Cloudera Community

Archives of Support Questions (Read Only)

This is an archived board for historical reference. Information and links may no longer be available or relevant
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
This board is archived and read-only for historical reference. To ask a new question, please post a new topic on the appropriate active board.
Solved Go to solution

Ranger KMS Tutorial

Labels:
avatar
author-rank avijeetd
Super Collaborator

Created ‎08-05-2016 09:43 AM

Hi,

Is there a Ranger KMS tutorial that we can try?

Thanks,

Avijeet

5,689 Views
0 Kudos
1 ACCEPTED SOLUTION

avatar
author-rank myoung
Super Guru

Created ‎08-05-2016 02:26 PM

@Avijeet Dash

You may find this HCC Article helpful: https://community.hortonworks.com/articles/49505/how-to-correctly-setup-the-hdfs-encryption-using-r....

View solution in original post

3,581 Views
5 REPLIES 5

avatar
author-rank myoung
Super Guru

Created ‎08-05-2016 02:26 PM

@Avijeet Dash

You may find this HCC Article helpful: https://community.hortonworks.com/articles/49505/how-to-correctly-setup-the-hdfs-encryption-using-r....

3,582 Views

avatar
author-rank khadeermhmd
New Member

Created ‎10-18-2016 10:37 PM

@Avijeet Dash I have installed ranger and ranger kms and setup all the configurations and everything is working fine.

I have created encryption zone in hdfs and in the policy i have mentioned two users(user 1 and user 2) to access this encryption zone, they are able to access this encryption zone . I want to set permissions to encryption zone in such a way that user1 should have read and write access and user 2 should have only read access?how can we define this ?

3,581 Views
0 Kudos

avatar
author-rank avijeetd
Super Collaborator

Created ‎10-19-2016 07:56 AM

@khadeer mhmd

I believe the DECRYPT_EEK permission decides the read/write access, I don't think there are 2 different permissions. you migth try only read kind of permission using HDFS plugin.

3,581 Views
0 Kudos

avatar
author-rank java_etl_bigdat
New Member

Created ‎02-13-2017 12:03 PM

Hi @khadeer mhmd, Have you installed Ranger KMS in HDP2.5 sandbox?

I am getting below error while adding Ranger KMS service in Ambari (HDP 2.5 sandbox).

Caught an exception while executing custom service command: <class 'ambari_agent.AgentException.AgentException'>: 'Script /var/lib/ambari-agent/cache/common-services/RANGER_KMS/0.5.0.2.3/package/scripts/kms_server.py does not exist'; 'Script /var/lib/ambari-agent/cache/common-services/RANGER_KMS/0.5.0.2.3/package/scripts/kms_server.py does not exist'

Could anyone please help me on this issue.

3,581 Views
0 Kudos

avatar
author-rank Abbaz
Frequent Visitor

Created ‎01-20-2017 05:23 PM

@khadeer mhmd

The owner of the file has both the read and write access and the others will have only the read access.

3,581 Views
0 Kudos
Announcements
What's New @ Cloudera
Cloudera Real time Monitoring for 7.1.9+ and 7.2.18+ with Cl...
What's New @ Cloudera
Announcing Cloudera Streaming Analytics 1.17: Python UDFs, S...
Community Announcements
Content Update: Evolving Our Community Content for Better, A...
Community Announcements
Product Name Updates — Community Label Changes & Notificatio...
What's New @ Cloudera
Announcing Cloudera Data Lineage for Trino
View More Announcements