Hi @Shesh Kumar, The issue seems probably related to using a different auto-increment being used than the one which is set to default in the database, hence recommend to use the auto_increment property instead of the foreign_key_check property for the database. Instead of using set FOREIGN_KEY_CHECKS=0; you can use set AUTO_INCREMENT=1; in the sql file. you will get the same result. ... View more

@GN_Exp, has the Knox certificate been imported in Ranger truststore ? If not here are some links you can follow: installing ranger-knox plugin. ranger-knox-repo-test-connection-failure. do-we-need-to-add-knox-self-signed-cert-into-range. ... View more

@GN_Exp, looks like the url for Knox present with Ranger is pointing to localhost, can you try using the actual f.q.d.n of the Knox host, even if both Ranger and Knox services are on the same host. Also as @Deepak Sharma suggested, can you check if the LDAP server being used by Knox service is started and working. ... View more

Avdhoot Patankar, which file are the capture6.png logs from ? The error message indicates that a SSL certificate was expected and it is missing in one of the required configuration, which results in authentication failure ... View more

Avdhoot Patankar, the issue seems to be similar to the one posted here -> insufficient-permissions-error-while-login-to-nifi. Can you try to follow the steps shared by Geoffrey Shelton Okot, which point to this document. ... View more

@Sean Roberts, did you try curl with -v option ? ... View more

@Sean Roberts, Can you try the same curl request with the verbose option and share the response. Looks like the response, GSSException:Failure unspecified at GSS-API level (Mechanism level:Requestis a replay (34)) implies that the request carries the same token which was previously used for a different request and the connection doesn't seem to be closed. In that case you can destroy the current ticket and try with a fresh ticket. ... View more

@Sanaz Janbakhsh, If /var/log/ranger/admin is empty or is not available, logs for Ranger will be available under /usr/hdf/current/ranger-admin/ews/logs on the host where Ranger-Admin is installed in case of a multi-node setup. For Nifi audit not working, can you check the Nifi logs, looks like Nifi is unable to Audit to Solr, what is the Solr you are using, is it installed from Ambari as Ambari-Infra service ? ... View more

Hi @Sanaz Janbakhsh, Is the audit functionality working for other services, As Nifi plugin is able to download pollicies, Ranger authorization seems to be working fine. Can you check Nifi log for audit related errors, seems Nifi is not able to write audits to Solr ? Also do mention the Ambari / HDF versions you are using. ... View more

Hi @Sanaz Janbakhsh, after enabling Nifi for Ranger, can you confirm Nifi is able to download policies from Ranger, if it is doing so Nifi service should be registered under Audits -> Plugins tab in Ranger-UI. For nifi plugin to work, you can also get help from below articles, https://community.hortonworks.com/articles/60842/hdf-20-defining-nifi-policies-in-ranger.html https://community.hortonworks.com/articles/57980/hdf-20-apache-nifi-integration-with-apache-ambarir.html https://community.hortonworks.com/content/kbentry/60001/hdf-20-integrating-secured-nifi-with-secured-range.html ... View more