Configuring Ambari for LDAP or Active Directory Authentication
By default Ambari uses an internal database as the user store for authentication and authorization. If you want to configure LDAP or Active Directory (AD) external authentication, you need to collect the following information and run a setup command.
Also, you must synchronize your LDAP users and groups into the Ambari DB to be able to manage authorization and permissions against those users and groups.
Note | |
---|---|
When synchronizing LDAP users and groups, Ambari uses LDAP results paging
controls to synchronize large numbers of LDAP objects. Most modern LDAP servers
support these control, but for those that do not, such as Oracle Directory
Server Enterprise Edition 11g, Ambari introduces a configuration parameter to
disable pagination. The
|