Support Questions
Find answers, ask questions, and share your expertise
Announcements
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

Restriction of Resource Manager UI for users except admin

Restriction of Resource Manager UI for users except admin

I want to restrict resource manager UI for all users except admin, I have applied SPNEGO protocol to achieve same but with that Resource manager UI is restricted to admin as well, and apart from RM UI RM JMX also getting restricted and RM logs as well.

Here is implementation detail :

I have done on all nodes in the cluster :

dd if=/dev/urandom of=/etc/security/http_secret bs=1024 count=1

chown hdfs:hadoop /etc/security/http_secret

chmod 440 /etc/security/http_secret

These properties has to be added to HDFS -> configs -> advance core-site

hadoop.http.authentication.simple.anonymous.allowed : false

hadoop.http.authentication.signature.secret.file : /etc/security/http_secret

hadoop.http.authentication.type : kerberos

hadoop.http.authentication.kerberos.keytab : /etc/security/keytabs/spnego.service.keytab hadoop.http.authentication.kerberos.principal : principal name

hadoop.http.filter.initializers : org.apache.hadoop.security.AuthenticationFilterInitializer

hadoop.http.authentication.cookie.domain : namenode [FQDN]

I only want too restrict RM UI for all ambari users except admin.

1 REPLY 1

Re: Restriction of Resource Manager UI for users except admin

Hi @Anurag Mishra,

Please check if this post helps.

Thanks,

Aditya

Don't have an account?
Coming from Hortonworks? Activate your account here