Chapter 3. Advanced Security Options for Ambari
This section describes several security options for an Ambari-monitored-and-managed Hadoop cluster.
- 1. Ambari Security Guide
- 2. Configuring Ambari and Hadoop for Kerberos
- 3. Advanced Security Options for Ambari
- Configuring Ambari Server For Kerberos Authentication
- Configuring Ambari for LDAP or Active Directory Authentication
- Setting Up Hadoop Group Mapping for LDAP/AD
- Configuring Ambari for Non-Root
- Optional: Encrypt Database and LDAP Passwords
- Optional: Set Up SSL for Ambari
- Optional: Ambari Web Inactivity Timeout
- Optional: Set Up Ambari Server for Kerberos
- Set Up Truststore for Ambari Server
- Optional: Set Up Two-Way SSL Between Ambari Server and Ambari Agents
- Optional: Recreating the Ambari SSL Certificate Authority
- Optional: Configure Ciphers and Protocols for Ambari Server
- Optional: Storing Component Passwords In Credential Store
- 4. Enabling SPNEGO Authentication for Hadoop