Cloudera Community
daba
user rank
Explorer

Re: Apache Knox LDAP configuration is not used

by Explorer in Support Questions
‎02-13-2022 11:27 PM
‎02-13-2022 11:27 PM
Hi @pvishnu,   thank you for your response! The ldap configuration which I made in the Cloudera Manager will not be persist in the topology file /var/lib/knox/gateway/conf/topologies/knoxsso.xml. There is still the pamRealm configuration. One solution is to manually edit the topology file, but that is not my expectation if you use Cloudera Manager.   Regards, Daniel ... View more

Re: Apache Knox LDAP configuration is not used

by Explorer in Support Questions
‎12-02-2021 12:12 AM
‎12-02-2021 12:12 AM
Hello @Scharan,   many thanks for your answer! Both parameters you mentioned are set. In the Knox Admin UI, all relevant providers also have the LDAP configuration (KnoxLdapRealm). But KnoxPamRealm is still used. It is interesting that when Knox is started, the shiro.ini with the PAM configuration is pulled from the JAR (WEB-INF/shiro.ini). Otherwise, there is no other shiro.ini in the file system that could replace it. ... View more

Apache Knox LDAP configuration is not used

by Explorer in Support Questions
‎12-01-2021 02:10 PM
‎12-01-2021 02:10 PM
Hello all,   I have installed Apache Knox on a CDP 7.1.6 cluster and switched Shiro from PAM to LDAP (as described here https://is.gd/FmexUD). The changes are also done in the providers. PAM is disabled via the authentication.param.remove switch. Nevertheless PAM (KnoxPamRealm) is used for authentication instead of LDAP (KnoxLdapRealm). Does anyone have useful hints where to look for the cause? Thanks a lot!   Regards, Daniel   ... View more
Contact Me
Online
Offline
Last Visited
‎02-15-2022 03:55 AM
Community Statistics
Member Since ‎07-02-2017 08:59 AM
Last Visited ‎02-15-2022 03:55 AM
Posts 4