About vperiasamy

vperiasamy · ‎11-07-2017

Glad it worked for you. For Knox plugin, first time policy download happens upon first Knox request. After that any policy modifications should be sync'ed by Knox plugin within 30 seconds. i.e. Every 30 seconds, Knox plugin checks for policy updates from Ranger Admin server. If your issue is resolved, please accept the answer.

vperiasamy · ‎11-06-2017

Knox plugin downloads policies upon first Knox request, not during the startup of Knox gateway. Send a Knox request to see if plugin downloads the policies. Information about this should be available in Knox gateway log, so you can check there.

vperiasamy · ‎10-31-2017

I am glad it is working for you now. Please accept the answer if your issue is resolved.

vperiasamy · ‎10-31-2017

AES NI is a performance accelerator, so it is not required to use HDFS TDE (transparent data encryption).

vperiasamy · ‎10-30-2017

You can refer this tutorial series https://hortonworks.com/hadoop-tutorial/securing-data-lake-auditing-user-access-using-hdp-security/

vperiasamy · ‎10-27-2017

Looks like Nifi is sending the user name as "cn=rverma,ou=People,dc=ex,dc=com", but in ranger access is given to user "rverma". Check if you can sync users in ranger with the full name Nifi is using. You can refer the below articles. https://community.hortonworks.com/articles/58769/hdf-20-enable-ranger-authorization-for-hdf-compone.html https://community.hortonworks.com/articles/57980/hdf-20-apache-nifi-integration-with-apache-ambarir.html https://issues.apache.org/jira/browse/RANGER-1224

vperiasamy · ‎10-24-2017

User holger_gov does not have privileges to create policy. User has to have ADMIN role in ranger or needs to be delegated admin for the specified resource. Can you check this? See https://community.hortonworks.com/content/kbentry/88202/apache-ranger-delegated-admin.html for delegated admin feature. Also, ranger version in HDP 2.6.1 should be ranger 0.7.

vperiasamy · ‎10-13-2017

ranger-admin-site.xml will not have the password in plain text, so '_' you see is correct. Make sure your keystore has only one right entry and ranger SSL configs are correct.

vperiasamy · ‎10-10-2017

Can you clear the browser cache and try? This might be a browser issue.

vperiasamy · ‎09-22-2017

Usually the delete calls for users do a soft delete, i.e. they change the status of the user to be not visible. Try passing forceDelete=true to the URL to achieve hard delete.

Online	Offline
Last Visited	‎04-26-2023 11:37 AM

Member Since	‎09-10-2015 10:36 PM
Last Visited	‎04-26-2023 11:37 AM
Posts	261
Kudos received	85

Cloudera Community

Re: ranger doesn't show resource based policies

Re: Ranger and Ranger-Kms relation

Re: "Java patch PatchPasswordEncryption_J10001 is ...

Re: Unable to log storm audit events to hdfs (sand...

Re: ranger user sync from text file

Re: Knox policy synchronization

Re: Knox policy synchronization

Re: Is the AES NI CPU necessary for encryption HDF...

Re: Is the AES NI CPU necessary for encryption HDF...

Re: How to test Ranger authorization?

Re: How to give permissions to users to access Nif...

Re: Ranger fails with error "Error creating policy...

Re: ranger error Keystore password was incorrect a...

Re: Ranger 0.7.0 UI Not Loading Policies

Re: delete user REST API in ranger 0.7 is not dele...