Support Questions
Find answers, ask questions, and share your expertise
Announcements
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

kerberos with Ranger - sAMAccountName character limit

kerberos with Ranger - sAMAccountName character limit

Contributor

When using the kerberos wizard in Ambari to create principles the users are created with the {service account name}/{fqdn}@{realm} naming convention, but when using Ranger LDAP/AD sync we used the sAMAccountName. The sAMAccountNames all are created with random UIDs as the sAMAccountName. I tried to have them changed to the actual principle names, but the sAMAccountName has a 20 character limit, which is pretty small considering the principle name zookeeper/myserver.example.com@EXAMPLE.REALM.COM. Has anyone else ran into this problem? What is a good workaround?

Don't have an account?
Coming from Hortonworks? Activate your account here