Uploaded image for project: 'IMPALA'
  1. IMPALA
  2. IMPALA-4428

Respect auth_to_local rules from hdfs configs (core-site.xml) for LDAP authentication too

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Open
    • Major
    • Resolution: Unresolved
    • Impala 2.6.0, Impala 2.7.0, Impala 2.5.2
    • None
    • Security
    • CDH 5.8.3

    Description

      IMPALA-2660 added principal mapping for Kerberos authentication but not for LDAP authentication.
      Both Kerberos and LDAP are using Active Directory as a backend to store principals (in many cases), so it's naturally to think this should work for LDAP too
      http://blog.cloudera.com/blog/2014/10/new-in-cdh-5-2-impala-authentication-with-ldap-and-kerberos/
      Fact that IMPALA-2660 works only for Kerberos and not for LDAP principals, breaks authentication in our organization.

      Attachments

        Issue Links

          Activity

            People

              Unassigned Unassigned
              tagar_impala_e3b3 Ruslan Dautkhanov
              Votes:
              0 Vote for this issue
              Watchers:
              8 Start watching this issue

              Dates

                Created:
                Updated: