[jira] [Comment Edited] (RANGER-2672) Ranger admin should be configurable via LDAP in ranger-site.xml

Velmurugan Periasamy (Jira) Wed, 11 Dec 2019 09:51:10 -0800


    [ 
https://issues.apache.org/jira/browse/RANGER-2672?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16993753#comment-16993753
 ]


Velmurugan Periasamy edited comment on RANGER-2672 at 12/11/19 5:49 PM:
------------------------------------------------------------------------

yes. 

https://docs.cloudera.com/HDPDocuments/HDP3/HDP-3.1.0/configuring-ranger-authe-with-unix-ldap-ad/content/ldap_authentications_settings.html

https://docs.cloudera.com/HDPDocuments/HDP3/HDP-3.1.0/authorization-ranger/content/ranger_install_advanced_usersync_settings.html

http://crazyadmins.com/how-to-integrate-ranger-with-ldap/




was (Author: vperiasamy):
yes. 

> Ranger admin should be configurable via LDAP in ranger-site.xml
> ---------------------------------------------------------------
>
>                 Key: RANGER-2672
>                 URL: https://issues.apache.org/jira/browse/RANGER-2672
>             Project: Ranger
>          Issue Type: Improvement
>          Components: admin
>            Reporter: Tristan Stevens
>            Priority: Major
>
> Configuring Ranger admin via the current mechanism (environment variables for 
> initial user and then password stored in the database) could be considered 
> insecure.
> Instead, it should be possible to switch off this behaviour and configure 
> LDAP authentication/authorization to the Ranger admin UI and to specify an 
> LDAP group for whom admin level privileges are required.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Comment Edited] (RANGER-2672) Ranger admin should be configurable via LDAP in ranger-site.xml

Reply via email to