Created on 08-08-2019 10:12 PM - edited 08-17-2019 04:15 PM
Is it a problem if I deny ranger user itself from accessing resources via ranger policies? Trying to set a policy so that only a certain user user1
can access an HDFS resource, found that setting an allow condition was meaningless unless had also set a deny public
condition for the policy. However, after doing this, found that the ranger
user was actually trying to access this location (and getting denied because of the deny public
condition): So my questions are:
ranger
gets denied? How could I tell?ranger
doing here (all the audit tells me is that it was trying to access that path for something)?