Uploaded image for project: 'Hive'
  1. Hive
  2. HIVE-12007

Hive LDAP Authenticator should allow just Domain without baseDN (for AD)

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 1.1.0
    • Fix Version/s: 1.3.0, 2.0.0
    • Component/s: HiveServer2
    • Labels:
      None

      Description

      When the baseDN is not configured but only the Domain has been set in hive-site.xml, LDAP Atn provider cannot locate the user in the directory. Authentication fails in such cases. This is a change from the prior implementation where the auth request succeeds based on being able to bind to the directory. This has been called out in the design doc in HIVE-7193.

      But we should allow this for now for backward compatibility.

        Attachments

        1. HIVE-12007.patch
          2 kB
          Naveen Gangam
        2. HIVE-12007.patch
          2 kB
          Szehon Ho

          Issue Links

            Activity

              People

              • Assignee:
                ngangam Naveen Gangam
                Reporter:
                ngangam Naveen Gangam
              • Votes:
                0 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: