Hortonworks Docs » Hortonworks Data Platform 3.1.5 » Managing Auditing
Managing Auditing
Also available as:
PDF

Manually Update HDFS Audit Settings for Ambari installs

The following steps show how to save Ranger audits to HDFS for HBase. You can use the same procedure for other components.

  1. From the Ambari dashboard, select the HBase service. On the Configs tab, scroll down and select Advanced ranger-hbase-audit. Select the Audit to HDFS check box.
  2. Set the HDFS path where you want to store audits in HDFS: xasecure.audit.destination.hdfs.dir = hdfs://$NAMENODE_FQDN:8020/ranger/audit.

    Refer to the fs.defaultFS property in the Advanced core-site settings.

    Note
    Note

    For NameNode HA, NAMENODE_FQDN is the cluster name. In order for this to work, /etc/hadoop/conf/hdfs-site.xml needs to be linked under /etc/<component_name>/conf.

  3. Enable the Ranger plugin for HBase.
  4. Make sure that the plugin sudo user has permission on the HDFS Path: hdfs://NAMENODE_FQDN:8020/ranger/audit.
    For example, we need to create a Policy for Resource : /ranger/audit, all permissions to user hbase.
  5. Save the configuration updates and restart HBase.
  6. Generate some audit logs for the HBase component.
  7. Check the HFDS component logs on the NameNode: hdfs://NAMENODE_FQDN:8020/ranger/audit.
© 2012–2019, Hortonworks, Inc.
Document licensed under the Creative Commons Attribution ShareAlike 4.0 License.
Hortonworks.com | Documentation | Support | Community