Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Solved Go to solution

Range Audit Page - No Data for Report

Labels:
avatar
author-rank sushil61
Expert Contributor

Created ‎01-09-2016 10:27 PM

We have HDP 2.3 with Ranger. Audit data store is MySQL DB. The audit transactions are getting stored in ranger_audit db. But the Ranger Audit page on ranger admin portal did not showing any record. We are also trying to store log to HDFS/ranger/audit folder, but these also not getting recorded.

2,404 Views
1 ACCEPTED SOLUTION

avatar
author-rank abajwa author-rank
Guru

Created ‎01-10-2016 08:16 PM

In the Ranger audits page, try removing the default filter (for the current days audits). Sometimes if there is a time mismatch you won't see any audits in Ranger by default, but after clearing this filter they appear

View solution in original post

2,037 Views
5 REPLIES 5

avatar
author-rank rmani author-rank
Super Collaborator

Created ‎01-09-2016 10:43 PM

Which Ranger Plugin for which audit is getting logged? Please check if there is Ranger Policy for auditing the resource for the Hadoop component you are auditing. In Ambari for Ranger service check in Config check property Advanced-Ranger-admin-site> "ranger.audit.source.type" . This should be set to "db"

Please check this also for details

http://docs.hortonworks.com/HDPDocuments/HDP2/HDP-2.3.2/bk_Ranger_Install_Guide/content/ranger_datab...

2,037 Views

avatar
author-rank sushil61
Expert Contributor

Created ‎01-10-2016 07:36 PM

HDFS ranger plugin audit is getting logged in Ranger_Audit DB. Yes,HDFS resource access/denied audit is being audited and recorded in MySQL ranger_audit DB. We have verified from the xa_access.. table. Yes,the ranger.audit.source.type is set to db in advance-ranger-admin-site. Still the audit page is not displaying any transactions.

2,037 Views

avatar
author-rank abajwa author-rank
Guru

Created ‎01-10-2016 08:16 PM

In the Ranger audits page, try removing the default filter (for the current days audits). Sometimes if there is a time mismatch you won't see any audits in Ranger by default, but after clearing this filter they appear

2,038 Views

avatar
author-rank sushil61
Expert Contributor

Created ‎01-11-2016 04:24 PM

source type is setup by default to 'solr'. I changed it to 'db' and also, remove the filter. And it works!!!!.

The Solr os a preferabl and the recommended audit source type but unfortunately it is not included in the Ambari 2.1 stack.

Thanks for the support.

2,037 Views

avatar
author-rank abajwa author-rank
Guru

Created ‎01-11-2016 05:18 PM

Thanks for letting us know. Solr is included with HDP Search with HDP 2.3. You install from repo using instructions here:

https://docs.hortonworks.com/HDPDocuments/HDP2/HDP-2.3.0/bk_search/index.html

The official Solr stack service for Ambari is on the roadmap. Until then, for test/dev envs you can use one of these (not for use in prod envs):

https://github.com/LucidWorks/solr-stack

https://github.com/abajwa-hw/solr-stack

2,037 Views
0 Kudos
Announcements
What's New @ Cloudera
Cloudera Data Engineering 1.23: Access Spark from Your Favor...
What's New @ Cloudera
HBase REST server scaling support is Generally Available
What's New @ Cloudera
New CLI option in the update-database command
What's New @ Cloudera
New Action menu item in the Cloudera Operational Database UI
What's New @ Cloudera
Get the list of supported instance types in the Cloudera Ope...
View More Announcements