08-16-2017 02:39 PM
Environment CDH 5.12, OPEN LDAP
We've enabled LDAP auth on Impala and it's working fine except in HUE. When I try to launch HUE/Impala Editor it fails with this error in GUI.
We have configured safety valve in HUE with this.
I'm logging into HUE as user cloudera ( FYI ; we don't have LDAP enabled on HUE ; cloudera is just a user managed within HUE )
08-17-2017 01:35 AM
@sunilosunil Are you using cloudera manager:
Authentication Backend desktop.auth.backend.LdapBackend
LDAP URL ldap://your_ldap_url
LDAP Search Base
LDAP Bind User
LDAP Bind Password
LDAP User Filter
LDAP Username Attribute
LDAP Group Filter
LDAP Group Name Attribute
LDAP Group Membership Attribute
Active Directory Domain
You need your system admin to create you a user in the LDAP and provide you with this parameters.
Then you can just restart Hue service
08-17-2017 08:57 AM
Actualy I figured out. I had to configure Impala to allow user ldaptest to impersonate as user cloudera ( hue login).
I appended this to the cloudera manager property Proxy User Configuration ( authorized_proxy_user_config )
So user hue can impersonate anyone and user 'ldaptest' can impersonate as 'cloudera'.
09-07-2017 10:26 AM
Where exactly was this entry made?I am facing the same issue even after making the entry Proxy User Configuration authorized_proxy_user_config under Impala service wide.
09-07-2017 12:03 PM
In Cloudera Manager, edit Proxy User Configuration
What did you enter in the field?
It should look like this, for example:
See the Description of Proxy User Configuration in Cloudera Manager (click the question mark next to the property)