Support Questions
Find answers, ask questions, and share your expertise
Announcements
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

How to setup Ranger NiFi policy auth based on LDAP group ?

Solved Go to solution
Highlighted

How to setup Ranger NiFi policy auth based on LDAP group ?

Guru

Hi,

I setup HDF (in particular NiFi & Ranger) to fetch users&groups from AD and do auth against AD.

Defining policies in Ranger for NiFi, based on AD users, is working as expected after logging in to NiFi with AD credentials.

The only thing that is not working are the policies which grants access based on AD groups.

There is this article from almost a year ago. Does it still apply @Bryan Bende? Means, NiFi policies based on AD group membership is not working ?

Thanks in advance....

1 ACCEPTED SOLUTION

Accepted Solutions

Re: How to setup Ranger NiFi policy auth based on LDAP group ?

Master Guru

@Gerd Koenig

HDF 3.0 does not have support of Ranger groups or LDAP groups. This should be a new feature in the HDF release coming out early next year.

Thanks,

Matt

4 REPLIES 4

Re: How to setup Ranger NiFi policy auth based on LDAP group ?

Super Collaborator

@Gerd Koenig,

Apperently Yes, Still this is the case with HDF 3.0, we have tried this a month back and eventually gave up after figuring out that this is not supported at this moment.

Re: How to setup Ranger NiFi policy auth based on LDAP group ?

Master Guru

@Gerd Koenig

HDF 3.0 does not have support of Ranger groups or LDAP groups. This should be a new feature in the HDF release coming out early next year.

Thanks,

Matt

Re: How to setup Ranger NiFi policy auth based on LDAP group ?

Guru

Hi @Matt Clarke , thanks for your reply. Will dive back into this with the release you mentioned.

You're saying "no support of Ranger or LDAP Groups", but support of Ranger is already there, although limited to user-based policies. Or did I misunderstand something here ?!?!

Re: How to setup Ranger NiFi policy auth based on LDAP group ?

Master Guru

@Gerd Koenig

I edited my response to be more clear. While Ranger is supported, the use of Ranger Groups is not.

Thanks,

Matt