About vperiasamy

bandarusridhar1 · ‎07-12-2017

@Sami Ahmad For changing the Ranger Admin password, we need to change the password in 3 different locations. 1. In Ambari you need to change the password at highlighted places: 2. Login to ranger using admin/admin, click on the profile at right-top, then click on change password. Below screenshot helps you to navigate Note: Password should be same across all the places and it should be minimum 8 characters. Hope this helps you.

vperiasamy · ‎07-07-2017

If you have changed rangerusersync password in ranger admin, then you need to provide the same updated password in rangerusersync config. You can use /usr/hdp/current/ranger-usersync/updatepolicymgrpassword.py for this purpose.

vperiasamy · ‎06-05-2017

yes, i believe the hostname should match.

frank93 · ‎03-31-2017

@Darryl Stoflet @vperiasamy @Deepak Sharma Thank you all! That solved my problem. I've had IP address instead of FQDN in External URL property.

vperiasamy · ‎03-28-2017

Please note DB based auditing is NOT supported from Ranger 0.6 (HDP 2.5)

vperiasamy · ‎03-28-2017

EventTime timezone fix is available in Ranger 0.7.0. https://issues.apache.org/jira/browse/RANGER-1249

frank93 · ‎02-10-2017

Sorry guys, that was the issue. Not only me have access to that cluster, and somebody changed ranger policy url in every plugin config. Thank you!

teixeira_javier · ‎02-02-2017

Yes, all clients are installing on the host

aleekha · ‎02-08-2017

@Sami Ahmad: You have an HDFS policy which does not grant permissions to your user for viewing resources. In most of the components, this would boil down to access request being denied. However, in HDFS, if a Ranger policy does not grant access to a resource, native Hadoop privileges are checked as well. If HDFS grants user 'SAMI' access to resources, 'SAMI' will be able to access the same (inspite of Ranger policy not granting permission). You can check whether its Ranger policy responsible for your user being able to view resources or its native Hadoop ACLs through Audit page->Access tab. In screenshot, Policy ID is -- and also, Access Enforcer=hadoop-acl which means the user had access through native Hadoop ACL. None of the Ranger Hadoop policies are responsible for the Access/ Deny. Hope this helps. screen-shot-2017-02-08-at-104435-am.png

sshimpi · ‎11-15-2016

@Kate Shaw It normally takes 30secs to refresh policies. You can check the "Plugin" option in ranger UI to check if the policy is getting sync or not.There is no option to force policies. I see there is option in each service plugin in Ambari to define time interval. Example for HDFS service is shown below In Ambari UI->HDFS->Services->Configs->"Advance ranger-hdfs-security" you can change the poll interval here[refresh time]. Check few link which can help to understand better - https://community.hortonworks.com/questions/13070/ranger-policy-is-not-applied.html

Online	Offline
Last Visited	‎04-26-2023 11:37 AM

Member Since	‎09-10-2015 10:36 PM
Last Visited	‎04-26-2023 11:37 AM
Posts	261
Kudos received	84

Cloudera Community

Re: ranger doesn't show resource based policies

Re: Ranger and Ranger-Kms relation

Re: "Java patch PatchPasswordEncryption_J10001 is ...

Re: Unable to log storm audit events to hdfs (sand...

Re: ranger user sync from text file

Re: ranger Admin UI password change

Re: rangerusersync showing wrong password in Audit...

Re: NiFi - Insufficient Privileges usoing Ranger

Re: Ranger policies failed to refresh after implem...

Re: Mysql or solr for ranger

Re: Apache Ranger does not show up audits for HDFS

Re: Ranger Admin policies not synced for all servi...

Re: Ranger 'test connection' for Atlas fails

Re: Kerberos HDFS security issue

Re: How long does it take for ranger policies to r...