We have configured Nifi With HDF and Ranger authorization enabled but we are seeing the below error while testing the connection from ranger to nifi, we are getting the below error.
Unable to retrieve any resources using given parameters. Status Code = 403Unable to retrieve any resources using given parameters.
Its a 3 node cluster, in the below ranger configuration which node URL i need to place. Please share the config for cluster setup with Ranger.
@Anishkumar Valsalam Have you added the policy to grant access for /proxy to all the NiFi Nodes? Check the audit tab in ranger to understand for what resource the access was forbidden.
You can also check the following resources to integrate NiFi with Ranger.
The ability for Ranger to communicate with NiFi will require that you have authorized your ranger user to have access to the NiFi resources.
The only reason Ranger ever needs to talk to NiFi is to obtain a listing of the current global and component level policies for which users can be granted. This makes setting up policies easier in Ranger since the policy list will display these resources.
The policy that must be granted to your Ranger user is the "/resources" policy:
When you click the "test connection" button, the client certificate from the configured keystore is passed to the configured NiFi URL. 2-way TLS authentication is performed. Upon successful authentication, Authorization will then be performed. Since you NiFi is now configured to use Ranger, that authorization will be done there. If your Ranger user has not be authorized for /resources, the 403 (forbidden) error response will be received during the test connection.
Once your Ranger user is authorized to access "/resources", it will show all available policies from which you can authorize your various entities: