Cloudera Community
Announcements
We’ve updated our product names and community labels - click here for full details
kamlepooja_raje
user rank
Rising Star

Re: How to configure Zeppelin for Active Directory...

by Rising Star in Community Articles
‎09-06-2017 01:20 PM
‎09-06-2017 01:20 PM
Hi @Pravin Bhagade, This solved my issue. I had not imported the SSL certificate in the keystore. After doing this, the AD authentication works. Thank you so much. ... View more

Re: How to configure Zeppelin for Active Directory...

by Rising Star in Community Articles
‎09-06-2017 10:57 AM
‎09-06-2017 10:57 AM
Hi Vipin, I tried with same configurations(With HDP 2.5.5,Zeppelin version 0.6.0.2.5.5.0-157)but I got the below exception. ERROR LoginRestApi.java[postLogin]:103) - Exception in login: org.apache.shiro.authc.AuthenticationException: LDAP naming error while attempting to authenticate user. at org.apache.shiro.realm.ldap.AbstractLdapRealm.doGetAuthenticationInfo(AbstractLdapRealm.java:197) Caused by: javax.naming.CommunicationException: simple bind failed: <server>:636 [Root exception is javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target] Advanced zeppelin-config: zeppelin.anonymous.allowed=false Advanced zeppelin-env: shiro_ini_content: [users] # List of users with their password allowed to access Zeppelin. # To use a different strategy (LDAP / Database / ...) check the shiro doc at http://shiro.apache.org/configuration.html#Configuration-INISections #admin = password1 #user1 = password2, role1, role2 #user2 = password3, role3 #user3 = password4, role2 # Sample LDAP configuration, for user Authentication, currently tested for single Realm [main] activeDirectoryRealm = org.apache.shiro.realm.activedirectory.ActiveDirectoryRealm activeDirectoryRealm.systemUsername = CN=<systemusername>,OU=<VALUE>,OU=<VALUE>,DC=<VALUE>,DC=<VALUE>,DC=<VALUE> activeDirectoryRealm.systemPassword = <systempassword> #activeDirectoryRealm.hadoopSecurityCredentialPath= jceks://user/zeppelin/conf/zeppelin.jceks activeDirectoryRealm.searchBase = OU=<VALUE>,OU=<VALUE>,DC=<VALUE>,DC=<VALUE>,DC=<VALUE> activeDirectoryRealm.url = ldaps://<VALUE>:636 activeDirectoryRealm.authorizationCachingEnabled = false sessionManager = org.apache.shiro.web.session.mgt.DefaultWebSessionManager securityManager.sessionManager = $sessionManager securityManager.realms = $activeDirectoryRealm # 86,400,000 milliseconds = 24 hour securityManager.sessionManager.globalSessionTimeout = 86400000 shiro.loginUrl = /api/login [roles] [urls] /api/version = anon #/** = anon /** = authc ... View more
Contact Me
Online
Offline
Last Visited
‎12-12-2017 05:53 AM
Community Statistics
Member Since ‎03-22-2016 11:15 AM
Last Visited ‎12-12-2017 05:53 AM
Posts 40
Kudos received 5