Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search

Difference between "Ranger ranger_audits" and "LogSearch audit_logs" Solr collections

sroberts
Guru

Created ‎02-23-2018 09:53 AM

What is the difference between these Solr collections?

  • Ranger: 'ranger_audits'
  • LogSearch: 'audit_logs'
991 Views
0 Kudos
2 REPLIES 2

nixonrodrigues
Expert Contributor

Created ‎02-24-2018 06:32 AM

@Sean Roberts

ranger_audits:- This is by Ranger plugins (hive,kafka etc) to stored the authorization audits [user,ip, resource, access/deny etc, timestamp etc] specific to authorization

Logsearch: audit_logs :- This is the collection where the logs of the service where the log_search is integrated. This is later used by logsearch UI to do analysis.

841 Views
0 Kudos

sroberts
Guru

Created ‎02-24-2018 11:04 AM

Logsearch stores logs in the collection "hadoop_logs". What does it store in "audit_logs" and is there an overlap with Ranger?

I don't see any documentation for logsearch explaining what is in each collection.

And what "solr_audit_logs_use_ranger" means in the logsearch config.

841 Views
0 Kudos
Take a Tour of the Community
Don't have an account?
Register
Your experience may be limited. Sign in to explore more.
Announcements
Product Announcements
[ANNOUNCE] CDP Private Cloud Data Services 1.5.0 Released
Community Announcements
January 2023 Community Highlights
Product Announcements
[ANNOUNCE] New Cloudera JDBC Connector 2.6.30 for Impala is Released
What's New @ Cloudera
Cloudera Operational Database (COD) provides a CLI option to enable HBase region canaries
What's New @ Cloudera
Cloudera Operational Database (COD) supports creating an operational database using a predefined Data Lake template
View More Announcements