Description
This continues the work started on ACCUMULO-1024, and proposed in detail on that ticket.
The basic idea is that authenticators should be configurable in a priority list, list the way it can be done on Linux, as in:
local > NIS > LDAP > AD
The priority for Accumulo would be:
SystemUserAuthenticator > BuiltInPasswordAuthenticator > UserConfiguredAuthenticator1 > UserConfiguredAuthenticator2 > ...
Attachments
Issue Links
- contains
-
ACCUMULO-1929 Current auth/auth/perm API doesn't well support multiple authentication domains
- Resolved
- is duplicated by
-
ACCUMULO-1929 Current auth/auth/perm API doesn't well support multiple authentication domains
- Resolved
- is related to
-
ACCUMULO-1024 Deprecate built-in user management utilities
- Resolved
-
ACCUMULO-1319 Remove root username prompt from init
- Resolved
-
ACCUMULO-1165 Use a unique SystemToken (credentials) for each server instance (TServer, etc.)
- Open
-
ACCUMULO-2907 Invalidate "this may not be applicable for your security setup" warning from initialize
- Resolved