Support Questions
Find answers, ask questions, and share your expertise
Announcements
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

How to integrate Ranger with two High Availability Active Directory Server

Solved Go to solution

How to integrate Ranger with two High Availability Active Directory Server

Contributor

ldaps-new.jpg

Hi Team,

I am trying to integrate Ranger with two HA Active Directory Servers. But how shall I configure two AD servers together from ambari in ranger while integrating with AD so that in case one AD server goes down, it will work from the secondary AD server automatically. Can you please let us know how it can be implemented?? I have two AD servers in HA mode, primary is 192.168.1.4 and secondary is 192.168.1.8. I am also attaching the screenshot where only one AD server is configured.

Thanks,

Rahul

1 ACCEPTED SOLUTION

Accepted Solutions

Re: How to integrate Ranger with two High Availability Active Directory Server

Contributor

@Rahul Buragohain Ranger (on HDP 2.3.4 which has Apache Ranger 0.5.0) not supporting multiple ldap/OU sync at this point of time. Please refer to below Apache Documentation: https://cwiki.apache.org/confluence/display/RANGER/Multiple+OU+Ldap+Search+support+for+UserSync

However we can sync up with one domain controller with Ranger and for others created the local users in ranger admin, still we get the next release. You may refer to an article on HCC by Hortonworker: https://community.hortonworks.com/articles/36651/how-to-sync-up-multiple-domain-controllers-from-ad....

3 REPLIES 3

Re: How to integrate Ranger with two High Availability Active Directory Server

Contributor

@Rahul Buragohain Ranger (on HDP 2.3.4 which has Apache Ranger 0.5.0) not supporting multiple ldap/OU sync at this point of time. Please refer to below Apache Documentation: https://cwiki.apache.org/confluence/display/RANGER/Multiple+OU+Ldap+Search+support+for+UserSync

However we can sync up with one domain controller with Ranger and for others created the local users in ranger admin, still we get the next release. You may refer to an article on HCC by Hortonworker: https://community.hortonworks.com/articles/36651/how-to-sync-up-multiple-domain-controllers-from-ad....

Re: How to integrate Ranger with two High Availability Active Directory Server

Contributor

@Harini Yadav

Hi Harini,

Thanks for the answer. However can you please help us in raising this concern as a bug for the above subject so that it will get available in the next release.

Thanks,

Rahul

Highlighted

Re: How to integrate Ranger with two High Availability Active Directory Server

Contributor
@Rahul Buragohain

This has been incorporated in the next official release. Below is the Apache JIRA details: https://issues.apache.org/jira/browse/RANGER-803