Configuring Ambari for LDAP or Active Directory Authentication
By default Ambari uses an internal database as the user store for authentication and authorization. If you want to configure LDAP or Active Directory (AD) external authentication, you need to collect the following information and run a setup command.
Also, you must synchronize your LDAP users and groups into the Ambari DB to be able to manage authorization and permissions against those users and groups.
Note | |
---|---|
When synchronizing LDAP users and groups, Ambari uses LDAP results paging controls to
synchronize large numbers of LDAP objects. Most modern LDAP servers support these control,
but for those that do not, such as Oracle Directory Server Enterprise Edition 11g, Ambari
introduces a configuration parameter to disable pagination. The
|