Support Questions

Find answers, ask questions, and share your expertise
Announcements
Check out our newest addition to the community, the Cloudera Data Analytics (CDA) group hub.

Ranger Service test connection failed

New Contributor

Tried testing the ranger service connection and it is getting failed  with message "JAAS configuration missing or not correct in Ranger"

 

Ranger-admin log:

2021-11-16 12:00:58,661 ERROR org.apache.ranger.services.kafka.RangerServiceKafka: <== RangerServiceKafka.validateConfig Error:java.lang.Exception: JAAS configuration missing or not correct in Ranger Kafka Service...bootstrap.servers,security.protocol,sasl.mechanism,kafka.keytab,kafka.principal
2021-11-16 12:00:58,661 ERROR org.apache.ranger.biz.ServiceMgr: TimedCallable.call: Error:java.lang.Exception: JAAS configuration missing or not correct in Ranger Kafka Service...bootstrap.servers,security.protocol,sasl.mechanism,kafka.keytab,kafka.principal
2021-11-16 12:00:58,662 ERROR org.apache.ranger.biz.ServiceMgr: ==> ServiceMgr.validateConfig Error:org.apache.ranger.plugin.client.HadoopException: java.lang.Exception: JAAS configuration missing or not correct in Ranger Kafka Service...bootstrap.servers,security.protocol,sasl.mechanism,kafka.keytab,kafka.principal

 

Is jaas file created automatically on ranger.?

 

cloudMaanger: 7.5.1

Parcel Version: 7.1.7-1.cdh7.1.7.p0.15945976

Ani1991_0-1637066624397.png

 

1 ACCEPTED SOLUTION

Rising Star

Hi @Ani1991 ,

Suspecting Kerberos related parameters are incorrectly configured in the Kafka service repo in Ranger.

Can you please try the below solution :

 

 

-- Ranager Admin UI > edit kafka service repo cm_kafka > Add configs in "Add New Configurations"

-- Add below configs. (Change the config accordingly) for protocol

 

bootstrap.servers <kafkaBroker>:Port

security.protocol SASL_PLAINTEXT

sasl.mechanism GSSAPI

kafka.keytab <keytab>

kafka.principal <prinicipal>

 

This config needs a kafka keytab  path , copy kafka keytab to ranger admin host with ranger:ranger permissions set.

View solution in original post

1 REPLY 1

Rising Star

Hi @Ani1991 ,

Suspecting Kerberos related parameters are incorrectly configured in the Kafka service repo in Ranger.

Can you please try the below solution :

 

 

-- Ranager Admin UI > edit kafka service repo cm_kafka > Add configs in "Add New Configurations"

-- Add below configs. (Change the config accordingly) for protocol

 

bootstrap.servers <kafkaBroker>:Port

security.protocol SASL_PLAINTEXT

sasl.mechanism GSSAPI

kafka.keytab <keytab>

kafka.principal <prinicipal>

 

This config needs a kafka keytab  path , copy kafka keytab to ranger admin host with ranger:ranger permissions set.

Take a Tour of the Community
Don't have an account?
Your experience may be limited. Sign in to explore more.