Non-Ambari Cluster Installation Guide
Also available as:
PDF
loading table of contents...

Configuring the Ranger Policy Administration Authentication Mode

The Ranger service also enables you to configure the authentication method the Ranger Policy Administration component uses to authenticate users. There are three different authentication methods supported with Ranger, which include:

  • Active Directory (AD)

  • LDAP

  • UNIX

Depending on which authentication method you choose, you will need to modify the following sample values in the install.properties file:

Active Directory

  • authentication_method=ACTIVE_DIRECTORY

  • xa_ldap_ad_domain= example.com

  • xa_ldap_ad_url=ldap://127.0.0.1:389

  • xa_ldap_ad_base_dn=DC=example,DC=com

  • xa_ldap_ad_bind_dn=CN=Administrator,CN=Users,DC=example,DC=com

  • xa_ldap_ad_bind_password=PassW0rd

  • xa_ldap_ad_referral=ignore, follow or throw. Default is follow.

LDAP

  • authentication_method=LDAP

  • xa_ldap_url=LDAP server URL (e.g. ldap://127.0.0.1:389)

  • xa_ldap_userDNpattern=uid={0],ou=users,dc=example,dc=com

  • xa_ldap_groupSearchBase=dc=example,dc=com

  • xa_ldap_groupSearchFilter=(member=cn={0},ou=users,dc=example,dc=com

  • xa_ldap_groupRoleAttribute=cn

  • xa_ldap_base_dn=dc=example,dc=com

  • xa_ldap_bind_dn=cn=ldapadmin,ou=users,dc=example,dc=com

  • xa_ldap_bind_password=PassW0rd

  • xa_ldap_referral=ignore, follow, or throw. Default is follow.

UNIX

  • authentication_method=UNIX

  • remoteLoginEnabled=true

  • authServiceHostName= an address of the host where the UNIX authentication service is running.

  • authServicePort=5151