Georgi Ivanov created RANGER-5206:
-------------------------------------
Summary: Ranger Audit filters do not work for Kafka Ranger plugin
Key: RANGER-5206
URL: https://issues.apache.org/jira/browse/RANGER-5206
Project: Ranger
Issue Type: Bug
Components: Ranger
Affects Versions: 2.3.0
Reporter: Georgi Ivanov
I am not able to make the ranger audit filters to work for Kafka Ranger plugin.
I've tried all possible combinations and neither seems to be able to make any
difference. What I want to do is reduce the amount of audit logging produced by
the ranger plugin (for kafka) but disabling audit log generation for certain
conditions. I tried adding audit log filters for:
result: ALLOWED
user: certain SSL principals, the kafka broker ones, etc
topic: *
cluster:*
actions: publish, consume, etc
and anything which I can think of and neither worked.
The only thing that actually did work is adding the principals to
ranger.plugin.audit.exclude.users, however that is not the most flexible option
as it is either you don't log anything from these principals or you log
everything. It's either all or nothing.
Hopefully someone can shed a light on why this does not work.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
