Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search

Ranger HDFS Policies Failing

Labels:
avatar
author-rank Braz
Explorer

Created on ‎03-18-2020 12:12 PM - last edited on ‎03-18-2020 12:44 PM by Moderator

I'm attempting to set up 2 way SSL between Ranger Admin and the Ranger HDFS Plugin.

Ranger Admin works without issue, but the HDFS plugin is not able to communicate properly to Ranger Admin via SSL, and Ranger HDFS policies do not get applied. Main error message from /var/log/ranger/admin/xa_portal.log:

 

[http-xxx-xxxx-exec-1] INFO org.apache.ranger.common.RESTErrorUtil (RESTErrorUtil.java:345) - Request failed. loginId=null, logMessage=VXResponse={org.apache.ranger.view.VXResponse@7bed9b22statusCode={1} msgDesc={Unauthorized access - unable to get client certificate} messageList={[VXMessage={org.apache.ranger.view.VXMessage@72ecb1bfname={OPER_NOT_ALLOWED_FOR_ENTITY} rbKey={xa.error.oper_not_allowed_for_state} message={Operation not allowed for entity} objectId={null} fieldName={null} }]} }javax.ws.rs.WebApplicationException

 

Is there something in particular I am missing?

 

References for steps followed:

1) 

https://docs.cloudera.com/HDPDocuments/HDP3/HDP-3.1.5/configuring-wire-encryption/content/self_signe...

2) 

https://www.youtube.com/watch?v=g6m-LII4zjE&feature=emb_title

3)

https://www.ibm.com/support/knowledgecenter/SSPT3X_4.2.0/com.ibm.swg.im.infosphere.biginsights.admin...

 

Thanks 

Braz

How To Setup Ranger Admin SSL
How To Setup Ranger Admin SSL
youtube.com/watch?v=g6m-LII4zjE&feature=emb_title
This video describes configuration details for Ranger SSL In this video, we describe the configuration for Ranger SSL. We will review the architecture and steps needed to secure Ranger Admin UI. We also cover some basic troubleshooting tips.
1,922 Views
0 Kudos
1 REPLY 1

avatar
author-rank ajinkyapatil author-rank
Contributor

Created ‎06-25-2020 05:02 PM

@Braz  Are you still facing the issue?

1,863 Views
0 Kudos
Announcements
What's New @ Cloudera
Cloudera Data Engineering 1.23: Access Spark from Your Favor...
What's New @ Cloudera
HBase REST server scaling support is Generally Available
What's New @ Cloudera
New CLI option in the update-database command
What's New @ Cloudera
New Action menu item in the Cloudera Operational Database UI
What's New @ Cloudera
Get the list of supported instance types in the Cloudera Ope...
View More Announcements