Cloudera Community
bensonshih
user rank
Contributor
My Accepted Solutions
Show All

Re: Ranger policy malfunction in kafka

by Contributor in Support Questions
‎02-15-2016 03:54 AM
‎02-15-2016 03:54 AM
Here are some steps of enable ranger for kafka and works fine with HDP2.3.4 and Ranger 0.5.0: 1.) Enable kerberos server for cluster. 2.) In Ambari server, go to Kafka`s Configs > Advanced ranger-kafka-plugin-properties , click "Enable Ranger for Kafka". 3.) Go to Configs > Custom kafka-broker , change value of "authorizer.class.name" to "org.apache.ranger.authorization.kafka.authorizer.RangerKafkaAuthorizer". 4.) Save changes and restart kafka component. 5.) Go to Ranger admin UI, then disable all policies of kafka. 6.) It should be deny Publish/Consume actions now. ... View more

Re: Enable ranger for solr

by Contributor in Support Questions
‎02-04-2016 01:48 AM
1 Kudo
‎02-04-2016 01:48 AM
1 Kudo
Good advice, thanks. ... View more

Re: Ranger policy malfunction in kafka

by Contributor in Support Questions
‎02-03-2016 05:19 AM
‎02-03-2016 05:19 AM
@Neeraj Sabharwa OK ,thanks. ... View more

Re: Ranger policy malfunction in kafka

by Contributor in Support Questions
‎02-03-2016 05:18 AM
1 Kudo
‎02-03-2016 05:18 AM
1 Kudo
@Neeraj Sabharwal Sure,it`s still could run the job when I disable kafka policy. ... View more

Re: Ranger policy malfunction in kafka

by Contributor in Support Questions
‎02-03-2016 05:06 AM
1 Kudo
‎02-03-2016 05:06 AM
1 Kudo
Hi @Neeraj Sabharwal, it`s right that failing on authorization, but it is suppose to be authorized by Ranger right? it`s so weird that Ranger cannot control the Publish or Consume actions. ... View more

Re: Ranger policy malfunction in kafka

by Contributor in Support Questions
‎02-03-2016 04:59 AM
1 Kudo
‎02-03-2016 04:59 AM
1 Kudo
Hi @Artem Ervits, It`s still not resolved yet,I`m trying to figure out the solution soon,once I find out the solution I`ll provide solution or accept best answer. ... View more

Re: Enable ranger for solr

by Contributor in Support Questions
‎02-02-2016 08:23 AM
‎02-02-2016 08:23 AM
More precisely, after enabling ranger for solr, it should be create a repository in ranger admin UI automatically ... View more

Enable ranger for solr

by Contributor in Support Questions
‎02-02-2016 07:49 AM
3 Kudos
‎02-02-2016 07:49 AM
3 Kudos
In HDP2.3.4 environment, solr does not show up in Ambari UI,therefore, how do I enable ranger for solr? thanks. ... View more
Labels:

Re: Ranger policy malfunction in kafka

by Contributor in Support Questions
‎02-02-2016 06:11 AM
1 Kudo
‎02-02-2016 06:11 AM
1 Kudo
Hi @bdurai, I did not observe any information about kafka in Audit(Access); However, after I add a property "authorizer.class.name=org.apache.ranger.authorization.kafka.authorizer.RangerKafkaAuthorizer" in Custom kafka-broker and executed Publish action,Audit Access could appeared information as below(why it did not show "publish" Access Type): In addition, it get some error when I executed Publish action: ... View more

Re: Ranger policy malfunction in kafka

by Contributor in Support Questions
‎02-02-2016 03:52 AM
‎02-02-2016 03:52 AM
I used HDP2.3.4 with ip address ranger: after set up the policy,then I went to 140.92.27.89 command line to change user to kafka, executing Publish and Consume actions,but it still did not deny.., ... View more
Contact Me
Online
Offline
Last Visited
‎02-17-2016 04:31 PM
Community Statistics
Member Since ‎01-14-2016 06:59 AM
Last Visited ‎02-17-2016 04:31 PM
Posts 23
Kudos received 16