Configuring Ranger for LDAP SSL
You can use the following steps to configure LDAP SSL using self-signed certs in the default Ranger User Sync TrustStore.
The default location is
/usr/hdf/current/ranger-usersync/conf/mytruststore.jks
for theranger.usersync.truststore.file
property.Alternatively, copy and edit the self-signed ca certs.
Set the
ranger.usersync.truststore.file
property to that new cacert file.cd /usr/hdp/<version>/ranger-usersync service ranger-usersync stop service ranger-usersync start
Where
cert.pem
has the LDAPS cert.