Stack Overflow
Stack Overflow

Questions tagged [apache-ranger]

Apache Ranger is a framework to enable, monitor and manage comprehensive data security across the Hadoop platform. The vision with Ranger is to provide comprehensive security across the Apache Hadoop ecosystem.

Apache Ranger has the following goals:

  • Centralized security administration to manage all security related tasks in a central UI or using REST APIs.
  • Fine grained authorization to do a specific action and/or operation with Hadoop component/tool and managed through a central administration tool Standardize authorization method across all Hadoop components.
  • Enhanced support for different authorization methods - Role based access control, attribute based access control etc.
  • Centralize auditing of user access and administrative actions (security related) within all the components of Hadoop.

References

Related Tags

115 questions
0
votes
1 answer

Kafka Ranger SSL integration issue

We are trying to enable SSL connection between Apache Ranger and Kafka cluster. After creating keystore and truststore for both Kafka and Ranger, we are unable to connect Kafka to Ranger and we are getting the following error message: [2020-06-25…
Shailendra
  • 347
  • 6
  • 21
0
votes
1 answer

Ranger user sync not syncing user in real time

We installed ranger user-sync and able to sync all external users via open LDAP. This user sync is only happening when we restart ranger user sync. I would like to see if user can sync in real-time. Please help me how can I achieve this. Below…
Shailendra
  • 347
  • 6
  • 21
0
votes
1 answer

External user not able to login through Ranger Admin UI

We are trying to implement Ranger admin UI authentication by using LDAP We configured Open source Apache Ranger Admin UI and we are able to login into admin UI via internal users - users created within admin UI (users created manually and users…
Shailendra
  • 347
  • 6
  • 21
0
votes
1 answer

Apache Ranger Row Level Filter Policy on Hive Tables

I want to use wildcard in Apache Ranger Policy while applying row level filter policy. Since Apache Ranger have a constraint to use wild card what is the possible solution to do it.
rishabh shukla
  • 1
  • 1
0
votes
1 answer

Is the only way to do an attribute comparison in Apache Ranger using Condition Evaluator?

I am looking to compare user attributes to resource data to permit access. I.E. permit if user office == office of record. Is the only way to do this using a Context Enricher with a Condition Evaluator? Or is there something more "out of the…
Michael C Good
  • 567
  • 2
  • 11
0
votes
0 answers

Presto - Ranger Issue with Hive Connector

We have a Presto(Version - 323-E.8) connector with Ranger enabled CDP Hive3 cluster where I'm able to run the select query on existing Hive ORC foramatted tables but couldn't create or delete any views on Hive metastore. It's throwing permissions…
Rajashekar Reddy
  • 101
  • 1
  • 7
0
votes
0 answers

Join Hive Yarn aplication_id and Ranger Log Audit

On Hadoop Yarn, how can I relate the yarn logs -applicationId of a transaction with the Hive apache ranger audit log?
alejomarchan
  • 368
  • 1
  • 10
  • 20
0
votes
0 answers

Configure Apache Ranger web context path to /ranger

I have been trying to find configuration for Apache Ranger where I'll be able to access Ranger via http://localhost/ranger rather than http:localhost:6080. I am using NGINX and below is my NGINX configuration for ranger location /ranger/ { …
Babar Baig
  • 383
  • 2
  • 15
0
votes
1 answer

Does Ranger incremental AD sync overwrite each time or leave previously synced users (eg. if filter changes)? Unix users recreated?

Looking for some clarification on how incremental sync works / does. I have recently configured Ranger/AD sync with incremental sync off and the user search filter blank. This resulted in all users from AD being added to Ranger. This was just…
lampShadesDrifter
  • 3,925
  • 8
  • 40
  • 102
0
votes
1 answer

Hive query failed in Tez engine but runing in MR mode

I have change my hive engine to Tez and want to run query using tez but query only executed with hadoop and hive users and when I change my user(user51) in beeline or Hue query got failed. But same query running fine with user51 when hive engine is…
Gabber
  • 7,169
  • 3
  • 32
  • 46
0
votes
1 answer

Using -update option in java distcp

My goal is to use the java distcp api in java. With command line i am able to perform a distcp : hadoop --config /path/to/cluster2/hadoop/conf distcp -skipcrccheck -update hdfs://clusterHA1/path/to/file hdfs://clusterHA2/path/to/target In java i…
maxime G
  • 1,660
  • 1
  • 10
  • 27
0
votes
2 answers

Ranger - Hive service setup

I am trying to setup ranger service for hive authorization, but confused with the details I need to use while creating the Hive service. I have my metastore on mysql , Ranger has it's own DB mysql. I am confused what exactly I need to enter for…
rkj
  • 671
  • 3
  • 14
  • 25
0
votes
0 answers

Unable to update/add/delete user to group in Ranger

We have a requirement to add/update/delete a user to a group in ranger through rest API. I see that there are rest API available using the userId but not through userName. Is there any way we can do this ??. 2.Also while creating a user the id…
bharath reddy
  • 21
  • 6
0
votes
1 answer

Ranger policies don't work for HDFS NFS access

I have a ranger policy for a HDFS resource that looks like... Now trying to access that HDFS path via hadoop fs as two different users: # as an unauthorized user [ml1@HW04 ml1c]$ hadoop fs -ls
lampShadesDrifter
  • 3,925
  • 8
  • 40
  • 102
0
votes
1 answer

Hadoop Hbase Access denied exception

I want to access phoenix tables which is synced to Hbase tables. I wrote some jdbc code to access the data from Phoenix tables but i am getting access denied exception because of ranger policies…
andOrNot
  • 47
  • 1
  • 9
1 2 3 4 5
6
7 8