Uploaded image for project: 'Hive'
  1. Hive
  2. HIVE-8190

LDAP user match for authentication on hiveserver2

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 0.13.1
    • 1.3.0, 2.0.0
    • Authorization, Clients
    • None

    • Centos 6.5

    • Reviewed

    Description

      Some LDAP has the user composant as CN and not UID.

      SO when you try to authenticate the LDAP authentication module of hive try to authenticate with the following string :

      uid=$login,basedn

      Some AD have user objects that are not uid but cn, so it is be important to personalize the kind of objects that the authentication moduel look for in ldap.

      We can see an exemple in knox LDAP module configuration the parameter main.ldapRealm.userDnTemplate can be configured to look for :

      uid : 'uid=

      {0}, basedn'

      or cn : 'cn={0}

      , basedn'

      Attachments

        Issue Links

          depends upon

          Bug - A problem which impairs or prevents the functions of the product. HIVE-7193 Hive should support additional LDAP authentication parameters

          • Major - Major loss of function.
          • Closed

          Activity

            People

              ngangam Naveen Gangam
              Alexandre LINTE LINTE
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: