DocsHortonworks Data Platform

 

 1. HDFS

To enable the Ranger HDFS plugin on a Kerberos-enabled cluster, perform the steps described below.

  1. Create the system (OS) user hdfsuser. Make sure this user is synced to Ranger Admin (under users/groups tab in the Ranger Admin User Interface.

  2. Create a Kerberos principal for hdfsuser by entering the following command:

    • kadmin.local -q 'addprinc -pw hdfsuser hdfsuser@example.com

  3. Navigate to the HDFS service.

  4. Click on the Config tab.

  5. Navigate to advanced ranger-hdfs-plugin-properties and update the properties listed in the table shown below.

     

    Table 5.1. HDFS Plugin Properties

    Configuration Property NameValue
    Ranger repository config userhdfsuser@example.com
    Ranger repository config passwordhdfsuser
    common.name.for.certificateblank


  6. After updating these properties, click Save and restart the HDFS service.

Legal notices