
  • 71
  • 6
1
vote
1 answer

Authorization through Apache Ranger in Spark

We have ranger policies defined on hive table and authorization works as expected when we use hive cli and beeline. But when we access those hive tables using spark-shell or spark-submit it does not work. Is there any way to set it up? Problem…
Joyan
  • 41
  • 1
  • 7
1
vote
1 answer

How to check status/health of Apache Ranger?

We recently deployed Apache Ranger version 2.0.0 on Kubernetes. We wanted to configure Readiness and Liveness probes for Apache Ranger service which is running inside pods. Is there any health endpoint for Apache Ranger which we can use?
chitender kumar
  • 394
  • 4
  • 21
1
vote
0 answers

How to adopt Ranger policy in Spark SQL?

I am using Spark 3.0.1 on HDP 3.1.4. Everything is running well except Spark SQL can't honor Ranger standard SQL policy. In the past days, I tried the solution which found from the community, the hive warehouse connector and spark-authorizer and…
JJHuang
  • 11
  • 1
  • 4
1
vote
1 answer

Ranger is showing Hadoop-ACL used to grant access instead of Ranger-ACL

I have two hiveserver2 instances running. One uses Binary Transport (for HUE), the other uses HTTP transport (for ODBC connections). I am trying to grant access for one user (ra01 in the screenshot) to only a specific table in Hive. The user account…
dribble
  • 93
  • 2
  • 11
1
vote
1 answer

Is it possible to integrate apache ranger/atlas with apache flink?

Flink is great at what it does and the flink sql client looks very promising. I'm trying to understand if it would be possible to integrate governance tools with flink sql client when used for interactive queries.
vikash dat
  • 1,494
  • 2
  • 19
  • 37
1
vote
0 answers

HDP 3.1.5 | Hive Create Role issue

I have installed HDP 3.1.5 with KERBEROS security. installed Ranger Plugin .after setting up the hive authentication as Ranger . Getting below error . Please suggest the resolution create role userRole; Error: Error while compiling statement:…
nick
  • 21
  • 3
1
vote
1 answer

Ranger rest api to get all users in a group

I have a requirement to get all users currently in a group (internal) through API , but using Group rest API , I am not able to get the users in it. curl -s -u admin:pass -H "Accept: application/json" -H "Content-Type: application/json" -X GET…
rkj
  • 671
  • 3
  • 14
  • 25
1
vote
0 answers

Is there a way to let Ranger policy execute SHOW database?

Apache Ranger : 1.2 Hive : 2.3.3 Ranger policy-A : AD Group-1 has access to both DB-1 & DB-2 Ranger policy-B : AD Group-2 has access to only DB-2 When a user1 belong to Group-1 executes "SHOW DATABASES; he could see list of databases. But, when a…
sam
  • 85
  • 3
  • 10
1
vote
1 answer

Ranger tag permissions appear to not take effect in Atlas

Having problem where it appears that policy tags set in Ranger appear to not take effect in Atlas. Roughly following the tutorial here…
lampShadesDrifter
  • 3,925
  • 8
  • 40
  • 102
1
2
3 4 5 6 7 8