There have been a number of questions recently on using AD/IPA with HDP 2.3 security:
How to setup Active Directory/IPA?
How to setup cluster OS to recognize users from AD using SSSD?
How to enable kerberos for authentication?
How to install Ranger for authorization/audit and setup plugins for HDFS, Hive, HBase, Kafka, Storm, Yarn, Knox and test these components on kerborized cluster?
How to sync Ranger user/group sync with AD/IPA?
How to integrate Knox with AD/IPA?
How to setup encryption at rest with Ranger KMS?
To help answer some of these questions, the partner team have prepared cheatsheets on security workshops. These are living materials with sample code snippets which are being updated/enhanced per the feedback from the field so rather than replicate the materials here, the latest materials can be referenced at the GitHub repo linked from here: