Uploaded image for project: 'IMPALA'
  1. IMPALA
  2. IMPALA-4428

Respect auth_to_local rules from hdfs configs (core-site.xml) for LDAP authentication too

    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: Impala 2.6.0, Impala 2.7.0, Impala 2.5.2
    • Fix Version/s: None
    • Component/s: Security
    • Environment:
      CDH 5.8.3

      Description

      IMPALA-2660 added principal mapping for Kerberos authentication but not for LDAP authentication.
      Both Kerberos and LDAP are using Active Directory as a backend to store principals (in many cases), so it's naturally to think this should work for LDAP too
      http://blog.cloudera.com/blog/2014/10/new-in-cdh-5-2-impala-authentication-with-ldap-and-kerberos/
      Fact that IMPALA-2660 works only for Kerberos and not for LDAP principals, breaks authentication in our organization.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                bharathv Bharath Vissapragada
                Reporter:
                tagar_impala_e3b3 Ruslan Dautkhanov
              • Votes:
                0 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                • Created:
                  Updated: