[jira] [Commented] (RANGER-2672) Ranger admin should be configurable via LDAP in ranger-site.xml

Velmurugan Periasamy (Jira) Wed, 11 Dec 2019 09:33:46 -0800


    [ 
https://issues.apache.org/jira/browse/RANGER-2672?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16993736#comment-16993736
 ]


Velmurugan Periasamy commented on RANGER-2672:
----------------------------------------------

LDAP authentication is already supported for a long time. 

Mapping external users to ADMIN role is also supported - See 
https://issues.apache.org/jira/browse/RANGER-1491. 


> Ranger admin should be configurable via LDAP in ranger-site.xml
> ---------------------------------------------------------------
>
>                 Key: RANGER-2672
>                 URL: https://issues.apache.org/jira/browse/RANGER-2672
>             Project: Ranger
>          Issue Type: Improvement
>          Components: admin
>            Reporter: Tristan Stevens
>            Priority: Major
>
> Configuring Ranger admin via the current mechanism (environment variables for 
> initial user and then password stored in the database) could be considered 
> insecure.
> Instead, it should be possible to switch off this behaviour and configure 
> LDAP authentication/authorization to the Ranger admin UI and to specify an 
> LDAP group for whom admin level privileges are required.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (RANGER-2672) Ranger admin should be configurable via LDAP in ranger-site.xml

Reply via email to