Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Solved Go to solution

Status of FreeIPA support

avatar
author-rank ArpitAgarwal author-rank
Guru

Created on ‎11-04-2015 08:45 PM - edited ‎09-16-2022 02:47 AM

Do we officially support using HDP with FreeIPA and do any of our customers use FreeIPA to secure large clusters?

I found a workshop for FreeIPA+Kerberos integration with Sandbox 2.1.

3,080 Views
0
1 ACCEPTED SOLUTION

avatar
author-rank nsabharwal
Master Mentor

Created ‎11-05-2015 12:43 AM

@Arpit Agarwal @Ali Bajwa

As per my understanding, there is no official endorsement or certification approval. We know that HDP works with Microsoft AD/LDAP, MIT KDC and FreeIPA.

Adding Balaji in the thread.

@bganesan@hortonworks.com

View solution in original post

2,588 Views
0
6 REPLIES 6

avatar
author-rank nsabharwal
Master Mentor

Created ‎11-04-2015 08:48 PM

@Arpit Agarwal

There is no such support guide and as far as I know there is no official support guide for FreeIPA.

2,588 Views

avatar
author-rank abajwa author-rank
Guru

Created ‎11-04-2015 08:56 PM

We do have customers running kerborized HDP with IPA (with IPA support coming from RedHat) using the manual option of Ambari kerberos wizard. There is a JIRA logged for Ambari to officially support IPA as one of the options (as of Ambari 2.1.x the options are AD, MIT KDC and manual). The idea behind is for Ambari to help automate principal/keytab creation and distribution similar to how it does for AD/KDC. See https://issues.apache.org/jira/browse/AMBARI-6432 for more details

2,588 Views

avatar
author-rank ArpitAgarwal author-rank
Guru

Created ‎11-04-2015 10:15 PM

Thanks @Ali Bajwa. Would you know how to find out who are those customers? A large customer is experimenting with FreeIPA and wants to hear about others' experiences in the field.

2,588 Views
0 Kudos

avatar
author-rank abajwa author-rank
Guru

Created ‎11-04-2015 10:26 PM

I would recommend asking this on internal channels (sme-security email list or hipchat channel). We can not discuss customers on public forums.

2,588 Views
0 Kudos

avatar
author-rank nsabharwal
Master Mentor

Created ‎11-05-2015 12:43 AM

@Arpit Agarwal @Ali Bajwa

As per my understanding, there is no official endorsement or certification approval. We know that HDP works with Microsoft AD/LDAP, MIT KDC and FreeIPA.

Adding Balaji in the thread.

@bganesan@hortonworks.com

2,589 Views
0

avatar
author-rank nsabharwal
Master Mentor

Created ‎11-23-2015 11:50 PM

@Tim Hall

2,588 Views
0 Kudos
Announcements
What's New @ Cloudera
[RELEASED] Cloudera Streaming Analytics - Kubernetes Operato...
What's New @ Cloudera
[RELEASED] Cloudera Streams Messaging - Kubernetes Operator ...
Community Announcements
February 2025 Community Highlights
What's New @ Cloudera
3 Benefits of External IDE Connectivity, Now Available in Cl...
What's New @ Cloudera
Performance comparison of Spark3 on YARN with S3 Standard VS...
View More Announcements