Support Questions
Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Advanced Search

knoxsso redirect to ambari error

knoxsso redirect to ambari error

abbas_mohammadn
Explorer

Created ‎02-17-2019 01:09 PM

i want configuration knoxsso for ambari.

(ambari integrated with openldap)

error in log file:

2019-02-17 16:25:17,090 ERROR knox.gateway (GatewayServlet.java:doFilter(174)) - Gateway processing failed: org.eclipse.jetty.io.EofException

i want know how setup knoxxsso for ambari step by step.

@Neeraj Sabharwal

Reply
644 Views
0 Kudos
3 REPLIES 3

Re: knoxsso redirect to ambari error

rdobson
Cloudera Employee

Created ‎02-19-2019 09:31 AM

Hi @abbas mohammadnejad,


Have you tried the following knox setup doc? https://docs.hortonworks.com/HDPDocuments/HDP3/HDP-3.1.0/installing-knox/content/sso_set_up_knox_sso...


Kind Regards,


Richard

Reply
546 Views
0 Kudos

Re: knoxsso redirect to ambari error

nixonrodrigues
Expert Contributor

Created ‎02-19-2019 01:06 PM

@abbas mohammadnejad

1) From the Configs tab, scroll to find the Advanced knoxsso-topology tab and expand it.

2) Change the values for the ShiroProvider authentication provider to match the following values:


<provider>
    <role>authentication</role>
    <name>ShiroProvider</name>
    <enabled> true </enabled>
    <param>
    <name>main.ldapRealm</name>
    <value>org.apache.shiro.realm.ldap.JndiLdapRealm</value>
    </param>
    <name>main.ldapRealm.userDnTemplate</name>
    <value> $USER_DN </value>
    </param>
    <name>main.ldapRealm.contextFactory.url</name>
    <value> $protocol :// $ldaphost : $port </value>
    </param>
    <name>main.ldapRealm.contextFactory.authenticationMechanism</name>
    <value>simple</value>
    </param>
    <name>urls./**</name>
    <value> $auth_type </value>
    </param>
    <name>sessionTimeout</name>
    <value> $minutes </value>
    </param>
</provider>











3 Save the configs


Reply
546 Views
0 Kudos

Re: knoxsso redirect to ambari error

abbas_mohammadn
Explorer

Created ‎02-23-2019 08:27 AM

hi @Nixon Rodrigues

thank you so much. for enable sso i following bellow steps:

1. install knox with ambari ui.

2. Configure Ambari Authentication for LDAP/AD.

3. Configure an LDAP/AD Identity Provider (IdP).

4. Enable Knox SSO using the Ambari CLI.

5. amabari server restart.

is necessary i setup proxy or i use the default topology ?

Reply
546 Views
0 Kudos
Don't have an account?
Register
Announcements
What's New @ Cloudera
CDP Operational Database enables customers to use Spark with database through both SQL & NoSQL interfaces
What's New @ Cloudera
[Preview] Accelerate data pipelines by more than 30% with Apache Spark 3 in Cloudera Data Engineering (CDE)
What's New @ Cloudera
Cloudera Data Engineering (CDE) supports deployment of containerized data pipelines on Azure
What's New @ Cloudera
CDP makes it easy to deploy an edge node in AWS & Microsoft Azure to support CDP Operational Database Experience
Product Announcements
[ANNOUNCE] Cloudera JDBC Driver 2.6.15 for Apache Hive Released
View More Announcements