Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
Check out our newest addition to the community, the Cloudera Data Analytics (CDA) group hub.

How to encrypt and store zeppelin passwords of different users in database?

aishwaryamdixit
Explorer

Created ‎08-30-2017 03:59 AM

Hi All,

Currently the passwords of all the users of zeppelin are stored in shiro.ini file in plain text format. I want to encrypt these passwords and store in mysql database. I am struck with this since many days as I am new to the technology. I don't have LDAP or AD. Also no kerberization is implemented. Ambari UI is being used. Looking to achieve it through configuration changes itself rather than changing the existing functionality completely. Can anyone please guide me to achieve the same.

Thanks in advance.

1,904 Views
0 Kudos
2 REPLIES 2

rrrajesh
Contributor

Created ‎08-30-2017 07:28 PM

@Aishwarya Dixit

We can use jceks to secure the password and edit shiro.ini to include this jceks file.

Ex:

hadoop credential create contextFactory.systemPassword -provider jceks:///etc/zeppelin/conf/credentials.jceks

Slide 25 in the following article has an example,

https://www.slideshare.net/vinnies12/apache-spark-apache-zeppelin-security-for-enterprise-deployment...

See if this helps.

1,121 Views

aishwaryamdixit
Explorer

Created ‎08-31-2017 05:40 AM

Hi @Rajesh, Thanks for the answer. This seems to be feasible to be implemented in the cluster I am using. Needed few clarifications though.

1. What would be the content of jceks file? Can i have an example jceks fle for better understanding?

2. hadoop credential create contextFactory.systemPassword -provider jceks:///etc/zeppelin/conf/credentials.jceks This line would be included in [main] part of shiro.ini file?

It would be really helpful if you could guide me through this.

Thanks in advance.

1,121 Views
0 Kudos
Take a Tour of the Community
Don't have an account?
Register
Your experience may be limited. Sign in to explore more.
Announcements
What's New @ Cloudera
Cloudera Operational Database (COD) UI supports creating a smaller cluster using a predefined Data Lake template
What's New @ Cloudera
Cloudera Operational Database (COD) supports scaling up the clusters vertically
Product Announcements
CDP Public Cloud: April 2023 Release Summary
What's New @ Cloudera
Cloudera Machine Learning launches "Add Data" feature to simplify data ingestion
What's New @ Cloudera
Simplify Data Access with Custom Connection Support in CML
View More Announcements