Cloudera Community

Archives of Support Questions (Read Only)

This is an archived board for historical reference. Information and links may no longer be available or relevant
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
This board is archived and read-only for historical reference. To ask a new question, please post a new topic on the appropriate active board.
Solved Go to solution

how to drop "ranger.usersync.ldap.ldapbindpassword" using config.sh script

Labels:
avatar
author-rank sagarshimpi
Expert Contributor

Created ‎02-28-2018 05:54 AM

I am trying to automate ranger ldap integration. I am stuck at on how to drop "ranger.usersync.ldap.ldapbindpassword" value using ambari "config.sh" script ?

Can you please guide on how to achieve this ?

I tried to check in working cluster which has ranger ldap integrated and the output is as below -

# ./configs.sh -u admin -p admin -port 8080  get `hostname` hdptest ranger-ugsync-site |grep ldapbind
"ranger.usersync.ldap.ldapbindpassword" : "SECRET:ranger-ugsync-site:11:ranger.usersync.ldap.ldapbindpassword",

Not sure how the password is stored or taken in the value.

2,256 Views
0 Kudos
1 ACCEPTED SOLUTION

avatar
author-rank jsensharma author-rank
Master Mentor

Created ‎02-28-2018 06:23 AM

@Sagar Shimpi

Not sure if i understood the query correctly... But i tried this

1. Get the "ranger-ugsync-site" config as following using "action=get"

# /var/lib/ambari-server/resources/scripts/configs.py --user=admin --password=admin --port=8080 --action=get --host=localhost --cluster=plain_ambari --config-type=ranger-ugsync-site --file=/tmp/ranger-ugsync-site_payload.json

2. Edited the file "/tmp/ranger-ugsync-site_payload.json" and changed the value of property "ranger.usersync.ldap.ldapbindpassword" in clear text like "ABCD..blah..blah"

3. set this file back using the following command. (action=set)

# /var/lib/ambari-server/resources/scripts/configs.py --user=admin --password=admin --port=8080 --action=set --host=localhost --cluster=plain_ambari --config-type=ranger-ugsync-site --file=/tmp/ranger-ugsync-site_payload.json

.

Done.

In order to verify the password was set correctly or not i then tried to get the value again:

#  /var/lib/ambari-server/resources/scripts/configs.py --user=admin --password=admin --port=8080 --action=get --host=localhost --cluster=plain_ambari --config-type=ranger-ugsync-site | grep 'ldapbindpassword'

  "ranger.usersync.ldap.ldapbindpassword": "SECRET:ranger-ugsync-site:3:ranger.usersync.ldap.ldapbindpassword",

.

View solution in original post

2,162 Views
0 Kudos
3 REPLIES 3

avatar
author-rank sagarshimpi
Expert Contributor

Created ‎02-28-2018 05:54 AM

@rguruvannagari @Jay Kumar SenSharma

2,162 Views
0 Kudos

avatar
author-rank jsensharma author-rank
Master Mentor

Created ‎02-28-2018 06:23 AM

@Sagar Shimpi

Not sure if i understood the query correctly... But i tried this

1. Get the "ranger-ugsync-site" config as following using "action=get"

# /var/lib/ambari-server/resources/scripts/configs.py --user=admin --password=admin --port=8080 --action=get --host=localhost --cluster=plain_ambari --config-type=ranger-ugsync-site --file=/tmp/ranger-ugsync-site_payload.json

2. Edited the file "/tmp/ranger-ugsync-site_payload.json" and changed the value of property "ranger.usersync.ldap.ldapbindpassword" in clear text like "ABCD..blah..blah"

3. set this file back using the following command. (action=set)

# /var/lib/ambari-server/resources/scripts/configs.py --user=admin --password=admin --port=8080 --action=set --host=localhost --cluster=plain_ambari --config-type=ranger-ugsync-site --file=/tmp/ranger-ugsync-site_payload.json

.

Done.

In order to verify the password was set correctly or not i then tried to get the value again:

#  /var/lib/ambari-server/resources/scripts/configs.py --user=admin --password=admin --port=8080 --action=get --host=localhost --cluster=plain_ambari --config-type=ranger-ugsync-site | grep 'ldapbindpassword'

  "ranger.usersync.ldap.ldapbindpassword": "SECRET:ranger-ugsync-site:3:ranger.usersync.ldap.ldapbindpassword",

.

2,163 Views
0 Kudos

avatar
author-rank sagarshimpi
Expert Contributor

Created ‎03-01-2018 12:30 AM

@Jay Kumar SenSharma It worked. thanks you alot for quick help.

2,162 Views
0 Kudos
Announcements
What's New @ Cloudera
Announcing Cloudera Streaming Analytics 1.17: Python UDFs, S...
Community Announcements
Content Update: Evolving Our Community Content for Better, A...
Community Announcements
Product Name Updates — Community Label Changes & Notificatio...
What's New @ Cloudera
Announcing Cloudera Data Lineage for Trino
What's New @ Cloudera
Announcing Cloudera Streaming Analytics Operator for Kuberne...
View More Announcements