[ https://issues.apache.org/jira/browse/HIVE-12007?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14940241#comment-14940241 ]
Szehon Ho commented on HIVE-12007: ---------------------------------- Backward compatibility is important, +1 > Hive LDAP Authenticator should allow just Domain without baseDN (for AD) > ------------------------------------------------------------------------ > > Key: HIVE-12007 > URL: https://issues.apache.org/jira/browse/HIVE-12007 > Project: Hive > Issue Type: Bug > Components: HiveServer2 > Affects Versions: 1.1.0 > Reporter: Naveen Gangam > Assignee: Naveen Gangam > Attachments: HIVE-12007.patch > > > When the baseDN is not configured but only the Domain has been set in > hive-site.xml, LDAP Atn provider cannot locate the user in the directory. > Authentication fails in such cases. This is a change from the prior > implementation where the auth request succeeds based on being able to bind to > the directory. This has been called out in the design doc in HIVE-7193. > But we should allow this for now for backward compatibility. -- This message was sent by Atlassian JIRA (v6.3.4#6332)