Uploaded image for project: 'Hive'
  1. Hive
  2. HIVE-12007

Hive LDAP Authenticator should allow just Domain without baseDN (for AD)

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 1.1.0
    • 1.3.0, 2.0.0
    • HiveServer2
    • None

    Description

      When the baseDN is not configured but only the Domain has been set in hive-site.xml, LDAP Atn provider cannot locate the user in the directory. Authentication fails in such cases. This is a change from the prior implementation where the auth request succeeds based on being able to bind to the directory. This has been called out in the design doc in HIVE-7193.

      But we should allow this for now for backward compatibility.

      Attachments

        1. HIVE-12007.patch
          2 kB
          Naveen Gangam
        2. HIVE-12007.patch
          2 kB
          Szehon Ho

        Issue Links

          is broken by

          Bug - A problem which impairs or prevents the functions of the product. HIVE-7193 Hive should support additional LDAP authentication parameters

          • Major - Major loss of function.
          • Closed

          Activity

            People

              ngangam Naveen Gangam
              ngangam Naveen Gangam
              Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: