Support Questions
Find answers, ask questions, and share your expertise
Announcements
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

Not able to Install ApacheRanger(Manual) on HDInsight Cluster(Kafka-Preview).

Highlighted

Not able to Install ApacheRanger(Manual) on HDInsight Cluster(Kafka-Preview).

New Contributor

My usecase is to Secure Kafka-Topics residing on HDInsight-Kafka01.10.0(HDI 3.6) cluster using Apache Ranger.

https://docs.hortonworks.com/HDPDocuments/HDP2/HDP-2.6.2/bk_command-line-installation/content/ch_ins...

This is where I started. as per the document, I installed Solr,Checked the prerequisites. I then started with the Policy manager Installation. The Installation is successfull with no errors. But am not able to login to the UI using admin creds.

http://<host_address>:6080/ - Tried modyfying the Install.props to match http/https/6080/6082
https://<host_address>:6082/

I even tried Implementing the below.But none with a positive outcome. https://docs.hortonworks.com/HDPDocuments/HDP2/HDP-2.6.2/bk_security/content/configure_non_ambari_ra...

since HDInsight has some port enabling stuff. I installed something called Links using Yum.Where I can open a link in Linux machines.

so far,I am not able to login to admin console using the default admin/admin.

I even tried backend

update x_portal_user set password = 'ceb4f32325eda6142bd65215f4c0f371' where login_id = 'admin';

and then I am in parallel looking @ UserSync. I would like to know,If there is something I am missing over here. and Location of where to looks for the Logs when Login fails.

If someone out there,tried this approach on HDInsight. Please let me know,the challenging stuff you have gotten in to.
Please let me know,If more details are needed.Any clear documentation would be of great help.

2 REPLIES 2

Re: Not able to Install ApacheRanger(Manual) on HDInsight Cluster(Kafka-Preview).

What error are you getting when accessing ranger?

Re: Not able to Install ApacheRanger(Manual) on HDInsight Cluster(Kafka-Preview).

New Contributor

ranger_admin_sql.log is empty. Below is the Log4j detail,I modified the debug to true.

<log4j:configuration xmlns:log4j="http://jakarta.apache.org/log4j/" debug="<strong>true</strong>">

<appender name="sql_appender" class="org.apache.log4j.DailyRollingFileAppender">
		<param name="file" value="${logdir}/ranger_admin_sql.log" />
		<param name="datePattern" value="'.'yyyy-MM-dd" />
		<param name="append" value="true" />
		<layout class="org.apache.log4j.PatternLayout">
		<param name="ConversionPattern" value="%d [%t] %-5p %C{6} (%F:%L) - %m%n" />
		</layout>
	</appender>

ERROR in catalina.out

Nov 21, 2017 1:14:04 PM com.sun.jersey.spi.inject.Errors processErrorMessages
WARNING: The following warnings have been detected with resource and/or provider classes:
  WARNING: A HTTP GET method, public void org.apache.ranger.rest.ServiceREST.getPoliciesInExcel(javax.servlet.http.HttpServletRequest,javax.servlet.http.HttpServletResponse), MUST return a non-void type.
  WARNING: A HTTP GET method, public void org.apache.ranger.rest.ServiceREST.getPoliciesInCsv(javax.servlet.http.HttpServletRequest,javax.servlet.http.HttpServletResponse) throws java.io.IOException, MUST return a non-void type.
  WARNING: A HTTP GET method, public void org.apache.ranger.rest.ServiceREST.getPoliciesInJson(javax.servlet.http.HttpServletRequest,javax.servlet.http.HttpServletResponse,java.lang.Boolean), MUST return a non-void type.
<br>

Ranger_admin.log - mostly Warning and Info

2017-11-21 13:13:45,697 [localhost-startStop-1] WARN  org.apache.hadoop.util.NativeCodeLoader (NativeCodeLoader.java:62) - Unable to load native-hadoop library for your platform... using builtin-java classes where applicable
2017-11-21 13:13:47,702 [localhost-startStop-1] INFO  org.apache.ranger.common.PropertiesUtil (PropertiesUtil.java:181) - Credential keystore password not applied for Audit DB; clear text password shall be applicable
2017-11-21 13:13:48,074 [localhost-startStop-1] INFO  org.springframework.core.io.support.PropertiesLoaderSupport (PropertiesLoaderSupport.java:172) - Loading properties file from class path resource [db_message_bundle.properties]<br>

access_log

10.19.12.34 - - [21/Nov/2017:09:58:52 +0000] "GET /login.jsp HTTP/1.1" 200 3325 "-" "Links (2.12; Linux 4.4.0-96-generic x86_64; GNU C 5.2.1; text)"
10.19.12.34 - - [21/Nov/2017:09:59:00 +0000] "POST /login.jsp HTTP/1.1" 200 3325 "https://hn0-Ranger.asdf.gx.internal.cloudapp.net:6182/login.jsp" "Links (2.12; Linux 4.4.0-96-generic x86_64; GNU C 5.2.1; text)"
10.19.12.34 - - [21/Nov/2017:09:59:01 +0000] "POST /login.jsp HTTP/1.1" 200 3325 "https://hn0-Ranger.asdf.gx.internal.cloudapp.net:6182/login.jsp" "Links (2.12; Linux 4.4.0-96-generic x86_64; GNU C 5.2.1; text)"<br>

I observed the below errors in logfile .

2017-11-21 13:12:45,244  [E] 'setup_mode' not found in /usr/hdp/2.6.2.3-1/ranger-admin/install.properties file while getting....!!
2017-11-21 13:12:45,246  [I] Setup mode is not set. Running DBA steps..

2017-11-21 13:12:44,434  [E] 'ranger_unixauth_keystore' not found in /usr/hdp/2.6.2.3-1/ranger-admin/install.properties file while getting....!!
2017-11-21 13:12:44,439  [E] 'ranger_unixauth_keystore_password' not found in /usr/hdp/2.6.2.3-1/ranger-admin/install.properties file while getting....!!
2017-11-21 13:12:44,443  [E] 'ranger_unixauth_truststore' not found in /usr/hdp/2.6.2.3-1/ranger-admin/install.properties file while getting....!!
2017-11-21 13:12:44,448  [E] 'ranger_unixauth_truststore_password' not found in /usr/hdp/2.6.2.3-1/ranger-admin/install.properties file while getting....!!
Don't have an account?
Coming from Hortonworks? Activate your account here