Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Solved Go to solution

How to integrate Ranger with two High Availability Active Directory Server

Labels:
avatar
author-rank rburagohain
Rising Star

Created ‎08-25-2016 08:46 AM

ldaps-new.jpg

Hi Team,

I am trying to integrate Ranger with two HA Active Directory Servers. But how shall I configure two AD servers together from ambari in ranger while integrating with AD so that in case one AD server goes down, it will work from the secondary AD server automatically. Can you please let us know how it can be implemented?? I have two AD servers in HA mode, primary is 192.168.1.4 and secondary is 192.168.1.8. I am also attaching the screenshot where only one AD server is configured.

Thanks,

Rahul

2,088 Views
0
1 ACCEPTED SOLUTION

avatar
author-rank hyadav
Rising Star

Created ‎08-25-2016 08:52 AM

@Rahul Buragohain Ranger (on HDP 2.3.4 which has Apache Ranger 0.5.0) not supporting multiple ldap/OU sync at this point of time. Please refer to below Apache Documentation: https://cwiki.apache.org/confluence/display/RANGER/Multiple+OU+Ldap+Search+support+for+UserSync

However we can sync up with one domain controller with Ranger and for others created the local users in ranger admin, still we get the next release. You may refer to an article on HCC by Hortonworker: https://community.hortonworks.com/articles/36651/how-to-sync-up-multiple-domain-controllers-from-ad....

View solution in original post

1,801 Views
0
3 REPLIES 3

avatar
author-rank hyadav
Rising Star

Created ‎08-25-2016 08:52 AM

@Rahul Buragohain Ranger (on HDP 2.3.4 which has Apache Ranger 0.5.0) not supporting multiple ldap/OU sync at this point of time. Please refer to below Apache Documentation: https://cwiki.apache.org/confluence/display/RANGER/Multiple+OU+Ldap+Search+support+for+UserSync

However we can sync up with one domain controller with Ranger and for others created the local users in ranger admin, still we get the next release. You may refer to an article on HCC by Hortonworker: https://community.hortonworks.com/articles/36651/how-to-sync-up-multiple-domain-controllers-from-ad....

1,802 Views
0

avatar
author-rank rburagohain
Rising Star

Created ‎08-25-2016 09:53 AM

@Harini Yadav

Hi Harini,

Thanks for the answer. However can you please help us in raising this concern as a bug for the above subject so that it will get available in the next release.

Thanks,

Rahul

1,801 Views
0 Kudos

avatar
author-rank hyadav
Rising Star

Created ‎08-25-2016 02:50 PM

@Rahul Buragohain

This has been incorporated in the next official release. Below is the Apache JIRA details: https://issues.apache.org/jira/browse/RANGER-803

1,801 Views
0 Kudos
Announcements
What's New @ Cloudera
[RELEASED] Cloudera Streaming Analytics - Kubernetes Operato...
What's New @ Cloudera
[RELEASED] Cloudera Streams Messaging - Kubernetes Operator ...
Community Announcements
February 2025 Community Highlights
What's New @ Cloudera
3 Benefits of External IDE Connectivity, Now Available in Cl...
What's New @ Cloudera
Performance comparison of Spark3 on YARN with S3 Standard VS...
View More Announcements